added the customer auth function to authenticate in provider.go during the configuration process, and altered the other resources to refer to the pointer of the client object rather than the value

Author: stikkireddy

databricks/azure_auth.go

@@ -3,13 +3,12 @@ package databricks
 import (
 	"encoding/json"
 	"fmt"
-	"log"
-	"net/http"
-	urlParse "net/url"
-
 	"github.com/Azure/go-autorest/autorest/adal"
 	"github.com/Azure/go-autorest/autorest/azure"
 	"github.com/databrickslabs/databricks-terraform/client/service"
+	"log"
+	"net/http"
+	urlParse "net/url"
 )
 
 // List of management information
@@ -78,27 +77,26 @@ func (a *AzureAuth) getWorkspaceID(config *service.DBApiClientConfig) error {
 	log.Println("[DEBUG] Getting Workspace ID via management token.")
 	// Escape all the ids
 	url := fmt.Sprintf("https://management.azure.com/subscriptions/%s/resourceGroups/%s"+
-		"/providers/Microsoft.Databricks/workspaces/%s?api-version=2018-04-01",
+		"/providers/Microsoft.Databricks/workspaces/%s",
 		urlParse.PathEscape(a.TokenPayload.SubscriptionID),
 		urlParse.PathEscape(a.TokenPayload.ResourceGroup),
 		urlParse.PathEscape(a.TokenPayload.WorkspaceName))
-	payload := &WorkspaceRequest{
-		Properties: &WsProps{ManagedResourceGroupID: "/subscriptions/" + a.TokenPayload.SubscriptionID + "/resourceGroups/" + a.TokenPayload.ManagedResourceGroup},
-		Name:       a.TokenPayload.WorkspaceName,
-		Location:   a.TokenPayload.AzureRegion,
-	}
 	headers := map[string]string{
 		"Content-Type":  "application/json",
 		"cache-control": "no-cache",
 		"Authorization": "Bearer " + a.ManagementToken,
 	}
-
+	type apiVersion struct {
+		ApiVersion string `url:"api-version"`
+	}
+	uriPayload := apiVersion{
+		ApiVersion: "2018-04-01",
+	}
 	var responseMap map[string]interface{}
-	resp, err := service.PerformQuery(config, http.MethodPut, url, "2.0", headers, true, true, payload, nil)
+	resp, err := service.PerformQuery(config, http.MethodGet, url, "2.0", headers, false, true, uriPayload, nil)
 	if err != nil {
 		return err
 	}
-
 	err = json.Unmarshal(resp, &responseMap)
 	if err != nil {
 		return err
@@ -170,53 +168,36 @@ func (a *AzureAuth) getWorkspaceAccessToken(config *service.DBApiClientConfig) e
 // 2. Get Workspace ID
 // 3. Get Azure Databricks Platform OAuth Token using Databricks resource id
 // 4. Get Azure Databricks Workspace Personal Access Token for the SP (60 min duration)
-func (a *AzureAuth) initWorkspaceAndGetClient(config *service.DBApiClientConfig) (service.DBApiClient, error) {
-	var dbClient service.DBApiClient
+func (a *AzureAuth) initWorkspaceAndGetClient(config *service.DBApiClientConfig) error {
+	//var dbClient service.DBApiClient
 
 	// Get management token
 	err := a.getManagementToken(config)
 	if err != nil {
-		return dbClient, err
+		return err
 	}
 
 	// Get workspace access token
 	err = a.getWorkspaceID(config)
 	if err != nil {
-		return dbClient, err
+		return err
 	}
 
 	// Get platform token
 	err = a.getADBPlatformToken(config)
 	if err != nil {
-		return dbClient, err
+		return err
 	}
 
 	// Get workspace personal access token
 	err = a.getWorkspaceAccessToken(config)
 	if err != nil {
-		return dbClient, err
+		return err
 	}
 
-	var newOption service.DBApiClientConfig
-
-	// TODO: Eventually change this to include new Databricks domain names. May have to add new vars and/or deprecate existing args.
-	newOption.Host = "https://" + a.TokenPayload.AzureRegion + ".azuredatabricks.net"
-	newOption.Token = a.AdbAccessToken
+	//// TODO: Eventually change this to include new Databricks domain names. May have to add new vars and/or deprecate existing args.
+	config.Host = "https://" + a.TokenPayload.AzureRegion + ".azuredatabricks.net"
+	config.Token = a.AdbAccessToken
 
