#160 adds support for PAR (#161)

* #160 adds support for PAR

Author: eginez

client/bare_metal_client.go

@@ -189,4 +189,9 @@ type BareMetalClient interface {
 	UpdateVolumeBackup(id string, opts *baremetal.IfMatchDisplayNameOptions) (vol *baremetal.VolumeBackup, e error)
 
 	UploadAPIKey(userID, key string, opts *baremetal.RetryTokenOptions) (apiKey *baremetal.APIKey, e error)
+
+	CreatePreauthenticatedRequest(namespace baremetal.Namespace, bucketName string, parDetails *baremetal.CreatePreauthenticatedRequestDetails) (par *baremetal.PreauthenticatedRequest, e error)
+	DeletePreauthenticatedRequest(namespace baremetal.Namespace, bucketName string, parId string, options *baremetal.ClientRequestOptions) (e error)
+	GetPreauthenticatedRequest(namespace baremetal.Namespace, bucketName string, parId string, options *baremetal.ClientRequestOptions) (par *baremetal.PreauthenticatedRequestSummary, e error)
+	ListPreauthenticatedRequests(namespace baremetal.Namespace, bucketName string, options *baremetal.ListPreauthenticatedRequestOptions) (parList *baremetal.ListPreauthenticatedRequests, e error)
 }

client/mocks/bare_metal_client.go

@@ -3658,5 +3658,75 @@ func (_m *BareMetalClient) UploadAPIKey(userID string, key string, opts *baremet
 
 	return r0, r1
 }
+func (_m *BareMetalClient) CreatePreauthenticatedRequest(namespace baremetal.Namespace, bucketName string, parDetails *baremetal.CreatePreauthenticatedRequestDetails) (*baremetal.PreauthenticatedRequest, error){
+	ret := _m.Called(namespace, bucketName, parDetails)
+
+	var r0 *baremetal.PreauthenticatedRequest
+	if rf, ok := ret.Get(0).(func(baremetal.Namespace, string, *baremetal.CreatePreauthenticatedRequestDetails) *baremetal.PreauthenticatedRequest); ok {
+		r0 = rf(namespace, bucketName, parDetails)
+	} else {
+		if ret.Get(0) != nil {
+			r0 = ret.Get(0).(*baremetal.PreauthenticatedRequest)
+		}
+	}
+
+	var r1 error
+	if rf, ok := ret.Get(0).(func(baremetal.Namespace, string, *baremetal.CreatePreauthenticatedRequestDetails) error); ok {
+		r1 = rf(namespace, bucketName, parDetails)
+	} else {
+		r1 = ret.Error(1)
+	}
+
+	return r0, r1
+
+}
+func (_m *BareMetalClient) DeletePreauthenticatedRequest(namespace baremetal.Namespace, bucketName string, parId string, options *baremetal.ClientRequestOptions)  error {
+	ret := _m.Called(namespace, bucketName, parId, options)
+	var r1 error
+	if rf, ok := ret.Get(0).(func(baremetal.Namespace, string, string, *baremetal.ClientRequestOptions) error); ok {
+		r1 = rf(namespace, bucketName, parId, options)
+	} else {
+		r1 = ret.Error(0)
+	}
+	return r1
+}
+
+func (_m *BareMetalClient) GetPreauthenticatedRequest(namespace baremetal.Namespace, bucketName string, parId string, options *baremetal.ClientRequestOptions) (*baremetal.PreauthenticatedRequestSummary, error) {
+	ret := _m.Called(namespace, bucketName, parId, options)
+
+	var r0 *baremetal.PreauthenticatedRequestSummary
+	if rf, ok := ret.Get(0).(func(baremetal.Namespace, string, string, *baremetal.ClientRequestOptions) *baremetal.PreauthenticatedRequestSummary); ok {
+		r0 = rf(namespace, bucketName, parId, options)
+	} else {
+		r0 = ret.Get(0).(*baremetal.PreauthenticatedRequestSummary)
+	}
+
+	var r1 error
+	if rf, ok := ret.Get(1).(func(baremetal.Namespace, string, string, *baremetal.ClientRequestOptions) error); ok {
+		r1 = rf(namespace, bucketName, parId, options)
+	} else {
+		r1 = ret.Error(1)
+	}
+	return r0, r1
+
+}
+func (_m *BareMetalClient) ListPreauthenticatedRequests(namespace baremetal.Namespace, bucketName string, options *baremetal.ListPreauthenticatedRequestOptions) (parList *baremetal.ListPreauthenticatedRequests, e error) {
+	ret := _m.Called(namespace, bucketName, options)
+
+	var r0 *baremetal.ListPreauthenticatedRequests
+	if rf, ok := ret.Get(0).(func(baremetal.Namespace, string, *baremetal.ListPreauthenticatedRequestOptions) *baremetal.ListPreauthenticatedRequests); ok {
+		r0 = rf(namespace, bucketName, options)
+	} else {
+		r0 = ret.Get(0).(*baremetal.ListPreauthenticatedRequests)
+	}
+
+	var r1 error
+	if rf, ok := ret.Get(0).(func(baremetal.Namespace, string, *baremetal.ListPreauthenticatedRequestOptions) error); ok {
+		r1 = rf(namespace, bucketName, options)
+	} else {
+		r1 = ret.Error(1)
+	}
+	return r0, r1
+}
 
