added target reference, doc fix and tests for vni (#305)

* added target reference, doc fix and tests

* removed default auto delete from instance network attachment

* doc fix and changed list to set for ips

* removed spaces and added tab

Author: uibm

ibm/service/vpc/data_source_ibm_is_security_group_target_test.go

@@ -0,0 +1,160 @@
+// Copyright IBM Corp. 2017, 2021 All Rights Reserved.
+// Licensed under the Mozilla Public License v2.0
+
+package vpc_test
+
+import (
+	"fmt"
+	"testing"
+
+	acc "github.com/IBM-Cloud/terraform-provider-ibm/ibm/acctest"
+	"github.com/IBM-Cloud/terraform-provider-ibm/ibm/conns"
+	"github.com/IBM-Cloud/terraform-provider-ibm/ibm/flex"
+
+	"github.com/IBM/vpc-go-sdk/vpcv1"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/acctest"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/resource"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/terraform"
+)
+
+func TestAccIBMISSecurityGroupTargetDataSource_vni(t *testing.T) {
+	var securityGroup string
+	terraformTag := "data.ibm_is_security_group_target.testacc_security_group_target"
+	vpcname := fmt.Sprintf("tfsg-vpc-%d", acctest.RandIntRange(10, 100))
+	subnetname := fmt.Sprintf("tfsg-subnet-%d", acctest.RandIntRange(10, 100))
+	lbname := fmt.Sprintf("tfsg-lb-%d", acctest.RandIntRange(10, 100))
+	name := fmt.Sprintf("tfsg-one-%d", acctest.RandIntRange(10, 100))
+
+	resource.Test(t, resource.TestCase{
+		PreCheck:     func() { acc.TestAccPreCheck(t) },
+		Providers:    acc.TestAccProviders,
+		CheckDestroy: testAccCheckIBMISSecurityGroupDataSourceTargetDestroy,
+		Steps: []resource.TestStep{
+			{
+				Config: testAccCheckIBMISsecurityGroupTargetDataSourceVniConfig(vpcname, subnetname, acc.ISZoneName, acc.ISCIDR, lbname, name),
+				Check: resource.ComposeTestCheckFunc(
+					testAccCheckIBMISSecurityGroupDataSourceTargetExists("ibm_is_security_group_target.testacc_security_group_target", &securityGroup),
+					resource.TestCheckResourceAttrSet(
+						terraformTag, "crn"),
+					resource.TestCheckResourceAttr(
+						terraformTag, "resource_type", "virtual_network_interface"),
+					resource.TestCheckResourceAttrSet(
+						terraformTag, "target"),
+				),
+			},
+		},
+	})
+}
+
+func testAccCheckIBMISSecurityGroupDataSourceTargetDestroy(s *terraform.State) error {
+
+	sess, err := acc.TestAccProvider.Meta().(conns.ClientSession).VpcV1API()
+	if err != nil {
+		return err
+	}
+	for _, rs := range s.RootModule().Resources {
+		if rs.Type != "ibm_is_security_group_target" {
+			continue
+		}
+		parts, err := flex.IdParts(rs.Primary.ID)
+		if err != nil {
+			return err
+		}
+		securityGroupID := parts[0]
+		targetID := parts[1]
+
+		deleteSecurityGroupTargetBindingOptions := &vpcv1.DeleteSecurityGroupTargetBindingOptions{
+			SecurityGroupID: &securityGroupID,
+			ID:              &targetID,
+		}
+
+		response, err := sess.DeleteSecurityGroupTargetBinding(deleteSecurityGroupTargetBindingOptions)
+		if err == nil {
+			return fmt.Errorf("Security Group Targets still exists: %v", response)
+		}
+	}
+	return nil
+}
+
+func testAccCheckIBMISSecurityGroupDataSourceTargetExists(n string, securityGroupID *string) resource.TestCheckFunc {
+
+	return func(s *terraform.State) error {
+		rs, ok := s.RootModule().Resources[n]
+		if !ok {
+			return fmt.Errorf("Not found: %s", n)
+		}
+		if rs.Primary.ID == "" {
+			return fmt.Errorf("[ERROR] No Security Group Target ID is set")
+		}
+
+		sess, err := acc.TestAccProvider.Meta().(conns.ClientSession).VpcV1API()
+		if err != nil {
+			return err
+		}
+
+		parts, err := flex.IdParts(rs.Primary.ID)
+		if err != nil {
+			return err
+		}
+		securityGroupId := parts[0]
+		targetID := parts[1]
+
+		getSecurityGroupTargetOptions := &vpcv1.GetSecurityGroupTargetOptions{
+			SecurityGroupID: &securityGroupId,
+			ID:              &targetID,
+		}
+
+		_, response, err := sess.GetSecurityGroupTarget(getSecurityGroupTargetOptions)
+		if err != nil {
+			if response != nil && response.StatusCode == 404 {
+				*securityGroupID = ""
+				return nil
+			}
+			return fmt.Errorf("[ERROR] Error getting Security Group Target : %s\n%s", err, response)
+		}
+
+		*securityGroupID = fmt.Sprintf("%s/%s", securityGroupId, targetID)
+		return nil
+	}
+}
+func testAccCheckIBMISsecurityGroupTargetDataSourceVniConfig(vpcname, subnetname, zoneName, cidr, vniname, name string) string {
+	return fmt.Sprintf(`
+	resource "ibm_is_vpc" "testacc_vpc" {
+	    name = "%s"
+	}
+
+	resource "ibm_is_subnet" "testacc_subnet" {
+	    name = "%s"
+	    vpc = ibm_is_vpc.testacc_vpc.id
+	    zone = "%s"
+	    ipv4_cidr_block = "%s"
+	}
+
+	resource "ibm_is_security_group" "testacc_security_group_one" {
+	    name = "%s"
+	    vpc = "${ibm_is_vpc.testacc_vpc.id}"
+	}
+
+	resource "ibm_is_virtual_network_interface" "testacc_vni"{
+		name 						= "%s"
+		allow_ip_spoofing 			= false
+		enable_infrastructure_nat 	= true
+		primary_ip {
+			auto_delete 	= false
+			address 		= cidrhost(cidrsubnet(ibm_is_subnet.testacc_subnet.ipv4_cidr_block, 4, 6), 0)
+		}
+		subnet = ibm_is_subnet.testacc_subnet.id
+	}
+
+	resource "ibm_is_security_group_target" "testacc_security_group_target" {
+	    security_group = ibm_is_security_group.testacc_security_group_one.id
+	    target = ibm_is_virtual_network_interface.testacc_vni.id
+	  }
+
+	data "ibm_is_security_group_target" "testacc_security_group_target" {
+		security_group = ibm_is_security_group_target.testacc_security_group_target.security_group
+		name = ibm_is_security_group_target.testacc_security_group_target.name
+	}
+
+	`, vpcname, subnetname, zoneName, cidr, name, vniname)
+}

