Add aws_codebuild_webhook resource for creating GitHub webhooks for CodeBuild projects #4473
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,112 @@ | ||
| package aws | ||
|
|
||
| import ( | ||
| "github.com/aws/aws-sdk-go/aws" | ||
| "github.com/aws/aws-sdk-go/service/codebuild" | ||
| "github.com/hashicorp/terraform/helper/schema" | ||
| ) | ||
|
|
||
| func resourceAwsCodeBuildWebhook() *schema.Resource { | ||
|
There was a problem hiding this comment. We can easily add import support for this resource as the ID is already handled properly in the read function. Will add the passthrough importer to this resource and document how to import on merge. |
||
| return &schema.Resource{ | ||
| Create: resourceAwsCodeBuildWebhookCreate, | ||
| Read: resourceAwsCodeBuildWebhookRead, | ||
| Delete: resourceAwsCodeBuildWebhookDelete, | ||
| Update: resourceAwsCodeBuildWebhookUpdate, | ||
|
|
||
| Schema: map[string]*schema.Schema{ | ||
| "name": { | ||
|
There was a problem hiding this comment. This might seem pedantic for now, but on merge will rename this attribute to |
||
| Type: schema.TypeString, | ||
| Required: true, | ||
| ForceNew: true, | ||
| }, | ||
| "branch_filter": { | ||
| Type: schema.TypeString, | ||
| Optional: true, | ||
| }, | ||
| "url": { | ||
| Type: schema.TypeString, | ||
| Computed: true, | ||
| }, | ||
| }, | ||
| } | ||
| } | ||
|
|
||
| func resourceAwsCodeBuildWebhookCreate(d *schema.ResourceData, meta interface{}) error { | ||
| conn := meta.(*AWSClient).codebuildconn | ||
|
|
||
| resp, err := conn.CreateWebhook(&codebuild.CreateWebhookInput{ | ||
| ProjectName: aws.String(d.Get("name").(string)), | ||
| BranchFilter: aws.String(d.Get("branch_filter").(string)), | ||
| }) | ||
| if err != nil { | ||
| return err | ||
| } | ||
|
|
||
| d.SetId(d.Get("name").(string)) | ||
| d.Set("branch_filter", d.Get("branch_filter").(string)) | ||
|
There was a problem hiding this comment.
|
||
| d.Set("url", resp.Webhook.Url) | ||
| return nil | ||
| } | ||
|
|
||
| func resourceAwsCodeBuildWebhookRead(d *schema.ResourceData, meta interface{}) error { | ||
| conn := meta.(*AWSClient).codebuildconn | ||
|
|
||
| resp, err := conn.BatchGetProjects(&codebuild.BatchGetProjectsInput{ | ||
| Names: []*string{ | ||
| aws.String(d.Id()), | ||
| }, | ||
| }) | ||
|
|
||
| if err != nil { | ||
| return err | ||
|
There was a problem hiding this comment. We should check for "resource not found" type errors and |
||
| } | ||
|
|
||
| if len(resp.Projects) == 0 { | ||
| d.SetId("") | ||
|
There was a problem hiding this comment. When we're removing a resource from the state, we should log an appropriate warning message in the logs, e.g. log.Printf("[WARN] CodeBuild Project %q not found, removing from state", d.Id()) |
||
| return nil | ||
| } | ||
|
|
||
| project := resp.Projects[0] | ||
| d.Set("branch_filter", project.Webhook.BranchFilter) | ||
| d.Set("url", project.Webhook.Url) | ||
| return nil | ||
| } | ||
|
|
||
| func resourceAwsCodeBuildWebhookUpdate(d *schema.ResourceData, meta interface{}) error { | ||
| conn := meta.(*AWSClient).codebuildconn | ||
|
|
||
| if !d.HasChange("branch_filter") { | ||
| return nil | ||
| } | ||
|
|
||
| _, err := conn.UpdateWebhook(&codebuild.UpdateWebhookInput{ | ||
| ProjectName: aws.String(d.Id()), | ||
| BranchFilter: aws.String(d.Get("branch_filter").(string)), | ||
| RotateSecret: aws.Bool(false), | ||
| }) | ||
|
|
||
| if err != nil { | ||
| return err | ||
| } | ||
|
|
||
| return nil | ||
| } | ||
|
|
||
| func resourceAwsCodeBuildWebhookDelete(d *schema.ResourceData, meta interface{}) error { | ||
| conn := meta.(*AWSClient).codebuildconn | ||
|
|
||
| _, err := conn.DeleteWebhook(&codebuild.DeleteWebhookInput{ | ||
| ProjectName: aws.String(d.Id()), | ||
| }) | ||
|
|
||
| if err != nil { | ||
| if isAWSErr(err, codebuild.ErrCodeResourceNotFoundException, "") { | ||
| d.SetId("") | ||
|
There was a problem hiding this comment.
