Added - image-count option is provided for create and update container scan recipe

Author: Vandana Mishra

examples/vulnerability_scanning_service/main.tf

@@ -1,21 +1,37 @@
 // Copyright (c) 2017, 2021, Oracle and/or its affiliates. All rights reserved.
 
-variable "tenancy_ocid" {
+variable "tenancy_ocid" {}
+variable "user_ocid" {}
+variable "fingerprint" {}
+variable "private_key_path" {}
+variable "region" {}
+variable "compartment_ocid" {}
+
+variable "container_scan_recipe_defined_tags_value" {
+  default = "value"
 }
 
-variable "user_ocid" {
+variable "container_scan_recipe_display_name" {
+  default = "displayName"
 }
 
-variable "fingerprint" {
+variable "container_scan_recipe_freeform_tags" {
+  default = { "bar-key" = "value" }
 }
 
-variable "private_key_path" {
+variable "container_scan_recipe_defined_tags" {
 }
 
-variable "region" {
+variable "container_scan_recipe_image_count" {
+  default = 4
 }
 
-variable "compartment_ocid" {
+variable "container_scan_recipe_scan_settings_scan_level" {
+  default = "NONE"
+}
+
+variable "container_scan_recipe_state" {
+  default = "Active"
 }
 
 variable "host_scan_instance_ocid" {
@@ -107,11 +123,21 @@ resource "oci_vulnerability_scanning_container_scan_recipe" "test_container_scan
   compartment_id = var.compartment_ocid
   scan_settings {
     #Required
-    scan_level = "NONE"
+    scan_level = var.container_scan_recipe_scan_settings_scan_level
   }
 
   #Optional
-  defined_tags = {"foo-namespace.bar-key"= "value"}
-  display_name = "TestContainerScanRecipe"
-  freeform_tags = {"bar-key"= "value"}
+  defined_tags  = map(var.container_scan_recipe_defined_tags, var.container_scan_recipe_defined_tags_value)
+  display_name  = var.container_scan_recipe_display_name
+  freeform_tags = var.container_scan_recipe_freeform_tags
+  image_count   = var.container_scan_recipe_image_count
+}
+
+data "oci_vulnerability_scanning_container_scan_recipes" "test_container_scan_recipes" {
+  #Required
+  compartment_id = var.compartment_ocid
+
+  #Optional
+  display_name = var.container_scan_recipe_display_name
+  state        = var.container_scan_recipe_state
 }

internal/integrationtest/vulnerability_scanning_container_scan_recipe_test.go

@@ -52,10 +52,15 @@ var (
 		"defined_tags":   acctest.Representation{RepType: acctest.Optional, Create: `${map("${oci_identity_tag_namespace.tag-namespace1.name}.${oci_identity_tag.tag1.name}", "value")}`, Update: `${map("${oci_identity_tag_namespace.tag-namespace1.name}.${oci_identity_tag.tag1.name}", "updatedValue")}`},
 		"display_name":   acctest.Representation{RepType: acctest.Optional, Create: `displayName`, Update: `displayName2`},
 		"freeform_tags":  acctest.Representation{RepType: acctest.Optional, Create: map[string]string{"bar-key": "value"}, Update: map[string]string{"Department": "Accounting"}},
+		"image_count":    acctest.Representation{RepType: acctest.Optional, Create: `2`, Update: `3`},
+		"lifecycle":      acctest.RepresentationGroup{RepType: acctest.Required, Group: ignoreDefinedTagsChangesRecipeRep},
 	}
 	containerScanRecipeScanSettingsRepresentation = map[string]interface{}{
 		"scan_level": acctest.Representation{RepType: acctest.Required, Create: `NONE`, Update: `STANDARD`},
 	}
+	ignoreDefinedTagsChangesRecipeRep = map[string]interface{}{
+		"ignore_changes": acctest.Representation{RepType: acctest.Required, Create: []string{`defined_tags`}},
+	}
 