-	// Headers to use aad tokens, hidden till tokens support secrets, scopes and acls
-	//newOption.DefaultHeaders = map[string]string{
-	//	//"Content-Type": "application/x-www-form-urlencoded",
-	//	"X-Databricks-Azure-Workspace-Resource-Id": a.AdbWorkspaceResourceID,
-	//	"X-Databricks-Azure-SP-Management-Token":   a.ManagementToken,
-	//	"cache-control":                            "no-cache",
-	//}
-	dbClient.SetConfig(&newOption)
-
-	// Spin for a while while the workspace comes up and starts behaving.
-	_, err = dbClient.Clusters().ListNodeTypes()
-	if err != nil {
-		return dbClient, err
-	}
-
-	return dbClient, err
+	return nil
 }

databricks/azure_auth_test.go

@@ -22,10 +22,10 @@ func TestAzureAuthCreateApiToken(t *testing.T) {
 
 	azureAuth := AzureAuth{
 		TokenPayload: &TokenPayload{
-			ManagedResourceGroup: os.Getenv("TEST_MANAGED_RESOURCE_GROUP"),
-			AzureRegion:          "centralus",
-			WorkspaceName:        os.Getenv("TEST_WORKSPACE_NAME"),
-			ResourceGroup:        os.Getenv("TEST_RESOURCE_GROUP"),
+			ManagedResourceGroup: os.Getenv("DATABRICKS_AZURE_MANAGED_RESOURCE_GROUP"),
+			AzureRegion:          os.Getenv("AZURE_REGION"),
+			WorkspaceName:        os.Getenv("DATABRICKS_AZURE_WORKSPACE_NAME"),
+			ResourceGroup:        os.Getenv("DATABRICKS_AZURE_RESOURCE_GROUP"),
 		},
 		ManagementToken:        "",
 		AdbWorkspaceResourceID: "",
@@ -36,10 +36,11 @@ func TestAzureAuthCreateApiToken(t *testing.T) {
 	azureAuth.TokenPayload.TenantID = os.Getenv("DATABRICKS_AZURE_TENANT_ID")
 	azureAuth.TokenPayload.ClientID = os.Getenv("DATABRICKS_AZURE_CLIENT_ID")
 	azureAuth.TokenPayload.ClientSecret = os.Getenv("DATABRICKS_AZURE_CLIENT_SECRET")
-	option := GetIntegrationDBClientOptions()
-	api, err := azureAuth.initWorkspaceAndGetClient(option)
+	config := GetIntegrationDBClientOptions()
+	err := azureAuth.initWorkspaceAndGetClient(config)
 	assert.NoError(t, err, err)
-
+	api := service.DBApiClient{}
+	api.SetConfig(config)
 	instancePoolInfo, instancePoolErr := api.InstancePools().Create(model.InstancePool{
 		InstancePoolName:                   "my_instance_pool",
 		MinIdleInstances:                   0,

databricks/data_source_databricks_dbfs_file.go

@@ -35,7 +35,7 @@ func dataSourceDBFSFile() *schema.Resource {
 func dataSourceDBFSFileRead(d *schema.ResourceData, m interface{}) error {
 	path := d.Get("path").(string)
 	limitFileSize := d.Get("limit_file_size").(bool)
-	client := m.(service.DBApiClient)
+	client := m.(*service.DBApiClient)
 
 	fileInfo, err := client.DBFS().Status(path)
 	if err != nil {

databricks/data_source_databricks_dbfs_file_paths.go

@@ -43,7 +43,7 @@ func dataSourceDBFSFilePaths() *schema.Resource {
 func dataSourceDBFSFilePathsRead(d *schema.ResourceData, m interface{}) error {
 	path := d.Get("path").(string)
 	recursive := d.Get("recursive").(bool)
-	client := m.(service.DBApiClient)
+	client := m.(*service.DBApiClient)
 
 	paths, err := client.DBFS().List(path, recursive)
 	if err != nil {

databricks/data_source_databricks_default_user_roles.go

@@ -8,7 +8,7 @@ import (
 func dataSourceDefaultUserRoles() *schema.Resource {
 	return &schema.Resource{
 		Read: func(d *schema.ResourceData, m interface{}) error {
-			client := m.(service.DBApiClient)
+			client := m.(*service.DBApiClient)
 
 			defaultRolesUserName := d.Get("default_username").(string)
 			metaUser, err := client.Users().GetOrCreateDefaultMetaUser(defaultRolesUserName, defaultRolesUserName, true)

databricks/data_source_databricks_notebook.go

@@ -50,7 +50,7 @@ func dataSourceNotebook() *schema.Resource {
 func dataSourceNotebookRead(d *schema.ResourceData, m interface{}) error {
 	path := d.Get("path").(string)
 	format := d.Get("format").(string)
-	client := m.(service.DBApiClient)
+	client := m.(*service.DBApiClient)
 
 	notebookInfo, err := client.Notebooks().Read(path)
 	if err != nil {

databricks/data_source_databricks_notebook_paths.go

@@ -47,7 +47,7 @@ func dataSourceNotebookPathsRead(d *schema.ResourceData, m interface{}) error {
 	path := d.Get("path").(string)
 	recursive := d.Get("recursive").(bool)
 