|
||
| return nil | ||
| } | ||
| return err | ||
| } | ||
|
|
||
| d.SetId("") | ||
| return nil | ||
| } | ||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,78 @@ | ||
| package aws | ||
|
|
||
| import ( | ||
| "fmt" | ||
| "testing" | ||
|
|
||
| "github.com/aws/aws-sdk-go/aws" | ||
| "github.com/aws/aws-sdk-go/service/codebuild" | ||
| "github.com/hashicorp/terraform/helper/acctest" | ||
| "github.com/hashicorp/terraform/helper/resource" | ||
| "github.com/hashicorp/terraform/terraform" | ||
| ) | ||
|
|
||
| func TestAccAwsCodeBuildWebhook_basic(t *testing.T) { | ||
| resource.Test(t, resource.TestCase{ | ||
| PreCheck: func() { testAccPreCheck(t) }, | ||
| Providers: testAccProviders, | ||
| CheckDestroy: testAccCheckAwsCodeBuildWebhookDestroy, | ||
| Steps: []resource.TestStep{ | ||
| { | ||
| Config: testAccCodeBuildWebhookConfig_basic(acctest.RandString(5)), | ||
| Check: resource.ComposeTestCheckFunc( | ||
| testAccCheckAwsCodeBuildWebhookExists("aws_codebuild_webhook.test"), | ||
| resource.TestCheckResourceAttrSet("aws_codebuild_webhook.test", "url"), | ||
|
There was a problem hiding this comment. We should probably be a little more cautious and at least partially validate the value as e.g. resource.TestMatchResourceAttr("aws_codebuild_webhook.test", "url", regexp.MustCompile(`^https://`)) |
||
| ), | ||
| }, | ||
| }, | ||
| }) | ||
| } | ||
|
|
||
| func testAccCheckAwsCodeBuildWebhookDestroy(s *terraform.State) error { | ||
| conn := testAccProvider.Meta().(*AWSClient).codebuildconn | ||
|
|
||
| for _, rs := range s.RootModule().Resources { | ||
| if rs.Type != "aws_codebuild_webhook" { | ||
| continue | ||
| } | ||
|
|
||
| resp, err := conn.BatchGetProjects(&codebuild.BatchGetProjectsInput{ | ||
| Names: []*string{ | ||
| aws.String(rs.Primary.ID), | ||
| }, | ||
| }) | ||
|
|
||
| if err != nil { | ||
| return err | ||
|
There was a problem hiding this comment. A resource not found exception here would be a good thing and should |
||
| } | ||
|
|
||
| if len(resp.Projects) == 0 { | ||
| return nil | ||
| } | ||
|
|
||
| project := resp.Projects[0] | ||
| if project.Webhook != nil && project.Webhook.Url != nil { | ||
| return fmt.Errorf("Found CodeBuild Webhook: %s", rs.Primary.ID) | ||
| } | ||
| } | ||
| return nil | ||
| } | ||
|
|
||
| func testAccCheckAwsCodeBuildWebhookExists(name string) resource.TestCheckFunc { | ||
| return func(s *terraform.State) error { | ||
| _, ok := s.RootModule().Resources[name] | ||
| if !ok { | ||
| return fmt.Errorf("Not found: %s", name) | ||
| } | ||
|
|
||
|
There was a problem hiding this comment. Similar to how the destroy acceptance test function above is checking against the API, we should do the same thing here to ensure the "physical" webhook actually exists. |
||
| return nil | ||
| } | ||
| } | ||
|
|
||
| func testAccCodeBuildWebhookConfig_basic(rName string) string { | ||
| return fmt.Sprintf(testAccAWSCodeBuildProjectConfig_basic(rName, "", "") + ` | ||
| resource "aws_codebuild_webhook" "test" { | ||
| name = "${aws_codebuild_project.foo.name}" | ||
| } | ||
| `) | ||
| } | ||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,35 @@ | ||
| --- | ||
| layout: "aws" | ||
| page_title: "AWS: aws_codebuild_webhook" | ||
| sidebar_current: "docs-aws-resource-codebuild-webhook" | ||
| description: |- | ||
| Provides a CodeBuild Webhook resource. | ||
| --- | ||
|
|
||
| # aws_codebuild_webhook | ||
|
|
||
| Provides a CodeBuild Webhook resource. | ||
|
|
||
| ~> **Note:** The AWS account that Terraform uses to create this resource *must* have authorized CodeBuild to access GitHub's OAuth API. This is a manual step that must be done *before* creating webhooks with this resource. If OAuth is not configured, AWS will return an error similar to `ResourceNotFoundException: Could not find access token for server type github`. | ||
|
There was a problem hiding this comment. This manual step must also be done in every applicable region where the resource will be used. We should probably also point to the AWS documentation surrounding project webhooks here. Will update on merge. |
||
|
|
||
| ## Example Usage | ||
|
|
||
| ```hcl | ||
| resource "aws_codebuild_webhook" "github" { | ||
| name = "${aws_codebuild_project.my_project.name}" | ||
| } | ||
| ``` | ||
|
|
||
| ## Argument Reference | ||
|
|
||
| The following arguments are supported: | ||
|
|
||
| * `name` - (Required) The name of the build project. | ||
| * `branch_filter` - (Optional) A regular expression used to determine which branches get built. Default is all branches are built. | ||
|
|
||
| ## Attributes Reference | ||
|
|
||
| The following attributes are exported: | ||
|
|
||
| * `id` - The name of the build project. | ||
| * `url` - The URL to the webhook. | ||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This is a great idea -- I'll make sure this gets ported over in some fashion when I rebase this PR.