Add support for CSE Network block (#271)

* Adding support for CSE Network block

Author: pmontiel-git

CHANGELOG.md

@@ -3,6 +3,8 @@
 FEATURES:
 
 * **New Resource:** sumologic_hierarchy (GH-260)
+* **New Resource:** sumologic_cse_network_block (GH-271)
+=======
 DEPRECATIONS:
 
 * resource/sumologic_monitor: Deprecated `triggers` in favor of `trigger_conditions` (GH-267)

sumologic/provider.go

@@ -38,6 +38,7 @@ func Provider() terraform.ResourceProvider {
 			},
 		},
 		ResourcesMap: map[string]*schema.Resource{
+			"sumologic_cse_network_block":                  resourceSumologicCSENetworkBlock(),
 			"sumologic_collector":                          resourceSumologicCollector(),
 			"sumologic_http_source":                        resourceSumologicHTTPSource(),
 			"sumologic_gcp_source":                         resourceSumologicGCPSource(),

sumologic/resource_sumologic_cse_network_block.go

@@ -0,0 +1,128 @@
+package sumologic
+
+import (
+	"errors"
+	"github.com/hashicorp/terraform-plugin-sdk/helper/schema"
+	"log"
+)
+
+func resourceSumologicCSENetworkBlock() *schema.Resource {
+	return &schema.Resource{
+		Create: resourceSumologicCSENetworkBlockCreate,
+		Read:   resourceSumologicCSENetworkBlockRead,
+		Delete: resourceSumologicCSENetworkBlockDelete,
+		Update: resourceSumologicCSENetworkBlockUpdate,
+		Importer: &schema.ResourceImporter{
+			State: schema.ImportStatePassthrough,
+		},
+
+		Schema: map[string]*schema.Schema{
+			"address_block": {
+				Type:     schema.TypeString,
+				Required: true,
+				ForceNew: false,
+			},
+			"label": {
+				Type:     schema.TypeString,
+				Optional: true,
+				ForceNew: false,
+			},
+			"internal": {
+				Type:     schema.TypeBool,
+				Optional: true,
+				ForceNew: false,
+				Default:  true,
+			},
+			"suppresses_signals": {
+				Type:     schema.TypeBool,
+				Optional: true,
+				ForceNew: false,
+				Default:  false,
+			},
+		},
+	}
+}
+
+func resourceSumologicCSENetworkBlockRead(d *schema.ResourceData, meta interface{}) error {
+	c := meta.(*Client)
+
+	var cseNetworkBlock *CSENetworkBlock
+	id := d.Id()
+
+	cseNetworkBlock, err := c.GetCSENetworkBlock(id)
+	if err != nil {
+		log.Printf("[WARN] CSE Network Block not found when looking by id: %s, err: %v", id, err)
+
+	}
+
+	if cseNetworkBlock == nil {
+		log.Printf("[WARN] CSE Network Block not found, removing from state: %v - %v", id, err)
+		d.SetId("")
+		return nil
+	}
+
+	d.Set("address_block", cseNetworkBlock.AddressBlock)
+	d.Set("label", cseNetworkBlock.Label)
+	d.Set("internal", cseNetworkBlock.Internal)
+	d.Set("suppresses_signals", cseNetworkBlock.SuppressesSignals)
+
+	return nil
+}
+
+func resourceSumologicCSENetworkBlockDelete(d *schema.ResourceData, meta interface{}) error {
+	c := meta.(*Client)
+
+	id := d.Id()
+	return c.DeleteCSENetworkBlock(id)
+
+}
+
+func resourceSumologicCSENetworkBlockCreate(d *schema.ResourceData, meta interface{}) error {
+	c := meta.(*Client)
+
+	if d.Id() == "" {
+		id, err := c.CreateCSENetworkBlock(CSENetworkBlock{
+			AddressBlock:      d.Get("address_block").(string),
+			Label:             d.Get("label").(string),
+			Internal:          d.Get("internal").(bool),
+			SuppressesSignals: d.Get("suppresses_signals").(bool),
+		})
+
+		if err != nil {
+			return err
+		}
+		log.Printf("[INFO] got id: %s", id)
+		d.SetId(id)
+	}
+
+	return resourceSumologicCSENetworkBlockUpdate(d, meta)
+}
+
+func resourceSumologicCSENetworkBlockUpdate(d *schema.ResourceData, meta interface{}) error {
+	cseNetworkBlock, err := resourceToCSENetworkBlock(d)
+	if err != nil {
+		return err
+	}
+
+	c := meta.(*Client)
+	if err = c.UpdateCSENetworkBlock(cseNetworkBlock); err != nil {
+		return err
+	}
+
+	return resourceSumologicCSENetworkBlockRead(d, meta)
+}
+
+func resourceToCSENetworkBlock(d *schema.ResourceData) (CSENetworkBlock, error) {
+	id := d.Id()
+	if id == "" {
+		return CSENetworkBlock{}, errors.New("network block id not specified")
+	}
+
+	return CSENetworkBlock{
+		ID:                id,
+		AddressBlock:      d.Get("address_block").(string),
+		Label:             d.Get("label").(string),
+		Internal:          d.Get("internal").(bool),
+		SuppressesSignals: d.Get("suppresses_signals").(bool),
+	}, nil
+}

