feat: use default runner in meshstack_integration if runner_ref is omitted, add ref output, add import test step

Author: grubmeshi

client/integration_config.go

@@ -19,23 +19,23 @@ var (
 )
 
 type MeshIntegrationGithubConfig struct {
-	Owner         string                 `json:"owner" tfsdk:"owner"`
-	BaseUrl       string                 `json:"baseUrl" tfsdk:"base_url"`
-	AppId         string                 `json:"appId" tfsdk:"app_id"`
-	AppPrivateKey types.Secret           `json:"appPrivateKey" tfsdk:"app_private_key"`
-	RunnerRef     BuildingBlockRunnerRef `json:"runnerRef" tfsdk:"runner_ref"`
+	Owner         string                  `json:"owner" tfsdk:"owner"`
+	BaseUrl       string                  `json:"baseUrl" tfsdk:"base_url"`
+	AppId         string                  `json:"appId" tfsdk:"app_id"`
+	AppPrivateKey types.Secret            `json:"appPrivateKey" tfsdk:"app_private_key"`
+	RunnerRef     *BuildingBlockRunnerRef `json:"runnerRef" tfsdk:"runner_ref"`
 }
 
 type MeshIntegrationGitlabConfig struct {
-	BaseUrl   string                 `json:"baseUrl" tfsdk:"base_url"`
-	RunnerRef BuildingBlockRunnerRef `json:"runnerRef" tfsdk:"runner_ref"`
+	BaseUrl   string                  `json:"baseUrl" tfsdk:"base_url"`
+	RunnerRef *BuildingBlockRunnerRef `json:"runnerRef" tfsdk:"runner_ref"`
 }
 
 type MeshIntegrationAzureDevopsConfig struct {
-	BaseUrl             string                 `json:"baseUrl" tfsdk:"base_url"`
-	Organization        string                 `json:"organization" tfsdk:"organization"`
-	PersonalAccessToken types.Secret           `json:"personalAccessToken" tfsdk:"personal_access_token"`
-	RunnerRef           BuildingBlockRunnerRef `json:"runnerRef" tfsdk:"runner_ref"`
+	BaseUrl             string                  `json:"baseUrl" tfsdk:"base_url"`
+	Organization        string                  `json:"organization" tfsdk:"organization"`
+	PersonalAccessToken types.Secret            `json:"personalAccessToken" tfsdk:"personal_access_token"`
+	RunnerRef           *BuildingBlockRunnerRef `json:"runnerRef" tfsdk:"runner_ref"`
 }
 
 type MeshIntegrationConfig struct {

docs/resources/integration.md

@@ -25,10 +25,8 @@ resource "meshstack_integration" "example_github" {
         owner           = "my-org"
         base_url        = "https://github.com"
         app_id          = "123456"
-        app_private_key = { value = "-----BEGIN RSA PRIVATE KEY-----\nMOCK_KEY_CONTENT\n-----END RSA PRIVATE KEY-----" }
-        runner_ref = {
-          uuid = "dc8c57a1-823f-4e96-8582-0275fa27dc7b"
-        }
+        app_private_key = { secret_value = "-----BEGIN RSA PRIVATE KEY-----\nMOCK_KEY_CONTENT\n-----END RSA PRIVATE KEY-----" }
+        runner_ref      = { uuid = "dc8c57a1-823f-4e96-8582-0275fa27dc7b" } # Optional, by default, pre-defined shared runner is used
       }
     }
   }
@@ -48,10 +46,7 @@ resource "meshstack_integration" "example_azure_devops" {
         base_url     = "https://dev.azure.com"
         organization = "my-organization"
         personal_access_token = {
-          value = "mock-pat-token-12345"
-        }
-        runner_ref = {
-          uuid = "05cfa85f-2818-4bdd-b193-620e0187d7de"
+          secret_value = "mock-pat-token-12345"
         }
       }
     }
@@ -70,9 +65,6 @@ resource "meshstack_integration" "example_gitlab" {
     config = {
       gitlab = {
         base_url = "https://gitlab.com"
-        runner_ref = {
-          uuid = "f4f4402b-f54d-4ab9-93ae-c07e997041e9"
-        }
       }
     }
   }
@@ -89,6 +81,7 @@ resource "meshstack_integration" "example_gitlab" {
 
 ### Read-Only
 
+- `ref` (Attributes) Reference to integration, can be used in building block definitions. (see [below for nested schema](#nestedatt--ref))
 - `status` (Attributes) Status information of the integration. Computed by meshStack. (see [below for nested schema](#nestedatt--status))
 
 <a id="nestedatt--metadata"></a>
@@ -127,38 +120,35 @@ Required:
 
 - `base_url` (String) Base URL of the Azure DevOps instance (e.g., `https://dev.azure.com`).
 - `organization` (String) Azure DevOps organization name.
-- `runner_ref` (Attributes) Reference to the building block runner that executes Azure DevOps pipelines. (see [below for nested schema](#nestedatt--spec--config--azuredevops--runner_ref))
 