 var _ client.BareMetalClient = (*BareMetalClient)(nil)

docs/examples/storage/preauthrequests/preauthreq.tf

@@ -0,0 +1,47 @@
+#     ___  ____     _    ____ _     _____
+#    / _ \|  _ \   / \  / ___| |   | ____|
+#   | | | | |_) | / _ \| |   | |   |  _|
+#   | |_| |  _ < / ___ | |___| |___| |___
+#    \___/|_| \_/_/   \_\____|_____|_____|
+
+## PAR(preauthenticated requests) management.
+## This example creates two preauthenticated requests, one on a bucket and the second on an object
+## Export the environmental variables used for configuration.
+## Provide the script with an object and bucket present in your namespace
+
+variable "tenancy_ocid" {}
+variable "user_ocid" {}
+variable "fingerprint" {}
+variable "private_key_path" {}
+variable "compartment_ocid" {}
+variable "namespace_name" {}
+
+variable "bucket_name" {}
+variable "object_name" {}
+
+provider "baremetal" {
+  region = "us-phoenix-1"
+  alias = "phx"
+  tenancy_ocid = "${var.tenancy_ocid}"
+  user_ocid = "${var.user_ocid}"
+  fingerprint = "${var.fingerprint}"
+  private_key_path = "${var.private_key_path}"
+}
+
+
+resource "baremetal_objectstorage_preauthrequest" "parOnBucket" {
+  namespace = "${var.namespace_name}"
+  bucket = "${var.bucket_name}"
+  name = "parOnBucket"
+  access_type = "AnyObjectWrite" //Other configurations accepted are ObjectWrite, ObjectReadWrite
+  time_expires = "2019-11-10T23:00:00Z"
+}
+
+resource "baremetal_objectstorage_preauthrequest" "parOnObject" {
+  namespace = "${var.namespace_name}"
+  bucket = "${var.bucket_name}"
+  object = "${var.object_name}"
+  name = "parOnObject"
+  access_type = "ObjectRead" //Other configurations accepted are ObjectWrite, ObjectReadWrite
+  time_expires = "2019-11-10T23:00:00Z"
+}

helpers_objectstorage.go

@@ -72,3 +72,47 @@ var objectSchema = map[string]*schema.Schema{
 		Optional: true,
 	},
 }
+
+var preauthenticatedRequestSchema = map[string]*schema.Schema{
+	"id": {
+		Type: schema.TypeString,
+		Optional:true,
+		Computed:true,
+	},
+	"namespace": {
+		Type:     schema.TypeString,
+		Required: true,
+		Computed: false,
+	},
+	"name": {
+		Type:     schema.TypeString,
+		Required: true,
+		Computed: false,
+	},
+	"bucket": {
+		Type:     schema.TypeString,
+		Required: true,
+		Computed: false,
+	},
+	"object": {
+		Type:     schema.TypeString,
+		Optional: true,
+		Computed: false,
+	},
+	"access_type": {
+		Type:     schema.TypeString,
+		Computed: false,
+		Default:  baremetal.ObjectRead,
+		Optional: true,
+		ValidateFunc: validation.StringInSlice([]string{
+			string(baremetal.PARAnyObjectWrite),
+			string(baremetal.PARObjectRead),
+			string(baremetal.PARObjectReadWrite),
+			string(baremetal.ObjectRead)}, true),
+	},
+	"time_expires": {
+		Type:         schema.TypeString,
+		Computed:     false,
+		Required:     true,
+	},
+}

provider.go

@@ -183,6 +183,7 @@ func resourcesMap() map[string]*schema.Resource {
 		"baremetal_load_balancer_listener":         LoadBalancerListenerResource(),
 		"baremetal_objectstorage_bucket":           BucketResource(),
 		"baremetal_objectstorage_object":           ObjectResource(),
+		"baremetal_objectstorage_preauthrequest":   PreauthenticatedRequestResource(),
 	}
 }
 