sumologic/resource_sumologic_cse_network_block_test.go

@@ -0,0 +1,112 @@
+package sumologic
+
+import (
+	"fmt"
+	"testing"
+
+	"github.com/hashicorp/terraform-plugin-sdk/helper/resource"
+	"github.com/hashicorp/terraform-plugin-sdk/terraform"
+)
+
+func TestAccSumologicSCENetworkBlock_create(t *testing.T) {
+	var networkBlock CSENetworkBlock
+	nAddressBlock := "10.0.1.0/26"
+	nLabel := "network block test"
+	nInternal := true
+	nSuppressesSignals := false
+	resourceName := "sumologic_cse_network_block.network_block"
+	resource.Test(t, resource.TestCase{
+		PreCheck:     func() { testAccPreCheck(t) },
+		Providers:    testAccProviders,
+		CheckDestroy: testAccCSENetworkBlockDestroy,
+		Steps: []resource.TestStep{
+			{
+				Config: testCreateCSENetworkBlockConfig(nAddressBlock, nLabel, nInternal, nSuppressesSignals),
+				Check: resource.ComposeTestCheckFunc(
+					testCheckNetworkBlockExists(resourceName, &networkBlock),
+					testCheckNetworkBlockValues(&networkBlock, nAddressBlock, nLabel, nInternal, nSuppressesSignals),
+					resource.TestCheckResourceAttrSet(resourceName, "id"),
+				),
+			},
+		},
+	})
+}
+
+func testAccCSENetworkBlockDestroy(s *terraform.State) error {
+	client := testAccProvider.Meta().(*Client)
+
+	for _, rs := range s.RootModule().Resources {
+		if rs.Type != "sumologic_cse_network_block" {
+			continue
+		}
+
+		if rs.Primary.ID == "" {
+			return fmt.Errorf("CSE Network Block destruction check: CSE Network Block ID is not set")
+		}
+
+		networkBlockID := rs.Primary.Attributes["id"]
+
+		s, err := client.GetCSENetworkBlock(networkBlockID)
+		if err != nil {
+			return fmt.Errorf("Encountered an error: " + err.Error())
+		}
+		if s != nil {
+			return fmt.Errorf("network Block still exists")
+		}
+	}
+	return nil
+}
+
+func testCreateCSENetworkBlockConfig(nAddressBlock string, nLabel string, nInternal bool, nSuppressesSignals bool) string {
+	return fmt.Sprintf(`
+resource "sumologic_cse_network_block" "network_block" {
+	address_block = "%s"
+	label = "%s"
+	internal = "%t"
+	suppresses_signals = "%t"
+}
+`, nAddressBlock, nLabel, nInternal, nSuppressesSignals)
+}
+
+func testCheckNetworkBlockExists(n string, networkBlock *CSENetworkBlock) resource.TestCheckFunc {
+	return func(s *terraform.State) error {
+		rs, ok := s.RootModule().Resources[n]
+		if !ok {
+			return fmt.Errorf("not found: %s", n)
+		}
+
+		if rs.Primary.ID == "" {
+			return fmt.Errorf("network Block ID is not set")
+		}
+
+		networkBlockID := rs.Primary.Attributes["id"]
+
+		c := testAccProvider.Meta().(*Client)
+		networkBlockResp, err := c.GetCSENetworkBlock(networkBlockID)
+		if err != nil {
+			return err
+		}
+
+		*networkBlock = *networkBlockResp
+
+		return nil
+	}
+}
+
+func testCheckNetworkBlockValues(networkBlock *CSENetworkBlock, nAddressBlock string, nLabel string, nInternal bool, nSuppressesSignals bool) resource.TestCheckFunc {
+	return func(s *terraform.State) error {
+		if networkBlock.AddressBlock != nAddressBlock {
+			return fmt.Errorf("bad address block, expected \"%s\", got: %#v", nAddressBlock, networkBlock.AddressBlock)
+		}
+		if networkBlock.Label != nLabel {
+			return fmt.Errorf("bad label, expected \"%s\", got: %#v", nLabel, networkBlock.Label)
+		}
+		if networkBlock.Internal != nInternal {
+			return fmt.Errorf("bad internal flag, expected \"%t\", got: %#v", nInternal, networkBlock.Internal)
+		}
+		if networkBlock.SuppressesSignals != nSuppressesSignals {
+			return fmt.Errorf("bad suppressesSignals flag, expected \"%t\", got: %#v", nSuppressesSignals, networkBlock.SuppressesSignals)
+		}
+		return nil
+	}
+}