 Optional:
 
 - `personal_access_token` (Attributes) Personal Access Token (PAT) for authentication. (see [below for nested schema](#nestedatt--spec--config--azuredevops--personal_access_token))
+- `runner_ref` (Attributes) Reference to the building block runner that executes Azure DevOps pipelines. If omitted, the pre-defined shared runner is used. (see [below for nested schema](#nestedatt--spec--config--azuredevops--runner_ref))
 
-<a id="nestedatt--spec--config--azuredevops--runner_ref"></a>
-### Nested Schema for `spec.config.azuredevops.runner_ref`
+<a id="nestedatt--spec--config--azuredevops--personal_access_token"></a>
+### Nested Schema for `spec.config.azuredevops.personal_access_token`
 
 Required:
 
-- `uuid` (String) UUID of the building block runner.
+- `secret_value` (String, Sensitive, [Write-only](https://developer.hashicorp.com/terraform/language/resources/ephemeral#write-only-arguments)) Personal Access Token (PAT) for authentication.
 
-Read-Only:
+Optional:
 
-- `kind` (String) Kind of the runner reference.
+- `secret_version` (String) Version of the secret value. Change this to trigger rotation of the associated write-only attribute `secret_hash`. Can be omitted if resource is imported, in this case the `secret_value` attribute is used as an initial value for this attribute (computed output).
 
+Read-Only:
 
-<a id="nestedatt--spec--config--azuredevops--personal_access_token"></a>
-### Nested Schema for `spec.config.azuredevops.personal_access_token`
+- `secret_hash` (String) Hash value of the secret stored in the backend. If this hash has changed without changes in the version attribute, the secret was changed externally.
 
-Required:
 
-- `value` (String, Sensitive, [Write-only](https://developer.hashicorp.com/terraform/language/resources/ephemeral#write-only-arguments)) Personal Access Token (PAT) for authentication.
+<a id="nestedatt--spec--config--azuredevops--runner_ref"></a>
+### Nested Schema for `spec.config.azuredevops.runner_ref`
 
 Optional:
 
-- `fingerprint` (String) Fingerprint of the secret value. Change this to trigger rotation of the associated write-only attribute `value`. Can be omitted if resource is imported, in this case the hash is used as an initial fingerprint (computed output).
-
-Read-Only:
-
-- `hash` (String) Hash value of the secret stored in the backend. If this hash has changed without changes in the version attribute, the secret was changed externally.
+- `kind` (String) meshObject type, always `meshBuildingBlockRunner`.
+- `uuid` (String) UUID of the meshBuildingBlockRunner.
 
 
 
@@ -171,34 +161,34 @@ Required:
 - `app_private_key` (Attributes) Private key for the GitHub App. (see [below for nested schema](#nestedatt--spec--config--github--app_private_key))
 - `base_url` (String) Base URL of the GitHub instance (e.g., `https://github.com` for GitHub.com or your GitHub Enterprise URL).
 - `owner` (String) GitHub organization or user that owns the repositories.
-- `runner_ref` (Attributes) Reference to the building block runner that executes GitHub workflows. (see [below for nested schema](#nestedatt--spec--config--github--runner_ref))
+
+Optional:
+
+- `runner_ref` (Attributes) Reference to the building block runner that executes GitHub workflows.If omitted, the pre-defined shared runner is used. (see [below for nested schema](#nestedatt--spec--config--github--runner_ref))
 
 <a id="nestedatt--spec--config--github--app_private_key"></a>
 ### Nested Schema for `spec.config.github.app_private_key`
 
 Required:
 
-- `value` (String, Sensitive, [Write-only](https://developer.hashicorp.com/terraform/language/resources/ephemeral#write-only-arguments)) Private key for the GitHub App.
+- `secret_value` (String, Sensitive, [Write-only](https://developer.hashicorp.com/terraform/language/resources/ephemeral#write-only-arguments)) Private key for the GitHub App.
 
 Optional:
 
-- `fingerprint` (String) Fingerprint of the secret value. Change this to trigger rotation of the associated write-only attribute `value`. Can be omitted if resource is imported, in this case the hash is used as an initial fingerprint (computed output).
+- `secret_version` (String) Version of the secret value. Change this to trigger rotation of the associated write-only attribute `secret_hash`. Can be omitted if resource is imported, in this case the `secret_value` attribute is used as an initial value for this attribute (computed output).
 
 Read-Only:
 
-- `hash` (String) Hash value of the secret stored in the backend. If this hash has changed without changes in the version attribute, the secret was changed externally.
+- `secret_hash` (String) Hash value of the secret stored in the backend. If this hash has changed without changes in the version attribute, the secret was changed externally.
 