resource_obmcs_objectstorage_preauthenticatedrequest.go

@@ -0,0 +1,155 @@
+// Copyright (c) 2017, Oracle and/or its affiliates. All rights reserved.
+
+package main
+
+import (
+	"github.com/MustWin/baremetal-sdk-go"
+	"github.com/hashicorp/terraform/helper/schema"
+
+	"github.com/oracle/terraform-provider-baremetal/client"
+	"github.com/oracle/terraform-provider-baremetal/crud"
+	"github.com/pkg/errors"
+	"time"
+)
+
+type PreauthenticatedRequestResourceCrud struct {
+	crud.BaseCrud
+	Id string
+	Namespace  string
+	BucketName string
+	ObjectName string
+	AccessURI string
+	AccessType baremetal.PARAccessType
+	TimeExpires baremetal.Time
+	TimeCreated baremetal.Time
+}
+
+func PreauthenticatedRequestResource() *schema.Resource {
+	return &schema.Resource{
+		Importer: &schema.ResourceImporter{
+			State: schema.ImportStatePassthrough,
+		},
+		Timeouts: crud.DefaultTimeout,
+		Create:   createPreauthenticatedRequest,
+		Read:     readPreauthenticatedRequest,
+		Update:   updatePreauthenticatedRequest,
+		Delete:   deletePreauthenticatedRequest,
+		Schema:   preauthenticatedRequestSchema,
+	}
+}
+
+func createPreauthenticatedRequest(d *schema.ResourceData, m interface{}) (e error) {
+	sync := &PreauthenticatedRequestResourceCrud{}
+	sync.D = d
+	sync.Client = m.(client.BareMetalClient)
+	return crud.CreateResource(d, sync)
+}
+
+func readPreauthenticatedRequest(d *schema.ResourceData, m interface{}) (e error) {
+	sync := &PreauthenticatedRequestResourceCrud{}
+	sync.D = d
+	sync.Client = m.(client.BareMetalClient)
+	return crud.ReadResource(sync)
+}
+
+func updatePreauthenticatedRequest(d *schema.ResourceData, m interface{}) (e error) {
+	sync := &PreauthenticatedRequestResourceCrud{}
+	sync.D = d
+	sync.Client = m.(client.BareMetalClient)
+	return crud.UpdateResource(d, sync)
+}
+
+func deletePreauthenticatedRequest(d *schema.ResourceData, m interface{}) (e error) {
+	sync := &PreauthenticatedRequestResourceCrud{}
+	sync.D = d
+	sync.Client = m.(client.BareMetalClient)
+	return crud.DeleteResource(d, sync)
+}
+
+func (s *PreauthenticatedRequestResourceCrud) ID() string {
+	return s.Id
+}
+
+func (s *PreauthenticatedRequestResourceCrud) SetData() {
+	s.D.Set("namespace", s.Namespace)
+	s.D.Set("bucket", s.BucketName)
+	s.D.Set("object", s.ObjectName)
+	s.D.Set("time_expires", s.TimeExpires.Format(time.RFC3339))
+	s.D.Set("access_type", s.AccessType)
+	s.D.Set("id", s.ID)
+}
+
+func (s *PreauthenticatedRequestResourceCrud) Create() (e error) {
+	namespace := s.D.Get("namespace").(string)
+	bucket := s.D.Get("bucket").(string)
+	name := s.D.Get("name").(string)
+	accessType := s.D.Get("access_type").(string)
+	t, _ := time.Parse(time.RFC3339, s.D.Get("time_expires").(string))
+	details := &baremetal.CreatePreauthenticatedRequestDetails{
+		Name: name,
+		TimeExpires: baremetal.Time{Time: t},
+		AccessType:  baremetal.PARAccessType(accessType),
+	}
+
+	object := s.D.Get("object").(string)
+	if object, ok := s.D.GetOk("object"); ok {
+		details.ObjectName = object.(string)
+	}
+
+	var res *baremetal.PreauthenticatedRequest
+	res, e = s.Client.CreatePreauthenticatedRequest(baremetal.Namespace(namespace), bucket, details)
+
+	if e != nil {
+		return
+	}
+
+	s.AccessURI = res.AccessURI
+	s.Id = res.ID
+	s.TimeCreated = res.TimeCreated
+	s.TimeExpires = res.TimeExpires
+	s.AccessType = res.AccessType
+	s.Namespace = namespace
+	s.BucketName = bucket
+	s.ObjectName = object
+	return
+}
+
+func (s *PreauthenticatedRequestResourceCrud) Get() (e error) {
+	namespace := s.D.Get("namespace").(string)
+	bucket := s.D.Get("bucket").(string)
+	parId := s.D.Get("id").(string)
+
+	var res *baremetal.PreauthenticatedRequestSummary
+	res, e = s.Client.GetPreauthenticatedRequest(baremetal.Namespace(namespace), bucket, parId,
+		&baremetal.ClientRequestOptions{})
+
+	if e != nil {
+		return
+	}
+
+	s.Id = res.ID
+	s.AccessURI = ""
+	s.TimeCreated = res.TimeCreated
+	s.TimeExpires = res.TimeExpires
+	s.AccessType = res.AccessType
+	s.Namespace = namespace
+	s.BucketName = bucket
+	s.ObjectName = res.ObjectName
+
+	return
+}
+
+func (s *PreauthenticatedRequestResourceCrud) Update() (e error) {
+	e = errors.New("Update operation is not supported for PreauthenticatedRequest. Create a new " +
+		"PreauthenticatedRequest if you need to make modifications ")
+	return
+}
+
+func (s *PreauthenticatedRequestResourceCrud) Delete() (e error) {
+	namespace := s.D.Get("namespace").(string)
+	bucket := s.D.Get("bucket").(string)
+	parId := s.D.Get("id").(string)
+	opts := &baremetal.ClientRequestOptions{}
+
+	return s.Client.DeletePreauthenticatedRequest(baremetal.Namespace(namespace), bucket, parId, opts)
+}