feat(vpn-gateway): Development of vpn gateway as spoke of transit gateway

Author: keerthi-gp

common/github.com/IBM/vpc-go-sdk/vpcv1/vpc_v1.go

@@ -608,6 +608,8 @@ func Provider() *schema.Provider {
 
 			"ibm_is_vpn_gateway_connection_local_cidrs": vpc.DataSourceIBMIsVPNGatewayConnectionLocalCidrs(),
 			"ibm_is_vpn_gateway_connection_peer_cidrs":  vpc.DataSourceIBMIsVPNGatewayConnectionPeerCidrs(),
+			"ibm_is_vpn_gateway_advertised_cidrs":       vpc.DataSourceIBMIsVPNGatewayAdvertisedCidrs(),
+			"ibm_is_vpn_gateway_service_connections":    vpc.DataSourceIBMIsVPNGatewayServiceConnections(),
 
 			"ibm_is_vpc_default_routing_table":       vpc.DataSourceIBMISVPCDefaultRoutingTable(),
 			"ibm_is_vpc_routing_table":               vpc.DataSourceIBMIBMIsVPCRoutingTable(),
@@ -1321,6 +1323,7 @@ func Provider() *schema.Provider {
 			"ibm_is_volume":                                vpc.ResourceIBMISVolume(),
 			"ibm_is_vpn_gateway":                           vpc.ResourceIBMISVPNGateway(),
 			"ibm_is_vpn_gateway_connection":                vpc.ResourceIBMISVPNGatewayConnection(),
+			"ibm_is_vpn_gateway_advertised_cidr":           vpc.ResourceIBMISVPNGatewayAdvertisedCidr(),
 			"ibm_is_vpc":                                   vpc.ResourceIBMISVPC(),
 			"ibm_is_vpc_address_prefix":                    vpc.ResourceIBMISVpcAddressPrefix(),
 			"ibm_is_vpc_dns_resolution_binding":            vpc.ResourceIBMIsVPCDnsResolutionBinding(),

ibm/provider/provider.go

@@ -517,20 +517,20 @@ func lbGetByName(d *schema.ResourceData, meta interface{}, name string) error {
 					pool[poolProvisioningStatus] = *p.ProvisioningStatus
 					pool["name"] = *p.Name
 					if p.HealthMonitor != nil {
+						lbHealthMonitor := p.HealthMonitor.(*vpcv1.LoadBalancerPoolHealthMonitor)
 						healthMonitorInfo := make(map[string]interface{})
-						delayfinal := strconv.FormatInt(*(p.HealthMonitor.Delay), 10)
+						delayfinal := strconv.FormatInt(*lbHealthMonitor.Delay, 10)
 						healthMonitorInfo[healthMonitorDelay] = delayfinal
-						maxRetriesfinal := strconv.FormatInt(*(p.HealthMonitor.MaxRetries), 10)
-						timeoutfinal := strconv.FormatInt(*(p.HealthMonitor.Timeout), 10)
+						maxRetriesfinal := strconv.FormatInt(*lbHealthMonitor.MaxRetries, 10)
+						timeoutfinal := strconv.FormatInt(*lbHealthMonitor.Timeout, 10)
 						healthMonitorInfo[healthMonitorMaxRetries] = maxRetriesfinal
 						healthMonitorInfo[healthMonitorTimeout] = timeoutfinal
-						if p.HealthMonitor.URLPath != nil {
-							healthMonitorInfo[healthMonitorURLPath] = *(p.HealthMonitor.URLPath)
+						if lbHealthMonitor.URLPath != nil {
+							healthMonitorInfo[healthMonitorURLPath] = *lbHealthMonitor.URLPath
 						}
-						healthMonitorInfo[healthMonitorType] = *(p.HealthMonitor.Type)
+						healthMonitorInfo[healthMonitorType] = *lbHealthMonitor.Type
 						pool[healthMonitor] = healthMonitorInfo
 					}
-
 					if p.SessionPersistence != nil {
 						sessionPersistenceInfo := make(map[string]interface{})
 						sessionPersistenceInfo[sessionType] = *p.SessionPersistence.Type