ibm/service/vpc/data_source_ibm_is_security_group_targets_test.go

@@ -43,6 +43,35 @@ func TestAccIBMISSecurityGroupTargets_basic(t *testing.T) {
 		},
 	})
 }
+func TestAccIBMISSecurityGroupTargets_vni(t *testing.T) {
+	var securityGroup string
+	terraformTag := "data.ibm_is_security_group_targets.testacc_security_group_targets"
+
+	vpcname := fmt.Sprintf("tfsg-vpc-%d", acctest.RandIntRange(10, 100))
+	subnetname := fmt.Sprintf("tfsg-subnet-%d", acctest.RandIntRange(10, 100))
+	vniname := fmt.Sprintf("tfsg-vni-%d", acctest.RandIntRange(10, 100))
+	name := fmt.Sprintf("tfsg-one-%d", acctest.RandIntRange(10, 100))
+
+	resource.Test(t, resource.TestCase{
+		PreCheck:     func() { acc.TestAccPreCheck(t) },
+		Providers:    acc.TestAccProviders,
+		CheckDestroy: testAccCheckIBMISSecurityGroupTargetsDestroy,
+		Steps: []resource.TestStep{
+			{
+				Config: testAccCheckIBMISsecurityGroupTargetsVniConfig(vpcname, subnetname, acc.ISZoneName, acc.ISCIDR, vniname, name),
+				Check: resource.ComposeTestCheckFunc(
+					testAccCheckIBMISSecurityGroupTargetsExists("ibm_is_security_group_target.testacc_security_group_target", &securityGroup),
+					resource.TestCheckResourceAttrSet(
+						terraformTag, "targets.0.crn"),
+					resource.TestCheckResourceAttr(
+						terraformTag, "targets.0.resource_type", "virtual_network_interface"),
+					resource.TestCheckResourceAttrSet(
+						terraformTag, "targets.0.target"),
+				),
+			},
+		},
+	})
+}
 