-	client := m.(service.DBApiClient)
+	client := m.(*service.DBApiClient)
 
 	notebookList, err := client.Notebooks().List(path, recursive)
 	if err != nil {

databricks/data_source_databricks_zones.go

@@ -8,7 +8,7 @@ import (
 func dataSourceClusterZones() *schema.Resource {
 	return &schema.Resource{
 		Read: func(d *schema.ResourceData, m interface{}) error {
-			client := m.(service.DBApiClient)
+			client := m.(*service.DBApiClient)
 
 			zonesInfo, err := client.Clusters().ListZones()
 			if err != nil {

databricks/mounts.go

@@ -11,9 +11,9 @@ import (
 
 // Mount interface describes the functionality of any mount which is create, read and delete
 type Mount interface {
-	Create(client service.DBApiClient, clusterID string) error
-	Delete(client service.DBApiClient, clusterID string) error
-	Read(client service.DBApiClient, clusterID string) (string, error)
+	Create(client *service.DBApiClient, clusterID string) error
+	Delete(client *service.DBApiClient, clusterID string) error
+	Read(client *service.DBApiClient, clusterID string) (string, error)
 }
 
 // AWSIamMount describes the object for a aws mount using iam role
@@ -29,7 +29,7 @@ func NewAWSIamMount(s3BucketName string, mountName string) *AWSIamMount {
 }
 
 // Create creates an aws iam mount given a cluster ID
-func (m AWSIamMount) Create(client service.DBApiClient, clusterID string) error {
+func (m AWSIamMount) Create(client *service.DBApiClient, clusterID string) error {
 	iamMountCommand := fmt.Sprintf(`
 dbutils.fs.mount("s3a://%s", "/mnt/%s")
 dbutils.fs.ls("/mnt/%s")
@@ -47,7 +47,7 @@ dbutils.notebook.exit("success")
 }
 
 // Delete deletes an aws iam mount given a cluster ID
-func (m AWSIamMount) Delete(client service.DBApiClient, clusterID string) error {
+func (m AWSIamMount) Delete(client *service.DBApiClient, clusterID string) error {
 	iamMountCommand := fmt.Sprintf(`
 dbutils.fs.unmount("/mnt/%s")
 dbutils.fs.refreshMounts()
@@ -65,7 +65,7 @@ dbutils.notebook.exit("success")
 }
 
 // Read verifies an aws iam mount given a cluster ID
-func (m AWSIamMount) Read(client service.DBApiClient, clusterID string) (string, error) {
+func (m AWSIamMount) Read(client *service.DBApiClient, clusterID string) (string, error) {
 	iamMountCommand := fmt.Sprintf(`
 dbutils.fs.ls("/mnt/%s")
 for mount in dbutils.fs.mounts():
@@ -108,7 +108,7 @@ func NewAzureBlobMount(containerName string, storageAccountName string, director
 }
 
 // Create creates a azure blob storage mount given a cluster id
-func (m AzureBlobMount) Create(client service.DBApiClient, clusterID string) error {
+func (m AzureBlobMount) Create(client *service.DBApiClient, clusterID string) error {
 	var confKey string
 
 	if m.AuthType == "SAS" {
@@ -139,7 +139,7 @@ dbutils.notebook.exit("success")
 }
 
 // Delete deletes a azure blob storage mount given a cluster id
-func (m AzureBlobMount) Delete(client service.DBApiClient, clusterID string) error {
+func (m AzureBlobMount) Delete(client *service.DBApiClient, clusterID string) error {
 	iamMountCommand := fmt.Sprintf(`
 dbutils.fs.unmount("/mnt/%s")
 dbutils.fs.refreshMounts()
@@ -157,7 +157,7 @@ dbutils.notebook.exit("success")
 }
 