ibm/service/vpc/data_source_ibm_is_lb.go

@@ -261,7 +261,7 @@ func dataSourceIBMIsLbPoolRead(context context.Context, d *schema.ResourceData,
 	}
 
 	if loadBalancerPool.HealthMonitor != nil {
-		err = d.Set("health_monitor", dataSourceLoadBalancerPoolFlattenHealthMonitor(*loadBalancerPool.HealthMonitor))
+		err = d.Set("health_monitor", dataSourceLoadBalancerPoolFlattenHealthMonitor(*loadBalancerPool.HealthMonitor.(*vpcv1.LoadBalancerPoolHealthMonitor)))
 		if err != nil {
 			return diag.FromErr(fmt.Errorf("Error setting health_monitor %s", err))
 		}

ibm/service/vpc/data_source_ibm_is_lb_pool.go

@@ -267,7 +267,7 @@ func dataSourceLoadBalancerPoolCollectionPoolsToMap(poolsItem vpcv1.LoadBalancer
 	}
 	if poolsItem.HealthMonitor != nil {
 		healthMonitorList := []map[string]interface{}{}
-		healthMonitorMap := dataSourceLoadBalancerPoolCollectionPoolsHealthMonitorToMap(*poolsItem.HealthMonitor)
+		healthMonitorMap := dataSourceLoadBalancerPoolCollectionPoolsHealthMonitorToMap(*poolsItem.HealthMonitor.(*vpcv1.LoadBalancerPoolHealthMonitor))
 		healthMonitorList = append(healthMonitorList, healthMonitorMap)
 		poolsMap["health_monitor"] = healthMonitorList
 	}

ibm/service/vpc/data_source_ibm_is_lb_pools.go

@@ -267,6 +267,20 @@ func DataSourceIBMISVPNGateway() *schema.Resource {
 				Computed:    true,
 				Description: "Route mode VPN gateway.",
 			},
+			isVPNGatewayLocalAsn: {
+				Type:        schema.TypeInt,
+				Optional:    true,
+				Description: "The local autonomous system number (ASN) for this VPN gateway and its connections.",
+			},
+
+			isVPNGatewayAdvertisedCidrs: {
+				Type:        schema.TypeList,
+				Optional:    true,
+				Description: "The additional CIDRs advertised through any enabled routing protocol (for example, BGP). The routing protocol will advertise routes with these CIDRs and VPC prefixes as route destinations.",
+				Elem: &schema.Schema{
+					Type: schema.TypeString,
+				},
+			},
 			"vpc": {
 				Type:        schema.TypeList,
 				Computed:    true,
@@ -438,6 +452,12 @@ func dataSourceIBMIsVPNGatewayRead(context context.Context, d *schema.ResourceDa
 	if err = d.Set("mode", vpnGateway.Mode); err != nil {
 		return diag.FromErr(fmt.Errorf("Error setting mode: %s", err))
 	}
+	if err = d.Set("advertised_cidrs", vpnGateway.AdvertisedCIDRs); err != nil {
+		return diag.FromErr(fmt.Errorf("Error setting advertised cidrs: %s", err))
+	}
+	if err = d.Set("local_asn", vpnGateway.LocalAsn); err != nil {
+		return diag.FromErr(fmt.Errorf("Error setting local asn: %s", err))
+	}
 	if vpnGateway.VPC != nil {
 		err = d.Set("vpc", dataSourceVPNGatewayFlattenVPC(vpnGateway.VPC))
 		if err != nil {

