New Resource: azurerm_api_management_identity_provider_google

azurerm/internal/services/apimanagement/registration.go

@@ -25,28 +25,29 @@ func (r Registration) SupportedDataSources() map[string]*schema.Resource {
 // SupportedResources returns the supported Resources supported by this Service
 func (r Registration) SupportedResources() map[string]*schema.Resource {
 	return map[string]*schema.Resource{
-		"azurerm_api_management":                         resourceArmApiManagementService(),
-		"azurerm_api_management_api":                     resourceArmApiManagementApi(),
-		"azurerm_api_management_api_operation":           resourceArmApiManagementApiOperation(),
-		"azurerm_api_management_api_operation_policy":    resourceArmApiManagementApiOperationPolicy(),
-		"azurerm_api_management_api_policy":              resourceArmApiManagementApiPolicy(),
-		"azurerm_api_management_api_schema":              resourceArmApiManagementApiSchema(),
-		"azurerm_api_management_api_version_set":         resourceArmApiManagementApiVersionSet(),
-		"azurerm_api_management_authorization_server":    resourceArmApiManagementAuthorizationServer(),
-		"azurerm_api_management_backend":                 resourceArmApiManagementBackend(),
-		"azurerm_api_management_certificate":             resourceArmApiManagementCertificate(),
-		"azurerm_api_management_diagnostic":              resourceArmApiManagementDiagnostic(),
-		"azurerm_api_management_group":                   resourceArmApiManagementGroup(),
-		"azurerm_api_management_group_user":              resourceArmApiManagementGroupUser(),
-		"azurerm_api_management_identity_provider_aad":   resourceArmApiManagementIdentityProviderAAD(),
-		"azurerm_api_management_logger":                  resourceArmApiManagementLogger(),
-		"azurerm_api_management_openid_connect_provider": resourceArmApiManagementOpenIDConnectProvider(),
-		"azurerm_api_management_product":                 resourceArmApiManagementProduct(),
-		"azurerm_api_management_product_api":             resourceArmApiManagementProductApi(),
-		"azurerm_api_management_product_group":           resourceArmApiManagementProductGroup(),
-		"azurerm_api_management_product_policy":          resourceArmApiManagementProductPolicy(),
-		"azurerm_api_management_property":                resourceArmApiManagementProperty(),
-		"azurerm_api_management_subscription":            resourceArmApiManagementSubscription(),
-		"azurerm_api_management_user":                    resourceArmApiManagementUser(),
+		"azurerm_api_management":                          resourceArmApiManagementService(),
+		"azurerm_api_management_api":                      resourceArmApiManagementApi(),
+		"azurerm_api_management_api_operation":            resourceArmApiManagementApiOperation(),
+		"azurerm_api_management_api_operation_policy":     resourceArmApiManagementApiOperationPolicy(),
+		"azurerm_api_management_api_policy":               resourceArmApiManagementApiPolicy(),
+		"azurerm_api_management_api_schema":               resourceArmApiManagementApiSchema(),
+		"azurerm_api_management_api_version_set":          resourceArmApiManagementApiVersionSet(),
+		"azurerm_api_management_authorization_server":     resourceArmApiManagementAuthorizationServer(),
+		"azurerm_api_management_backend":                  resourceArmApiManagementBackend(),
+		"azurerm_api_management_certificate":              resourceArmApiManagementCertificate(),
+		"azurerm_api_management_diagnostic":               resourceArmApiManagementDiagnostic(),
+		"azurerm_api_management_group":                    resourceArmApiManagementGroup(),
+		"azurerm_api_management_group_user":               resourceArmApiManagementGroupUser(),
+		"azurerm_api_management_identity_provider_aad":    resourceArmApiManagementIdentityProviderAAD(),