 func testAccCheckIBMISSecurityGroupTargetsDestroy(s *terraform.State) error {
 
@@ -141,12 +170,53 @@ func testAccCheckIBMISsecurityGroupTargetsConfig(vpcname, subnetname, zoneName,
 
 	resource "ibm_is_security_group_target" "testacc_security_group_target" {
 	    security_group = ibm_is_security_group.testacc_security_group_one.id
-	    target = ibm_is_lb.testacc_LB.id
+		target = ibm_is_lb.testacc_LB.id
 	  }
 
 	data "ibm_is_security_group_targets" "testacc_security_group_targets" {
-		security_group = ibm_is_security_group.testacc_security_group_one.id
+		security_group = ibm_is_security_group_target.testacc_security_group_target.security_group
 	}
 
 	`, vpcname, subnetname, zoneName, cidr, name, lbname)
 }
+
+func testAccCheckIBMISsecurityGroupTargetsVniConfig(vpcname, subnetname, zoneName, cidr, vniname, name string) string {
+	return fmt.Sprintf(`
+	resource "ibm_is_vpc" "testacc_vpc" {
+	    name = "%s"
+	}
+
+	resource "ibm_is_subnet" "testacc_subnet" {
+	    name = "%s"
+	    vpc = ibm_is_vpc.testacc_vpc.id
+	    zone = "%s"
+	    ipv4_cidr_block = "%s"
+	}
+
+	resource "ibm_is_security_group" "testacc_security_group_one" {
+	    name = "%s"
+	    vpc = "${ibm_is_vpc.testacc_vpc.id}"
+	}
+
+	resource "ibm_is_virtual_network_interface" "testacc_vni"{
+		name 						= "%s"
+		allow_ip_spoofing 			= false
+		enable_infrastructure_nat 	= true
+		primary_ip {
+			auto_delete 	= false
+			address 		= cidrhost(cidrsubnet(ibm_is_subnet.testacc_subnet.ipv4_cidr_block, 4, 6), 0)
+		}
+		subnet = ibm_is_subnet.testacc_subnet.id
+	}
+
+	resource "ibm_is_security_group_target" "testacc_security_group_target" {
+	    security_group = ibm_is_security_group.testacc_security_group_one.id
+	    target = ibm_is_virtual_network_interface.testacc_vni.id
+	  }
+
+	data "ibm_is_security_group_targets" "testacc_security_group_targets" {
+		security_group = ibm_is_security_group_target.testacc_security_group_target.security_group
+	}
+
+	`, vpcname, subnetname, zoneName, cidr, name, vniname)
+}

ibm/service/vpc/data_source_ibm_is_subnet_reserved_ip.go

@@ -5,9 +5,7 @@ package vpc
 
 import (
 	"fmt"
-	"reflect"
 
-	"github.com/IBM/vpc-go-sdk/vpcv1"
 	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
 )
 