 
 <a id="nestedatt--spec--config--github--runner_ref"></a>
 ### Nested Schema for `spec.config.github.runner_ref`
 
-Required:
-
-- `uuid` (String) UUID of the building block runner.
-
-Read-Only:
+Optional:
 
-- `kind` (String) Kind of the runner reference.
+- `kind` (String) meshObject type, always `meshBuildingBlockRunner`.
+- `uuid` (String) UUID of the meshBuildingBlockRunner.
 
 
 
@@ -208,21 +198,30 @@ Read-Only:
 Required:
 
 - `base_url` (String) Base URL of the GitLab instance (e.g., `https://gitlab.com` or your self-hosted GitLab URL).
-- `runner_ref` (Attributes) Reference to the building block runner that executes GitLab pipelines. (see [below for nested schema](#nestedatt--spec--config--gitlab--runner_ref))
+
+Optional:
+
+- `runner_ref` (Attributes) Reference to the building block runner that executes GitLab pipelines.If omitted, the pre-defined shared runner is used. (see [below for nested schema](#nestedatt--spec--config--gitlab--runner_ref))
 
 <a id="nestedatt--spec--config--gitlab--runner_ref"></a>
 ### Nested Schema for `spec.config.gitlab.runner_ref`
 
-Required:
+Optional:
+
+- `kind` (String) meshObject type, always `meshBuildingBlockRunner`.
+- `uuid` (String) UUID of the meshBuildingBlockRunner.
 
-- `uuid` (String) UUID of the building block runner.
 
-Read-Only:
 
-- `kind` (String) Kind of the runner reference.
 
 
+<a id="nestedatt--ref"></a>
+### Nested Schema for `ref`
+
+Read-Only:
 
+- `kind` (String) meshObject type, always `meshIntegration`.
+- `uuid` (String) UUID of the meshIntegration.
 
 
 <a id="nestedatt--status"></a>

examples/resources/meshstack_integration/resource_01_github.tf

@@ -11,9 +11,7 @@ resource "meshstack_integration" "example_github" {
         base_url        = "https://github.com"
         app_id          = "123456"
         app_private_key = { secret_value = "-----BEGIN RSA PRIVATE KEY-----\nMOCK_KEY_CONTENT\n-----END RSA PRIVATE KEY-----" }
-        runner_ref = {
-          uuid = "dc8c57a1-823f-4e96-8582-0275fa27dc7b"
-        }
+        runner_ref      = { uuid = "dc8c57a1-823f-4e96-8582-0275fa27dc7b" } # Optional, by default, pre-defined shared runner is used
       }
     }
   }

examples/resources/meshstack_integration/resource_02_azure_devops.tf

@@ -12,9 +12,6 @@ resource "meshstack_integration" "example_azure_devops" {
         personal_access_token = {
           secret_value = "mock-pat-token-12345"
         }
-        runner_ref = {
-          uuid = "05cfa85f-2818-4bdd-b193-620e0187d7de"
-        }
       }
     }
   }

examples/resources/meshstack_integration/resource_03_gitlab.tf

@@ -8,9 +8,6 @@ resource "meshstack_integration" "example_gitlab" {
     config = {
       gitlab = {
         base_url = "https://gitlab.com"
-        runner_ref = {
-          uuid = "f4f4402b-f54d-4ab9-93ae-c07e997041e9"
-        }
       }
     }
   }

internal/provider/building_block_runner.go

@@ -0,0 +1,23 @@
+package provider
+
+import (
+	"github.com/meshcloud/terraform-provider-meshstack/client"
+	"github.com/meshcloud/terraform-provider-meshstack/client/types/enum"
+)
+
+var (
+	SharedBuildingBlockRunnerUuids = map[enum.Entry[client.MeshBuildingBlockImplementationType]]string{
+		client.MeshBuildingBlockImplementationTypeManual:              "46b7c17a-61f0-4062-9601-5785e60ce11f",
+		client.MeshBuildingBlockImplementationTypeTerraform:           "66ddc814-1e69-4dad-b5f1-3a5bce51c01f",
+		client.MeshBuildingBlockImplementationTypeGithubWorkflows:     "dc8c57a1-823f-4e96-8582-0275fa27dc7b",
+		client.MeshBuildingBlockImplementationTypeGitlabPipeline:      "f4f4402b-f54d-4ab9-93ae-c07e997041e9",
+		client.MeshBuildingBlockImplementationTypeAzureDevOpsPipeline: "05cfa85f-2818-4bdd-b193-620e0187d7de",
+	}
+)
+
+func getSharedBuildingBlockRunnerRef(implementationType enum.Entry[client.MeshBuildingBlockImplementationType]) *client.BuildingBlockRunnerRef {
+	return &client.BuildingBlockRunnerRef{
+		Kind: "meshBuildingBlockRunner",
+		Uuid: SharedBuildingBlockRunnerUuids[implementationType],
+	}
+}