+		"azurerm_api_management_identity_provider_google": resourceArmApiManagementIdentityProviderGoogle(),
+		"azurerm_api_management_logger":                   resourceArmApiManagementLogger(),
+		"azurerm_api_management_openid_connect_provider":  resourceArmApiManagementOpenIDConnectProvider(),
+		"azurerm_api_management_product":                  resourceArmApiManagementProduct(),
+		"azurerm_api_management_product_api":              resourceArmApiManagementProductApi(),
+		"azurerm_api_management_product_group":            resourceArmApiManagementProductGroup(),
+		"azurerm_api_management_product_policy":           resourceArmApiManagementProductPolicy(),
+		"azurerm_api_management_property":                 resourceArmApiManagementProperty(),
+		"azurerm_api_management_subscription":             resourceArmApiManagementSubscription(),
+		"azurerm_api_management_user":                     resourceArmApiManagementUser(),
 	}
 }

azurerm/internal/services/apimanagement/resource_arm_api_management_identity_provider_google.go

@@ -0,0 +1,159 @@
+package apimanagement
+
+import (
+	"fmt"
+	"log"
+	"time"
+
+	"github.com/Azure/azure-sdk-for-go/services/apimanagement/mgmt/2018-01-01/apimanagement"
+	"github.com/hashicorp/terraform-plugin-sdk/helper/schema"
+	"github.com/terraform-providers/terraform-provider-azurerm/azurerm/helpers/azure"
+	"github.com/terraform-providers/terraform-provider-azurerm/azurerm/helpers/tf"
+	"github.com/terraform-providers/terraform-provider-azurerm/azurerm/helpers/validate"
+	"github.com/terraform-providers/terraform-provider-azurerm/azurerm/internal/clients"
+	"github.com/terraform-providers/terraform-provider-azurerm/azurerm/internal/features"
+	"github.com/terraform-providers/terraform-provider-azurerm/azurerm/internal/timeouts"
+	"github.com/terraform-providers/terraform-provider-azurerm/azurerm/utils"
+)
+
+func resourceArmApiManagementIdentityProviderGoogle() *schema.Resource {
+	return &schema.Resource{
+		Create: resourceArmApiManagementIdentityProviderGoogleCreateUpdate,
+		Read:   resourceArmApiManagementIdentityProviderGoogleRead,
+		Update: resourceArmApiManagementIdentityProviderGoogleCreateUpdate,
+		Delete: resourceArmApiManagementIdentityProviderGoogleDelete,
+		Importer: &schema.ResourceImporter{
+			State: schema.ImportStatePassthrough,
+		},
+
+		Timeouts: &schema.ResourceTimeout{
+			Create: schema.DefaultTimeout(30 * time.Minute),
+			Read:   schema.DefaultTimeout(5 * time.Minute),
+			Update: schema.DefaultTimeout(30 * time.Minute),
+			Delete: schema.DefaultTimeout(30 * time.Minute),
+		},
+
+		Schema: map[string]*schema.Schema{
+			"resource_group_name": azure.SchemaResourceGroupName(),
+
+			"api_management_name": azure.SchemaApiManagementName(),
+
+			"client_id": {
+				Type:         schema.TypeString,
+				Required:     true,
+				ValidateFunc: validate.NoEmptyStrings,
+			},
+
+			"client_secret": {
+				Type:         schema.TypeString,
+				Required:     true,
+				Sensitive:    true,
+				ValidateFunc: validate.NoEmptyStrings,
+			},
+		},
+	}
+}
+
+func resourceArmApiManagementIdentityProviderGoogleCreateUpdate(d *schema.ResourceData, meta interface{}) error {
+	client := meta.(*clients.Client).ApiManagement.IdentityProviderClient
+	ctx, cancel := timeouts.ForCreateUpdate(meta.(*clients.Client).StopContext, d)
+	defer cancel()
+
+	resourceGroup := d.Get("resource_group_name").(string)
+	serviceName := d.Get("api_management_name").(string)
+	clientID := d.Get("client_id").(string)
+	clientSecret := d.Get("client_secret").(string)
+
+	if features.ShouldResourcesBeImported() && d.IsNewResource() {
+		existing, err := client.Get(ctx, resourceGroup, serviceName, apimanagement.Google)
+		if err != nil {
