Add support for default egress policy matrix rule (#97)

Author: kuba-mazurkiewicz

CHANGELOG.md

@@ -1,3 +1,7 @@
+## 0.2.6 (unreleased)
+
+- Add `ise_trustsec_egress_matrix_cell_default` resource to support default egress policy matrix rule modifications
+
 ## 0.2.5
 
 - Remove default_value from `systemDefined` attribute in `ise_endpoint_identity_group`

docs/data-sources/trustsec_egress_matrix_cell_default.md

@@ -0,0 +1,33 @@
+---
+# generated by https://github.com/hashicorp/terraform-plugin-docs
+page_title: "ise_trustsec_egress_matrix_cell_default Data Source - terraform-provider-ise"
+subcategory: "TrustSec"
+description: |-
+  This data source can read the TrustSec Egress Matrix Cell Default.
+---
+
+# ise_trustsec_egress_matrix_cell_default (Data Source)
+
+This data source can read the TrustSec Egress Matrix Cell Default.
+
+## Example Usage
+
+```terraform
+data "ise_trustsec_egress_matrix_cell_default" "example" {
+  id = "92c1a900-8c01-11e6-996c-525400b48521"
+}
+```
+
+<!-- schema generated by tfplugindocs -->
+## Schema
+
+### Required
+
+- `id` (String) The id of the object
+
+### Read-Only
+
+- `default_rule` (String) Can be used only if sgacls not specified. Final Catch All Rule
+- `description` (String) Description
+- `matrix_cell_status` (String) Matrix Cell Status
+- `sgacls` (Set of String) List of TrustSec Security Groups ACLs

docs/guides/changelog.md

@@ -7,6 +7,10 @@ description: |-
 
 # Changelog
 
+## 0.2.6 (unreleased)
+
+- Add `ise_trustsec_egress_matrix_cell_default` resource to support default egress policy matrix rule modifications
+
 ## 0.2.5
 
 - Remove default_value from `systemDefined` attribute in `ise_endpoint_identity_group`

docs/resources/trustsec_egress_matrix_cell_default.md

@@ -0,0 +1,46 @@
+---
+# generated by https://github.com/hashicorp/terraform-plugin-docs
+page_title: "ise_trustsec_egress_matrix_cell_default Resource - terraform-provider-ise"
+subcategory: "TrustSec"
+description: |-
+  Allows modifications to the default egress policy matrix rule
+---
+
+# ise_trustsec_egress_matrix_cell_default (Resource)
+
+Allows modifications to the default egress policy matrix rule
+
+## Example Usage
+
+```terraform
+resource "ise_trustsec_egress_matrix_cell_default" "example" {
+  description        = "Default egress rule"
+  default_rule       = "PERMIT_IP"
+  matrix_cell_status = "ENABLED"
+}
+```
+
+<!-- schema generated by tfplugindocs -->
+## Schema
+
+### Optional
+
+- `default_rule` (String) Can be used only if sgacls not specified. Final Catch All Rule
+  - Choices: `NONE`, `DENY_IP`, `PERMIT_IP`
+- `description` (String) Description
+- `matrix_cell_status` (String) Matrix Cell Status
+  - Choices: `DISABLED`, `ENABLED`, `MONITOR`
+  - Default value: `DISABLED`
+- `sgacls` (Set of String) List of TrustSec Security Groups ACLs
+
+### Read-Only
+
+- `id` (String) The id of the object
+
+## Import
+
+Import is supported using the following syntax:
+
+```shell
+terraform import ise_trustsec_egress_matrix_cell_default.example "92c1a900-8c01-11e6-996c-525400b48521"
+```

examples/data-sources/ise_trustsec_egress_matrix_cell_default/data-source.tf

@@ -0,0 +1,3 @@
+data "ise_trustsec_egress_matrix_cell_default" "example" {
+  id = "92c1a900-8c01-11e6-996c-525400b48521"
+}