 	ContainerScanRecipeResourceDependencies = DefinedTagsDependencies
 )
@@ -112,6 +117,7 @@ func TestVulnerabilityScanningContainerScanRecipeResource_basic(t *testing.T) {
 				resource.TestCheckResourceAttr(resourceName, "display_name", "displayName"),
 				resource.TestCheckResourceAttr(resourceName, "freeform_tags.%", "1"),
 				resource.TestCheckResourceAttrSet(resourceName, "id"),
+				resource.TestCheckResourceAttr(resourceName, "image_count", "2"),
 				resource.TestCheckResourceAttr(resourceName, "scan_settings.#", "1"),
 				resource.TestCheckResourceAttr(resourceName, "scan_settings.0.scan_level", "NONE"),
 				resource.TestCheckResourceAttrSet(resourceName, "state"),
@@ -142,6 +148,7 @@ func TestVulnerabilityScanningContainerScanRecipeResource_basic(t *testing.T) {
 				resource.TestCheckResourceAttr(resourceName, "display_name", "displayName"),
 				resource.TestCheckResourceAttr(resourceName, "freeform_tags.%", "1"),
 				resource.TestCheckResourceAttrSet(resourceName, "id"),
+				resource.TestCheckResourceAttr(resourceName, "image_count", "2"),
 				resource.TestCheckResourceAttr(resourceName, "scan_settings.#", "1"),
 				resource.TestCheckResourceAttr(resourceName, "scan_settings.0.scan_level", "NONE"),
 				resource.TestCheckResourceAttrSet(resourceName, "state"),
@@ -167,6 +174,7 @@ func TestVulnerabilityScanningContainerScanRecipeResource_basic(t *testing.T) {
 				resource.TestCheckResourceAttr(resourceName, "display_name", "displayName2"),
 				resource.TestCheckResourceAttr(resourceName, "freeform_tags.%", "1"),
 				resource.TestCheckResourceAttrSet(resourceName, "id"),
+				resource.TestCheckResourceAttr(resourceName, "image_count", "3"),
 				resource.TestCheckResourceAttr(resourceName, "scan_settings.#", "1"),
 				resource.TestCheckResourceAttr(resourceName, "scan_settings.0.scan_level", "STANDARD"),
 				resource.TestCheckResourceAttrSet(resourceName, "state"),
@@ -209,6 +217,7 @@ func TestVulnerabilityScanningContainerScanRecipeResource_basic(t *testing.T) {
 				resource.TestCheckResourceAttr(singularDatasourceName, "display_name", "displayName2"),
 				resource.TestCheckResourceAttr(singularDatasourceName, "freeform_tags.%", "1"),
 				resource.TestCheckResourceAttrSet(singularDatasourceName, "id"),
+				resource.TestCheckResourceAttr(singularDatasourceName, "image_count", "3"),
 				resource.TestCheckResourceAttr(singularDatasourceName, "scan_settings.#", "1"),
 				resource.TestCheckResourceAttr(singularDatasourceName, "scan_settings.0.scan_level", "STANDARD"),
 				resource.TestCheckResourceAttrSet(singularDatasourceName, "state"),

internal/integrationtest/vulnerability_scanning_container_scan_target_test.go

@@ -54,6 +54,7 @@ var (
 		"description":              acctest.Representation{RepType: acctest.Optional, Create: `description`, Update: `description2`},
 		"display_name":             acctest.Representation{RepType: acctest.Optional, Create: `displayName`, Update: `displayName2`},
 		"freeform_tags":            acctest.Representation{RepType: acctest.Optional, Create: map[string]string{"bar-key": "value"}, Update: map[string]string{"Department": "Accounting"}},
+		"lifecycle":                acctest.RepresentationGroup{RepType: acctest.Required, Group: ignoreDefinedTagsChangesTargetRep},
 	}
 	containerScanTargetTargetRegistryRepresentation = map[string]interface{}{
 		"compartment_id": acctest.Representation{RepType: acctest.Required, Create: `${var.compartment_id}`},
@@ -76,6 +77,10 @@ var (
 		"readme":         acctest.RepresentationGroup{RepType: acctest.Optional, Group: containerRepositoryReadmeRepresentation},
 	}
 
