Added - Support for Logging Analytics Customer-Provided Encryption Keys

(cherry picked from commit 01f503d)

Author: yueying22

examples/log_analytics/encryption_key_info/encryption_key_info.tf

@@ -0,0 +1,19 @@
+// Copyright (c) 2017, 2021, Oracle and/or its affiliates. All rights reserved.
+// Licensed under the Mozilla Public License v2.0
+
+variable "tenancy_ocid" {}
+variable "user_ocid" {}
+variable "fingerprint" {}
+variable "private_key_path" {}
+variable "region" {}
+variable "compartment_ocid" {}
+
+# Fetch namespace name from object store GET /n
+data "oci_objectstorage_namespace" "ns" {
+  compartment_id             = var.compartment_ocid
+}
+
+data "oci_log_analytics_namespace_storage_encryption_key_info" "test_namespace_storage_encryption_key_info" {
+  #Required
+  namespace = data.oci_objectstorage_namespace.ns.namespace
+}

internal/integrationtest/log_analytics_namespace_storage_encryption_key_info_test.go

@@ -0,0 +1,48 @@
+// Copyright (c) 2017, 2021, Oracle and/or its affiliates. All rights reserved.
+// Licensed under the Mozilla Public License v2.0
+
+package integrationtest
+
+import (
+	"testing"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/resource"
+
+	"github.com/oracle/terraform-provider-oci/httpreplay"
+
+	"github.com/oracle/terraform-provider-oci/internal/acctest"
+)
+
+var (
+	LogAnalyticsNamespaceStorageEncryptionKeyInfoSingularDataSourceRepresentation = map[string]interface{}{
+		"namespace": acctest.Representation{RepType: acctest.Required, Create: `${data.oci_objectstorage_namespace.test_namespace.namespace}`},
+	}
+
+	LogAnalyticsNamespaceStorageEncryptionKeyInfoResourceConfig = ""
+	LogAnalyticsNamespaceStorageEncryptionKeyInfoDependencies   = acctest.GenerateDataSourceFromRepresentationMap("oci_objectstorage_namespace", "test_namespace", acctest.Required, acctest.Create, ObjectStorageObjectStorageNamespaceSingularDataSourceRepresentation)
+)
+
+// issue-routing-tag: log_analytics/default
+func TestLogAnalyticsNamespaceStorageEncryptionKeyInfoResource_basic(t *testing.T) {
+	httpreplay.SetScenario("TestLogAnalyticsNamespaceStorageEncryptionKeyInfoResource_basic")
+	defer httpreplay.SaveScenario()
+
+	config := acctest.ProviderTestConfig()
+
+	singularDatasourceName := "data.oci_log_analytics_namespace_storage_encryption_key_info.test_namespace_storage_encryption_key_info"
+
+	acctest.SaveConfigContent("", "", "", t)
+
+	acctest.ResourceTest(t, nil, []resource.TestStep{
+		// verify singular datasource
+		{
+			Config: config +
+				acctest.GenerateDataSourceFromRepresentationMap("oci_log_analytics_namespace_storage_encryption_key_info", "test_namespace_storage_encryption_key_info", acctest.Required, acctest.Create, LogAnalyticsNamespaceStorageEncryptionKeyInfoSingularDataSourceRepresentation) +
+				LogAnalyticsNamespaceStorageEncryptionKeyInfoDependencies,
+			Check: acctest.ComposeAggregateTestCheckFuncWrapper(
+				resource.TestCheckResourceAttrSet(singularDatasourceName, "namespace"),
+				resource.TestCheckResourceAttr(singularDatasourceName, "items.#", "2"),
+			),
+		},
+	})
+}

internal/service/log_analytics/log_analytics_namespace_storage_encryption_key_info_data_source.go