examples/resources/ise_trustsec_egress_matrix_cell_default/import.sh

@@ -0,0 +1 @@
+terraform import ise_trustsec_egress_matrix_cell_default.example "92c1a900-8c01-11e6-996c-525400b48521"

examples/resources/ise_trustsec_egress_matrix_cell_default/resource.tf

@@ -0,0 +1,5 @@
+resource "ise_trustsec_egress_matrix_cell_default" "example" {
+  description        = "Default egress rule"
+  default_rule       = "PERMIT_IP"
+  matrix_cell_status = "ENABLED"
+}

gen/definitions/trustsec_egress_matrix_cell_default.yaml

@@ -0,0 +1,54 @@
+---
+name: TrustSec Egress Matrix Cell Default
+rest_endpoint: /ers/config/egressmatrixcell
+doc_category: TrustSec
+res_description: Allows modifications to the default egress policy matrix rule
+no_delete: true
+put_create: true
+put_id_query_path: true
+skip_minimum_test: true
+put_id_include_path: EgressMatrixCell
+attributes:
+  - model_name: id
+    id: true
+    data_path: [EgressMatrixCell]
+    type: String
+    description: Default egress policy matrix rule id
+    value: 92c1a900-8c01-11e6-996c-525400b48521
+    example: 92c1a900-8c01-11e6-996c-525400b48521
+    exclude_test: true
+  - model_name: description
+    data_path: [EgressMatrixCell]
+    type: String
+    description: Description
+    example: Default egress rule
+  - model_name: defaultRule
+    data_path: [EgressMatrixCell]
+    type: String
+    enum_values: [NONE, DENY_IP, PERMIT_IP]
+    description: "Can be used only if sgacls not specified. Final Catch All Rule"
+    example: "PERMIT_IP"
+  - model_name: matrixCellStatus
+    data_path: [EgressMatrixCell]
+    type: String
+    enum_values: [DISABLED, ENABLED, MONITOR]
+    default_value: "DISABLED"
+    example: "ENABLED"
+    description: "Matrix Cell Status"
+  - model_name: sgacls
+    data_path: [EgressMatrixCell]
+    tf_name: sgacls
+    type: Set
+    element_type: String
+    description: List of TrustSec Security Groups ACLs
+    exclude_test: true
+  - model_name: sourceSgtId
+    data_path: [EgressMatrixCell]
+    type: String
+    description: Source Trustsec Security Group ID
+    value: "92bb1950-8c01-11e6-996c-525400b48521"
+  - model_name: destinationSgtId
+    data_path: [EgressMatrixCell]
+    type: String
+    description: Destination Trustsec Security Group ID
+    value: "92bb1950-8c01-11e6-996c-525400b48521"

gen/generator.go

@@ -104,6 +104,7 @@ type YamlConfig struct {
 	NoImport            bool                  `yaml:"no_import"`
 	PostUpdate          bool                  `yaml:"post_update"`
 	PutCreate           bool                  `yaml:"put_create"`
+	PutIdQueryPath      bool                  `yaml:"put_id_query_path"`
 	PutDelete           bool                  `yaml:"put_delete"`
 	PutRead             bool                  `yaml:"put_read"`
 	NoRead              bool                  `yaml:"no_read"`

gen/schema/schema.yaml

@@ -19,6 +19,7 @@ no_read_prefix: bool(required=False) # Set to true if it is an Open API endpoint
 no_id: bool(required=False) # Set to true if the data source does not have an ID
 id_path: str(required=False) # Path to the ID in the response (use "." to access nested elements)
 put_id_include_path: str(required=False) # If PUT needs to have specific JSON path where ID should be inserted
+put_id_query_path: bool(required=False) # Set to true if PUT request is used to create and required ID in path
 data_source_name_query: bool(required=False) # Set to true if the data source supports name queries
 minimum_version: str(required=False) # Define a minimum supported version
 ds_description: str(required=False) # Define a data source description