+	ignoreDefinedTagsChangesTargetRep = map[string]interface{}{
+		"ignore_changes": acctest.Representation{RepType: acctest.Required, Create: []string{`defined_tags`}},
+	}
+
 	ContainerScanTargetResourceDependencies = DefinedTagsDependencies +
 		acctest.GenerateResourceFromRepresentationMap("oci_artifacts_container_repository", "test_container_repository1", acctest.Required, acctest.Create, containerScanRepositoryRepresentation1) +
 		acctest.GenerateResourceFromRepresentationMap("oci_artifacts_container_repository", "test_container_repository2", acctest.Required, acctest.Create, containerScanRepositoryRepresentation2) +

internal/service/vulnerability_scanning/vulnerability_scanning_container_scan_recipe_data_source.go

@@ -80,6 +80,10 @@ func (s *VulnerabilityScanningContainerScanRecipeDataSourceCrud) SetData() error
 
 	s.D.Set("freeform_tags", s.Res.FreeformTags)
 
+	if s.Res.ImageCount != nil {
+		s.D.Set("image_count", *s.Res.ImageCount)
+	}
+
 	if s.Res.ScanSettings != nil {
 		s.D.Set("scan_settings", []interface{}{ContainerScanSettingsToMap(s.Res.ScanSettings)})
 	} else {

internal/service/vulnerability_scanning/vulnerability_scanning_container_scan_recipe_resource.go

@@ -74,6 +74,11 @@ func VulnerabilityScanningContainerScanRecipeResource() *schema.Resource {
 				Computed: true,
 				Elem:     schema.TypeString,
 			},
+			"image_count": {
+				Type:     schema.TypeInt,
+				Optional: true,
+				Computed: true,
+			},
 
 			// Computed
 			"state": {
@@ -190,6 +195,11 @@ func (s *VulnerabilityScanningContainerScanRecipeResourceCrud) Create() error {
 		request.FreeformTags = tfresource.ObjectMapToStringMap(freeformTags.(map[string]interface{}))
 	}
 
+	if imageCount, ok := s.D.GetOkExists("image_count"); ok {
+		tmp := imageCount.(int)
+		request.ImageCount = &tmp
+	}
+
 	if scanSettings, ok := s.D.GetOkExists("scan_settings"); ok {
 		if tmpList := scanSettings.([]interface{}); len(tmpList) > 0 {
 			fieldKeyFormat := fmt.Sprintf("%s.%d.%%s", "scan_settings", 0)
@@ -374,6 +384,11 @@ func (s *VulnerabilityScanningContainerScanRecipeResourceCrud) Update() error {
 		request.FreeformTags = tfresource.ObjectMapToStringMap(freeformTags.(map[string]interface{}))
 	}
 
+	if imageCount, ok := s.D.GetOkExists("image_count"); ok {
+		tmp := imageCount.(int)
+		request.ImageCount = &tmp
+	}
+
 	if scanSettings, ok := s.D.GetOkExists("scan_settings"); ok {
 		if tmpList := scanSettings.([]interface{}); len(tmpList) > 0 {
 			fieldKeyFormat := fmt.Sprintf("%s.%d.%%s", "scan_settings", 0)
@@ -431,6 +446,10 @@ func (s *VulnerabilityScanningContainerScanRecipeResourceCrud) SetData() error {
 
 	s.D.Set("freeform_tags", s.Res.FreeformTags)
 
+	if s.Res.ImageCount != nil {
+		s.D.Set("image_count", *s.Res.ImageCount)
+	}
+
 	if s.Res.ScanSettings != nil {
 		s.D.Set("scan_settings", []interface{}{ContainerScanSettingsToMap(s.Res.ScanSettings)})
 	} else {

internal/service/vulnerability_scanning/vulnerability_scanning_container_scan_target_resource.go

@@ -549,6 +549,14 @@ func ContainerScanTargetSummaryToMap(obj oci_vulnerability_scanning.ContainerSca
 		result["system_tags"] = tfresource.SystemTagsToMap(obj.SystemTags)
 	}
 