+			if !utils.ResponseWasNotFound(existing.Response) {
+				return fmt.Errorf("Error checking for presence of existing Identity Provider %q (API Management Service %q / Resource Group %q): %s", apimanagement.Google, serviceName, resourceGroup, err)
+			}
+		}
+
+		if existing.ID != nil && *existing.ID != "" {
+			return tf.ImportAsExistsError("azurerm_api_management_identity_provider_google", *existing.ID)
+		}
+	}
+
+	parameters := apimanagement.IdentityProviderContract{
+		IdentityProviderContractProperties: &apimanagement.IdentityProviderContractProperties{
+			ClientID:     utils.String(clientID),
+			ClientSecret: utils.String(clientSecret),
+			Type:         apimanagement.Google,
+		},
+	}
+
+	if _, err := client.CreateOrUpdate(ctx, resourceGroup, serviceName, apimanagement.Google, parameters, ""); err != nil {
+		return fmt.Errorf("Error creating or updating Identity Provider %q (Resource Group %q / API Management Service %q): %+v", apimanagement.Google, resourceGroup, serviceName, err)
+	}
+
+	resp, err := client.Get(ctx, resourceGroup, serviceName, apimanagement.Google)
+	if err != nil {
+		return fmt.Errorf("Error retrieving Identity Provider %q (Resource Group %q / API Management Service %q): %+v", apimanagement.Google, resourceGroup, serviceName, err)
+	}
+	if resp.ID == nil {
+		return fmt.Errorf("Cannot read ID for Identity Provider %q (Resource Group %q / API Management Service %q)", apimanagement.Google, resourceGroup, serviceName)
+	}
+	d.SetId(*resp.ID)
+
+	return resourceArmApiManagementIdentityProviderGoogleRead(d, meta)
+}
+
+func resourceArmApiManagementIdentityProviderGoogleRead(d *schema.ResourceData, meta interface{}) error {
+	client := meta.(*clients.Client).ApiManagement.IdentityProviderClient
+	ctx, cancel := timeouts.ForRead(meta.(*clients.Client).StopContext, d)
+	defer cancel()
+
+	id, err := azure.ParseAzureResourceID(d.Id())
+	if err != nil {
+		return err
+	}
+	resourceGroup := id.ResourceGroup
+	serviceName := id.Path["service"]
+	identityProviderName := id.Path["identityProviders"]
+
+	resp, err := client.Get(ctx, resourceGroup, serviceName, apimanagement.IdentityProviderType(identityProviderName))
+	if err != nil {
+		if utils.ResponseWasNotFound(resp.Response) {
+			log.Printf("[DEBUG] Identity Provider %q (Resource Group %q / API Management Service %q) was not found - removing from state!", identityProviderName, resourceGroup, serviceName)
+			d.SetId("")
+			return nil
+		}
+
+		return fmt.Errorf("Error making Read request for Identity Provider %q (Resource Group %q / API Management Service %q): %+v", identityProviderName, resourceGroup, serviceName, err)
+	}
+
+	d.Set("resource_group_name", resourceGroup)
+	d.Set("api_management_name", serviceName)
+
+	if props := resp.IdentityProviderContractProperties; props != nil {
+		d.Set("client_id", props.ClientID)
+		d.Set("client_secret", props.ClientSecret)
+	}
+
+	return nil
+}
+
+func resourceArmApiManagementIdentityProviderGoogleDelete(d *schema.ResourceData, meta interface{}) error {
+	client := meta.(*clients.Client).ApiManagement.IdentityProviderClient
+	ctx, cancel := timeouts.ForDelete(meta.(*clients.Client).StopContext, d)
+	defer cancel()
+
+	id, err := azure.ParseAzureResourceID(d.Id())
+	if err != nil {
+		return err
+	}
+	resourceGroup := id.ResourceGroup
+	serviceName := id.Path["service"]
+	identityProviderName := id.Path["identityProviders"]
+
+	if resp, err := client.Delete(ctx, resourceGroup, serviceName, apimanagement.IdentityProviderType(identityProviderName), ""); err != nil {
+		if !utils.ResponseWasNotFound(resp) {
+			return fmt.Errorf("Error deleting Identity Provider %q (Resource Group %q / API Management Service %q): %+v", identityProviderName, resourceGroup, serviceName, err)
+		}
+	}
+
+	return nil
+}