ibm/service/vpc/data_source_ibm_is_vpn_gateway.go

@@ -0,0 +1,104 @@
+// Copyright IBM Corp. 2024 All Rights Reserved.
+// Licensed under the Mozilla Public License v2.0
+
+package vpc
+
+import (
+	"context"
+	"fmt"
+	"log"
+	"time"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/diag"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
+
+	"github.com/IBM-Cloud/terraform-provider-ibm/ibm/conns"
+	"github.com/IBM-Cloud/terraform-provider-ibm/ibm/flex"
+	"github.com/IBM/vpc-go-sdk/vpcv1"
+)
+
+func DataSourceIBMIsVPNGatewayAdvertisedCidrs() *schema.Resource {
+	return &schema.Resource{
+		ReadContext: dataSourceIBMIsVPNGatewayAdvertisedCidrsRead,
+
+		Schema: map[string]*schema.Schema{
+			"vpn_gateway": {
+				Type:         schema.TypeString,
+				Optional:     true,
+				ExactlyOneOf: []string{"vpn_gateway_name", "vpn_gateway"},
+				Description:  "The VPN gateway identifier.",
+			},
+			"vpn_gateway_name": {
+				Type:         schema.TypeString,
+				Optional:     true,
+				ExactlyOneOf: []string{"vpn_gateway_name", "vpn_gateway"},
+				Description:  "The VPN gateway name.",
+			},
+			"advertised_cidrs": &schema.Schema{
+				Type:        schema.TypeList,
+				Required:    true,
+				Description: "The additional CIDRs advertised through any enabled routing protocol (for example, BGP). The routing protocol will advertise routes with these CIDRs and VPC prefixes as route destinations.",
+				Elem: &schema.Schema{
+					Type: schema.TypeString,
+				},
+			},
+		},
+	}
+}
+
+func dataSourceIBMIsVPNGatewayAdvertisedCidrsRead(context context.Context, d *schema.ResourceData, meta interface{}) diag.Diagnostics {
+	vpcClient, err := meta.(conns.ClientSession).VpcV1API()
+	if err != nil {
+		return diag.FromErr(err)
+	}
+	vpn_gateway_id := d.Get("vpn_gateway").(string)
+	vpn_gateway_name := d.Get("vpn_gateway_name").(string)
+
+	if vpn_gateway_name != "" {
+		listvpnGWOptions := vpcClient.NewListVPNGatewaysOptions()
+
+		start := ""
+		allrecs := []vpcv1.VPNGatewayIntf{}
+		for {
+			if start != "" {
+				listvpnGWOptions.Start = &start
+			}
+			availableVPNGateways, detail, err := vpcClient.ListVPNGatewaysWithContext(context, listvpnGWOptions)
+			if err != nil || availableVPNGateways == nil {
+				return diag.FromErr(fmt.Errorf("[ERROR] Error reading list of VPN Gateways:%s\n%s", err, detail))
+			}
+			start = flex.GetNext(availableVPNGateways.Next)
+			allrecs = append(allrecs, availableVPNGateways.VPNGateways...)
+			if start == "" {
+				break
+			}
+		}
+		vpn_gateway_found := false
+		for _, vpnGatewayIntfItem := range allrecs {
+			if *vpnGatewayIntfItem.(*vpcv1.VPNGateway).Name == vpn_gateway_name {
+				vpnGateway := vpnGatewayIntfItem.(*vpcv1.VPNGateway)
+				vpn_gateway_id = *vpnGateway.ID
+				vpn_gateway_found = true
+				break
+			}
+		}
+		if !vpn_gateway_found {
+			log.Printf("[DEBUG] No vpn gateway found with given name %s", vpn_gateway_name)
+			return diag.FromErr(fmt.Errorf("No vpn gateway found with given name %s", vpn_gateway_name))
+		}
+	}
+
+	listVPNGatewayAdvertisedCIDRsOptions := &vpcv1.ListVPNGatewayAdvertisedCIDRsOptions{}
+
+	listVPNGatewayAdvertisedCIDRsOptions.SetVPNGatewayID(vpn_gateway_id)
+
+	vpnGatewayAdvertisedCidRs, response, err := vpcClient.ListVPNGatewayAdvertisedCIDRsWithContext(context, listVPNGatewayAdvertisedCIDRsOptions)
+	if err != nil {
+		log.Printf("[DEBUG] ListVPNGatewayAdvertisedCIDRsWithContext failed %s\n%s", err, response)
+		return diag.FromErr(fmt.Errorf("ListVPNGatewayAdvertisedCIDRsWithContext failed %s\n%s", err, response))
+	}
+	d.SetId(time.Now().UTC().String())
+	d.Set("advertised_cidrs", vpnGatewayAdvertisedCidRs.AdvertisedCIDRs)
+
+	return nil
+}