 // Read verifies a azure blob storage mount given a cluster id
-func (m AzureBlobMount) Read(client service.DBApiClient, clusterID string) (string, error) {
+func (m AzureBlobMount) Read(client *service.DBApiClient, clusterID string) (string, error) {
 	iamMountCommand := fmt.Sprintf(`
 dbutils.fs.ls("/mnt/%s")
 for mount in dbutils.fs.mounts():
@@ -208,7 +208,7 @@ func NewAzureADLSGen1Mount(storageResource string, directory string, mountName s
 }
 
 // Create creates a azure datalake gen 1 storage mount given a cluster id
-func (m AzureADLSGen1Mount) Create(client service.DBApiClient, clusterID string) error {
+func (m AzureADLSGen1Mount) Create(client *service.DBApiClient, clusterID string) error {
 	iamMountCommand := fmt.Sprintf(`
 try:
   configs = {"%s.oauth2.access.token.provider.type": "ClientCredential",
@@ -237,7 +237,7 @@ dbutils.notebook.exit("success")
 }
 
 // Delete deletes a azure datalake gen 1 storage mount given a cluster id
-func (m AzureADLSGen1Mount) Delete(client service.DBApiClient, clusterID string) error {
+func (m AzureADLSGen1Mount) Delete(client *service.DBApiClient, clusterID string) error {
 	iamMountCommand := fmt.Sprintf(`
 dbutils.fs.unmount("/mnt/%s")
 dbutils.fs.refreshMounts()
@@ -255,7 +255,7 @@ dbutils.notebook.exit("success")
 }
 
 // Read verifies the azure datalake gen 1 storage mount given a cluster id
-func (m AzureADLSGen1Mount) Read(client service.DBApiClient, clusterID string) (string, error) {
+func (m AzureADLSGen1Mount) Read(client *service.DBApiClient, clusterID string) (string, error) {
 	iamMountCommand := fmt.Sprintf(`
 dbutils.fs.ls("/mnt/%s")
 for mount in dbutils.fs.mounts():
@@ -306,7 +306,7 @@ func NewAzureADLSGen2Mount(containerName string, storageAccountName string, dire
 }
 
 // Create creates a azure datalake gen 2 storage mount
-func (m AzureADLSGen2Mount) Create(client service.DBApiClient, clusterID string) error {
+func (m AzureADLSGen2Mount) Create(client *service.DBApiClient, clusterID string) error {
 	iamMountCommand := fmt.Sprintf(`
 try:
   configs = {"fs.azure.account.auth.type": "OAuth",
@@ -339,7 +339,7 @@ dbutils.notebook.exit("success")
 }
 
 // Delete deletes a azure datalake gen 2 storage mount
-func (m AzureADLSGen2Mount) Delete(client service.DBApiClient, clusterID string) error {
+func (m AzureADLSGen2Mount) Delete(client *service.DBApiClient, clusterID string) error {
 	iamMountCommand := fmt.Sprintf(`
 dbutils.fs.unmount("/mnt/%s")
 dbutils.fs.refreshMounts()
@@ -357,7 +357,7 @@ dbutils.notebook.exit("success")
 }
 
 // Read verifies the azure datalake gen 2 storage mount
-func (m AzureADLSGen2Mount) Read(client service.DBApiClient, clusterID string) (string, error) {
+func (m AzureADLSGen2Mount) Read(client *service.DBApiClient, clusterID string) (string, error) {
 	iamMountCommand := fmt.Sprintf(`
 dbutils.fs.ls("/mnt/%s")
 for mount in dbutils.fs.mounts():

databricks/provider.go

@@ -187,8 +187,14 @@ func providerConfigureAzureClient(d *schema.ResourceData, providerVersion string
 		AdbAccessToken:         "",
 		AdbPlatformToken:       "",
 	}
-	log.Println("Running Azure Auth")
-	return azureAuthSetup.initWorkspaceAndGetClient(config)
+
+	// Setup the CustomAuthorizer Function to be called at API invoke rather than client invoke
+	config.CustomAuthorizer = func(config *service.DBApiClientConfig) error {
+		return azureAuthSetup.initWorkspaceAndGetClient(config)
+	}
+	var dbClient service.DBApiClient
+	dbClient.SetConfig(config)
+	return &dbClient, nil
 }
 
 func providerConfigure(d *schema.ResourceData, providerVersion string) (interface{}, error) {
@@ -214,5 +220,5 @@ func providerConfigure(d *schema.ResourceData, providerVersion string) (interfac
 	config.UserAgent = fmt.Sprintf("databricks-tf-provider-%s", providerVersion)
 	var dbClient service.DBApiClient
 	dbClient.SetConfig(&config)
-	return dbClient, nil
+	return &dbClient, nil
 }