@@ -0,0 +1,119 @@
+// Copyright (c) 2017, 2021, Oracle and/or its affiliates. All rights reserved.
+// Licensed under the Mozilla Public License v2.0
+
+package log_analytics
+
+import (
+	"context"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
+	oci_log_analytics "github.com/oracle/oci-go-sdk/v65/loganalytics"
+
+	"github.com/oracle/terraform-provider-oci/internal/client"
+	"github.com/oracle/terraform-provider-oci/internal/tfresource"
+)
+
+func LogAnalyticsNamespaceStorageEncryptionKeyInfoDataSource() *schema.Resource {
+	return &schema.Resource{
+		Read: readSingularLogAnalyticsNamespaceStorageEncryptionKeyInfo,
+		Schema: map[string]*schema.Schema{
+			"namespace": {
+				Type:     schema.TypeString,
+				Required: true,
+			},
+			// Computed
+			"items": {
+				Type:     schema.TypeList,
+				Computed: true,
+				Elem: &schema.Resource{
+					Schema: map[string]*schema.Schema{
+						// Required
+
+						// Optional
+
+						// Computed
+						"key_id": {
+							Type:     schema.TypeString,
+							Computed: true,
+						},
+						"key_source": {
+							Type:     schema.TypeString,
+							Computed: true,
+						},
+						"key_type": {
+							Type:     schema.TypeString,
+							Computed: true,
+						},
+					},
+				},
+			},
+		},
+	}
+}
+
+func readSingularLogAnalyticsNamespaceStorageEncryptionKeyInfo(d *schema.ResourceData, m interface{}) error {
+	sync := &LogAnalyticsNamespaceStorageEncryptionKeyInfoDataSourceCrud{}
+	sync.D = d
+	sync.Client = m.(*client.OracleClients).LogAnalyticsClient()
+
+	return tfresource.ReadResource(sync)
+}
+
+type LogAnalyticsNamespaceStorageEncryptionKeyInfoDataSourceCrud struct {
+	D      *schema.ResourceData
+	Client *oci_log_analytics.LogAnalyticsClient
+	Res    *oci_log_analytics.ListEncryptionKeyInfoResponse
+}
+
+func (s *LogAnalyticsNamespaceStorageEncryptionKeyInfoDataSourceCrud) VoidState() {
+	s.D.SetId("")
+}
+
+func (s *LogAnalyticsNamespaceStorageEncryptionKeyInfoDataSourceCrud) Get() error {
+	request := oci_log_analytics.ListEncryptionKeyInfoRequest{}
+
+	if namespace, ok := s.D.GetOkExists("namespace"); ok {
+		tmp := namespace.(string)
+		request.NamespaceName = &tmp
+	}
+
+	request.RequestMetadata.RetryPolicy = tfresource.GetRetryPolicy(false, "log_analytics")
+
+	response, err := s.Client.ListEncryptionKeyInfo(context.Background(), request)
+	if err != nil {
+		return err
+	}
+
+	s.Res = &response
+	return nil
+}
+
+func (s *LogAnalyticsNamespaceStorageEncryptionKeyInfoDataSourceCrud) SetData() error {
+	if s.Res == nil {
+		return nil
+	}
+
+	s.D.SetId(tfresource.GenerateDataSourceHashID("LogAnalyticsNamespaceStorageEncryptionKeyInfoDataSource-", LogAnalyticsNamespaceStorageEncryptionKeyInfoDataSource(), s.D))
+
+	items := []interface{}{}
+	for _, item := range s.Res.Items {
+		items = append(items, EncryptionKeyInfoSummaryToMap(item))
+	}
+	s.D.Set("items", items)
+
+	return nil
+}
+
+func EncryptionKeyInfoSummaryToMap(obj oci_log_analytics.EncryptionKeyInfoSummary) map[string]interface{} {
+	result := map[string]interface{}{}
+
+	if obj.KeyId != nil {
+		result["key_id"] = string(*obj.KeyId)
+	}
+
+	result["key_source"] = string(obj.KeySource)
+
+	result["key_type"] = string(obj.KeyType)
+
+	return result
+}

internal/service/log_analytics/register_datasource.go

@@ -27,5 +27,6 @@ func RegisterDatasource() {
 	tfresource.RegisterDatasource("oci_log_analytics_namespace_rules", LogAnalyticsNamespaceRulesDataSource())
 	tfresource.RegisterDatasource("oci_log_analytics_namespace_scheduled_task", LogAnalyticsNamespaceScheduledTaskDataSource())
 	tfresource.RegisterDatasource("oci_log_analytics_namespace_scheduled_tasks", LogAnalyticsNamespaceScheduledTasksDataSource())
+	tfresource.RegisterDatasource("oci_log_analytics_namespace_storage_encryption_key_info", LogAnalyticsNamespaceStorageEncryptionKeyInfoDataSource())
 	tfresource.RegisterDatasource("oci_log_analytics_namespaces", LogAnalyticsNamespacesDataSource())
 }

website/docs/d/log_analytics_namespace_storage_encryption_key_info.html.markdown

@@ -0,0 +1,39 @@
+---
+subcategory: "Log Analytics"
+layout: "oci"
+page_title: "Oracle Cloud Infrastructure: oci_log_analytics_namespace_storage_encryption_key_info"
+sidebar_current: "docs-oci-datasource-log_analytics-namespace_storage_encryption_key_info"
+description: |-
+  Provides details about a specific Namespace Storage Encryption Key Info in Oracle Cloud Infrastructure Log Analytics service
+---
+
+# Data Source: oci_log_analytics_namespace_storage_encryption_key_info
+This data source provides details about a specific Namespace Storage Encryption Key Info resource in Oracle Cloud Infrastructure Log Analytics service.
+
+This API returns the list of customer owned encryption key info.
+
+## Example Usage
+
+```hcl
+data "oci_log_analytics_namespace_storage_encryption_key_info" "test_namespace_storage_encryption_key_info" {
+	#Required
+	namespace = var.namespace_storage_encryption_key_info_namespace
+}
+```
+
+## Argument Reference
+
+The following arguments are supported:
+
+* `namespace` - (Required) The Logging Analytics namespace used for the request. 
+
+
+## Attributes Reference
+
+The following attributes are exported:
+
+* `items` - This is an array of encryption key info. There are at most 2 items in the list. 
+	* `key_id` - This is the key OCID of the encryption key (null if Oracle-managed).
+	* `key_source` - This is the source of the encryption key.
+	* `key_type` - This is the type of data to be encrypted. It can be either active or archival.
+