sumologic/sumologic_cse_network_block.go

@@ -0,0 +1,81 @@
+package sumologic
+
+import (
+	"encoding/json"
+	"fmt"
+)
+
+func (s *Client) GetCSENetworkBlock(id string) (*CSENetworkBlock, error) {
+	data, _, err := s.Get(fmt.Sprintf("sec/v1/network-blocks/%s", id), false)
+	if err != nil {
+		return nil, err
+	}
+
+	if data == nil {
+		return nil, nil
+	}
+
+	var response CSENetworkBlockResponse
+	err = json.Unmarshal(data, &response)
+	if err != nil {
+		return nil, err
+	}
+
+	return &response.CSENetworkBlock, nil
+}
+
+func (s *Client) DeleteCSENetworkBlock(id string) error {
+	_, err := s.Delete(fmt.Sprintf("sec/v1/network-blocks/%s", id))
+
+	return err
+}
+
+func (s *Client) CreateCSENetworkBlock(cseNetworkBlock CSENetworkBlock) (string, error) {
+
+	request := CSENetworkBlockRequest{
+		CSENetworkBlock: cseNetworkBlock,
+	}
+
+	var response CSENetworkBlockResponse
+
+	responseBody, err := s.Post("sec/v1/network-blocks", request, false)
+	if err != nil {
+		return "", err
+	}
+
+	err = json.Unmarshal(responseBody, &response)
+
+	if err != nil {
+		return "", err
+	}
+
+	return response.CSENetworkBlock.ID, nil
+}
+
+func (s *Client) UpdateCSENetworkBlock(cseNetworkBlock CSENetworkBlock) error {
+	url := fmt.Sprintf("sec/v1/network-blocks/%s", cseNetworkBlock.ID)
+	cseNetworkBlock.ID = ""
+	request := CSENetworkBlockRequest{
+		CSENetworkBlock: cseNetworkBlock,
+	}
+
+	_, err := s.Put(url, request, false)
+
+	return err
+}
+
+type CSENetworkBlockRequest struct {
+	CSENetworkBlock CSENetworkBlock `json:"fields"`
+}
+
+type CSENetworkBlockResponse struct {
+	CSENetworkBlock CSENetworkBlock `json:"data"`
+}
+
+type CSENetworkBlock struct {
+	ID                string `json:"id,omitempty"`
+	AddressBlock      string `json:"addressBlock"`
+	Label             string `json:"label"`
+	Internal          bool   `json:"internal"`
+	SuppressesSignals bool   `json:"suppressesSignals"`
+}

website/docs/README.md

@@ -35,6 +35,9 @@
   + [sumologic_monitor][46]
   + [sumologic_monitor_folder][47]
 
+##### Cloud SIEM Enterprise (CSE)
++ [sumologic_cse_network_block][50]
+
 #### Common Source Properties
 
 The following properties are common to ALL sources and can be used to configure each source.
@@ -85,3 +88,4 @@ resource "sumologic_http_source" "instrumentation-logs" {
 [45]: r/connection.html.markdown
 [46]: r/monitor.html.markdown
 [47]: r/monitor_folder.html.markdown
+[50]: r/cse_network_block.html.markdown

website/docs/r/cse_network_block.html.markdown

@@ -0,0 +1,39 @@
+---
+layout: "sumologic"
+page_title: "SumoLogic: sumologic_network_block"
+description: |-
+  Provides a CSE Network Block
+---
+
+# sumologic_network_block
+Provides a Sumo Logic CSE Network Block.
+
+## Example Usage
+```hcl
+resource "sumologic_network_block" "network_block" {
+  address_block         = "10.0.1.0/26"
+  label     = "network block from terraform"
+  internal = "true"
+  suppresses_signals = "false"
+}
+```
+
+## Argument reference
+
+The following arguments are supported:
+
+- `address_block` - (Required) The address block.
+- `label` - (Required) The displayable label of the address block.
+- `internal` - (Required) Internal flag.
+- `suppresses_signals` - (Required) Suppresses signal flag.
+
+The following attributes are exported:
+
+- `id` - The internal ID of the network block.
+
+## Import
+
+Network Block can be imported using the field id, e.g.:
+```hcl
+terraform import sumologic_network_block.network_block id
+```