@@ -104,6 +102,54 @@ func DataSourceIBMISReservedIP() *schema.Resource {
 				Computed:    true,
 				Description: "The crn for target.",
 			},
+			"target_reference": &schema.Schema{
+				Type:        schema.TypeList,
+				Computed:    true,
+				Description: "The target this reserved IP is bound to.If absent, this reserved IP is provider-owned or unbound.",
+				Elem: &schema.Resource{
+					Schema: map[string]*schema.Schema{
+						"crn": &schema.Schema{
+							Type:        schema.TypeString,
+							Computed:    true,
+							Description: "The CRN for this endpoint gateway.",
+						},
+						"deleted": &schema.Schema{
+							Type:        schema.TypeList,
+							Computed:    true,
+							Description: "If present, this property indicates the referenced resource has been deleted, and providessome supplementary information.",
+							Elem: &schema.Resource{
+								Schema: map[string]*schema.Schema{
+									"more_info": &schema.Schema{
+										Type:        schema.TypeString,
+										Computed:    true,
+										Description: "Link to documentation about deleted resources.",
+									},
+								},
+							},
+						},
+						"href": &schema.Schema{
+							Type:        schema.TypeString,
+							Computed:    true,
+							Description: "The URL for this endpoint gateway.",
+						},
+						"id": &schema.Schema{
+							Type:        schema.TypeString,
+							Computed:    true,
+							Description: "The unique identifier for this endpoint gateway.",
+						},
+						"name": &schema.Schema{
+							Type:        schema.TypeString,
+							Computed:    true,
+							Description: "The name for this endpoint gateway. The name is unique across all endpoint gateways in the VPC.",
+						},
+						"resource_type": &schema.Schema{
+							Type:        schema.TypeString,
+							Computed:    true,
+							Description: "The resource type.",
+						},
+					},
+				},
+			},
 		},
 	}
 }
@@ -137,44 +183,18 @@ func dataSdataSourceIBMISReservedIPRead(d *schema.ResourceData, meta interface{}
 		d.Set(isReservedIPLifecycleState, *reserveIP.LifecycleState)
 	}
 	d.Set(isReservedIPType, *reserveIP.ResourceType)
+	target := []map[string]interface{}{}
 	if reserveIP.Target != nil {
-		targetIntf := reserveIP.Target
-		switch reflect.TypeOf(targetIntf).String() {
-		case "*vpcv1.ReservedIPTargetEndpointGatewayReference":
-			{
-				target := targetIntf.(*vpcv1.ReservedIPTargetEndpointGatewayReference)
-				d.Set(isReservedIPTargetCrn, target.CRN)
-				d.Set(isReservedIPTarget, target.ID)
-			}
-		case "*vpcv1.ReservedIPTargetNetworkInterfaceReferenceTargetContext":
-			{
-				target := targetIntf.(*vpcv1.ReservedIPTargetNetworkInterfaceReferenceTargetContext)
-				d.Set(isReservedIPTarget, target.ID)
-			}
-		case "*vpcv1.ReservedIPTargetLoadBalancerReference":
-			{
-				target := targetIntf.(*vpcv1.ReservedIPTargetLoadBalancerReference)
-				d.Set(isReservedIPTargetCrn, target.CRN)
-				d.Set(isReservedIPTarget, target.ID)
-			}
-		case "*vpcv1.ReservedIPTargetVPNGatewayReference":
-			{
-				target := targetIntf.(*vpcv1.ReservedIPTargetVPNGatewayReference)
-				d.Set(isReservedIPTargetCrn, target.CRN)
-				d.Set(isReservedIPTarget, target.ID)
-			}
-		case "*vpcv1.ReservedIPTarget":
-			{
-				target := targetIntf.(*vpcv1.ReservedIPTarget)
-				d.Set(isReservedIPTargetCrn, target.CRN)
-				d.Set(isReservedIPTarget, target.ID)
-			}
-		case "*vpcv1.ReservedIPTargetGenericResourceReference":
-			{
-				target := targetIntf.(*vpcv1.ReservedIPTargetGenericResourceReference)
-				d.Set(isReservedIPTargetCrn, target.CRN)
-			}
+		modelMap, err := dataSourceIBMIsReservedIPReservedIPTargetToMap(reserveIP.Target)
+		if err != nil {
+			return err
 		}
+		target = append(target, modelMap)
+	}
+	d.Set("target_reference", target)
+	if len(target) > 0 {
+		d.Set(isReservedIPTarget, target[0]["id"])
+		d.Set(isReservedIPTargetCrn, target[0]["crn"])
 	}
 	return nil // By default there should be no error
 }