+	if obj.TargetRegistry != nil {
+		targetRegistryArray := []interface{}{}
+		if targetRegistryMap := ContainerScanRegistryToMap(&obj.TargetRegistry); targetRegistryMap != nil {
+			targetRegistryArray = append(targetRegistryArray, targetRegistryMap)
+		}
+		result["target_registry"] = targetRegistryArray
+	}
+
 	if obj.TimeCreated != nil {
 		result["time_created"] = obj.TimeCreated.String()
 	}

website/docs/d/vulnerability_scanning_container_scan_recipe.html.markdown

@@ -10,7 +10,7 @@ description: |-
 # Data Source: oci_vulnerability_scanning_container_scan_recipe
 This data source provides details about a specific Container Scan Recipe resource in Oracle Cloud Infrastructure Vulnerability Scanning service.
 
-Gets a ContainerScanRecipe by identifier
+Retrieves a ContainerScanRecipe identified by the recipe ID. A recipe determines the types of security issues that you want scanned.
 
 
 ## Example Usage
@@ -38,6 +38,7 @@ The following attributes are exported:
 * `display_name` - User friendly name of container scan recipe
 * `freeform_tags` - Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: `{"bar-key": "value"}` 
 * `id` - The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of container scan recipe. Immutable and generated on creation.
+* `image_count` - This field is set equal to the number of images we want to scan in the first go when the recipe is created
 * `scan_settings` - A collection of container scan settings
 	* `scan_level` - The scan level
 * `state` - The current state of the config.

website/docs/d/vulnerability_scanning_container_scan_recipes.html.markdown

@@ -10,7 +10,7 @@ description: |-
 # Data Source: oci_vulnerability_scanning_container_scan_recipes
 This data source provides the list of Container Scan Recipes in Oracle Cloud Infrastructure Vulnerability Scanning service.
 
-Returns a list of ContainerScanRecipeSummaries
+Retrieves a list of ContainerScanRecipeSummary objects in a compartment. A recipe determines the types of security issues that you want scanned.
 
 
 ## Example Usage
@@ -50,6 +50,7 @@ The following attributes are exported:
 * `display_name` - User friendly name of container scan recipe
 * `freeform_tags` - Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only. Example: `{"bar-key": "value"}` 
 * `id` - The [OCID](https://docs.cloud.oracle.com/iaas/Content/General/Concepts/identifiers.htm) of container scan recipe. Immutable and generated on creation.
+* `image_count` - This field is set equal to the number of images we want to scan in the first go when the recipe is created
 * `scan_settings` - A collection of container scan settings
 	* `scan_level` - The scan level
 * `state` - The current state of the config.

website/docs/d/vulnerability_scanning_container_scan_target.html.markdown

@@ -10,7 +10,7 @@ description: |-
 # Data Source: oci_vulnerability_scanning_container_scan_target
 This data source provides details about a specific Container Scan Target resource in Oracle Cloud Infrastructure Vulnerability Scanning service.
 
-Gets a ContainerScanTarget by identifier
+Gets a ContainerScanTarget identified by the target ID. A container scan target specifies a group of one or more Docker image repositories in Oracle Cloud Infrastructure Registry (OCIR) that you want routinely scanned for security vulnerabilities.
 
 
 ## Example Usage

website/docs/d/vulnerability_scanning_container_scan_targets.html.markdown

@@ -10,7 +10,7 @@ description: |-
 # Data Source: oci_vulnerability_scanning_container_scan_targets
 This data source provides the list of Container Scan Targets in Oracle Cloud Infrastructure Vulnerability Scanning service.
 
-Returns a list of ContainerScanTargetSummaries
+Retrieves a list of ContainerScanTargetSummary objects in a compartment. A container scan target specifies a group of one or more Docker image repositories in Oracle Cloud Infrastructure Registry (OCIR) that you want routinely scanned for security vulnerabilities.
 
 
 ## Example Usage