ibm/service/vpc/data_source_ibm_is_vpn_gateway_advertised_cidrs.go

@@ -0,0 +1,61 @@
+// Copyright IBM Corp. 2024 All Rights Reserved.
+// Licensed under the Mozilla Public License v2.0
+
+package vpc_test
+
+import (
+	"fmt"
+	"testing"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/resource"
+
+	acc "github.com/IBM-Cloud/terraform-provider-ibm/ibm/acctest"
+)
+
+func TestAccIBMIsVPNGatewayAdvertisedCidrsDataSourceBasic(t *testing.T) {
+	resource.Test(t, resource.TestCase{
+		PreCheck:  func() { acc.TestAccPreCheck(t) },
+		Providers: acc.TestAccProviders,
+		Steps: []resource.TestStep{
+			resource.TestStep{
+				Config: testAccCheckIBMIsVPNGatewayAdvertisedCidrsDataSourceConfigBasic(),
+				Check: resource.ComposeTestCheckFunc(
+					resource.TestCheckResourceAttrSet("data.ibm_is_vpn_gateway_advertised_cidrs.is_vpn_gateway_advertised_cidrs", "vpn_gateway"),
+					resource.TestCheckResourceAttrSet("data.ibm_is_vpn_gateway_advertised_cidrs.is_vpn_gateway_advertised_cidrs", "advertised_cidrs.#"),
+				),
+			},
+		},
+	})
+}
+
+func TestAccIBMIsVPNGatewayAdvertisedCidrsVPNGatewayNameDataSourceBasic(t *testing.T) {
+	resource.Test(t, resource.TestCase{
+		PreCheck:  func() { acc.TestAccPreCheck(t) },
+		Providers: acc.TestAccProviders,
+		Steps: []resource.TestStep{
+			resource.TestStep{
+				Config: testAccCheckIBMIsVPNGatewayAdvertisedCidrsWithVPNGatewayNameDataSourceConfigBasic(),
+				Check: resource.ComposeTestCheckFunc(
+					resource.TestCheckResourceAttrSet("data.ibm_is_vpn_gateway_advertised_cidrs.is_vpn_gateway_advertised_cidrs", "vpn_gateway"),
+					resource.TestCheckResourceAttrSet("data.ibm_is_vpn_gateway_advertised_cidrs.is_vpn_gateway_advertised_cidrs", "advertised_cidrs.#"),
+				),
+			},
+		},
+	})
+}
+
+func testAccCheckIBMIsVPNGatewayAdvertisedCidrsDataSourceConfigBasic() string {
+	return fmt.Sprintf(`
+		data "ibm_is_vpn_gateway_advertised_cidrs" "is_vpn_gateway_advertised_cidrs" {
+			vpn_gateway = "vpn_gateway"
+		}
+	`)
+}
+
+func testAccCheckIBMIsVPNGatewayAdvertisedCidrsWithVPNGatewayNameDataSourceConfigBasic() string {
+	return fmt.Sprintf(`
+		data "ibm_is_vpn_gateway_advertised_cidrs" "is_vpn_gateway_advertised_cidrs" {
+			vpn_gateway_name = "vpn_gateway_name"
+		}
+	`)
+}