Added - Support for Create Terraform provider for Secure Desktops Desktop as a Service

Author: Marcel Casado

examples/desktops/description.md

@@ -0,0 +1,5 @@
+# Overview
+
+This is a Terraform configuration that creates the secure DesktopPool resources on Oracle Cloud Infrastructure.
+
+The Terraform code is used to create a Resource Manager stack, that creates the required resources and configures the application on the created resources.

examples/desktops/desktop_pool/main.tf

@@ -0,0 +1,115 @@
+// Copyright (c) 2017, 2024, Oracle and/or its affiliates. All rights reserved.
+// Licensed under the Mozilla Public License v2.0
+
+
+resource "oci_desktops_desktop_pool" "test_desktop_pool" {
+  #Required
+  compartment_id  = var.compartment_id
+  display_name    = var.desktop_pool_display_name
+  contact_details = var.desktop_pool_contact_details
+
+  are_privileged_users = var.desktop_pool_are_privileged_users
+  availability_domain  = data.oci_identity_availability_domain.ad.name
+
+  network_configuration {
+    #Required
+    subnet_id = var.desktop_pool_subnet_id
+    vcn_id    = var.desktop_pool_vcn_id
+  }
+
+  device_policy {
+    #Required
+    audio_mode          = var.desktop_pool_device_policy_audio_mode
+    cdm_mode            = var.desktop_pool_device_policy_cdm_mode
+    clipboard_mode      = var.desktop_pool_device_policy_clipboard_mode
+    is_display_enabled  = var.desktop_pool_device_policy_is_display_enabled
+    is_keyboard_enabled = var.desktop_pool_device_policy_is_keyboard_enabled
+    is_pointer_enabled  = var.desktop_pool_device_policy_is_pointer_enabled
+    is_printing_enabled = var.desktop_pool_device_policy_is_printing_enabled
+  }
+
+  image {
+    #Required
+    image_id   = var.desktop_pool_image_id
+    image_name = var.desktop_pool_image_name
+  }
+
+  availability_policy {
+    #Required
+    start_schedule {
+      #Required
+      cron_expression = var.desktop_pool_start_schedule_cron_expr
+      timezone        = var.desktop_pool_start_schedule_timezone
+    }
+    stop_schedule {
+      #Required
+      cron_expression = var.desktop_pool_stop_schedule_cron_expr
+      timezone        = var.desktop_pool_stop_schedule_timezone
+    }
+  }
+
+  is_storage_enabled       = var.desktop_pool_is_storage_enabled
+  storage_backup_policy_id = var.desktop_pool_backup_policy_id
+  storage_size_in_gbs      = var.desktop_pool_storage_size_in_gbs
+
+  shape_name   = var.desktop_pool_shape_name
+  standby_size = var.desktop_pool_standby_size
+  maximum_size = var.desktop_pool_maximum_size
+
+  #Optional
+  #  defined_tags         = map(oci_identity_tag_namespace.tag-namespace1.name.oci_identity_tag.tag1.name, var.desktop_pool_defined_tags_value)
+  #  description          = var.desktop_pool_description
+  #  freeform_tags        = var.desktop_pool_freeform_tags
+  #  nsg_ids              = var.desktop_pool_nsg_ids
+  #  time_start_scheduled = var.desktop_pool_time_start_scheduled
+  #  time_stop_scheduled  = var.desktop_pool_time_stop_scheduled
+}
+
+data "oci_desktops_desktop_pools" "test_desktop_pools_datasource" {
+  #Required
+  compartment_id = var.compartment_id
+
+  #Optional
+  #  availability_domain = data.oci_identity_availability_domain.ad.name
+  #  display_name        = var.desktop_pool_display_name
+  #  id                  = var.desktop_pool_id
+  #  state               = var.desktop_pool_state
+}
+
+data "oci_desktops_desktop_pool" "test_desktop_pool_datasource" {
+  #Required
+  desktop_pool_id = oci_desktops_desktop_pool.test_desktop_pool.id
+}
+
+data "oci_desktops_desktop_pool_desktops" "test_desktop_pool_desktops_datasource" {
+  availability_domain = data.oci_identity_availability_domain.ad.name
+  compartment_id = var.compartment_id
+  desktop_pool_id = oci_desktops_desktop_pool.test_desktop_pool.id
+}
+
+data "oci_desktops_desktop_pool_volumes" "test_desktop_pool_volumes_datasource" {
+  availability_domain = data.oci_identity_availability_domain.ad.name
+  compartment_id = var.compartment_id
+  desktop_pool_id = oci_desktops_desktop_pool.test_desktop_pool.id
+  #Optional
+  #  display_name = var.desktop_pool_display_name
+  #  state = var.desktop_pool_state
+}
+
+data "oci_identity_availability_domain" "ad" {
+  compartment_id = var.tenancy_ocid
+  ad_number      = 1
+}
+
+data "oci_desktops_desktops" "test_desktops_datasource" {
+  availability_domain = data.oci_identity_availability_domain.ad.name
+  compartment_id = var.compartment_id
+  desktop_pool_id = oci_desktops_desktop_pool.test_desktop_pool.id
+  state = "ACTIVE"
+}
+
+data "oci_desktops_desktop" "test_desktop_datasource" {
+  desktop_id = data.oci_desktops_desktop_pool_desktops.test_desktop_pool_desktops_datasource.desktop_pool_desktop_collection.0.items.0.desktop_id
+}
+
+

examples/desktops/desktop_pool/osdstack-phx.auto.tfvars.example

@@ -0,0 +1,16 @@
+# OCI config profile
+config_file_profile="terraform-federation-test"
+
+# region (us-phoenix-1, ca-toronto-1, etc)
+region="us-phoenix-1"
+
+# Secure Desktops Example Configuration
+
+compartment_id                 = "<compartment_ocid>"
+
+desktop_pool_vcn_id            = "<vcn_ocid>"
+desktop_pool_subnet_id         = "<subnet_ocid>"
+desktop_pool_image_id          = "<image_ocid>"
+desktop_pool_image_name        = "<image_name"
+desktop_pool_backup_policy_id  = "<volume_backup_policy_ocid>"
+desktop_pool_contact_details   = "test%40test.com"

examples/desktops/desktop_pool/outputs.tf

@@ -0,0 +1,22 @@
+// Copyright (c) 2017, 2024, Oracle and/or its affiliates. All rights reserved.
+// Licensed under the Mozilla Public License v2.0
+
+
+output "desktop_pool_id" {
+  value = [data.oci_desktops_desktop_pools.test_desktop_pools_datasource.desktop_pool_collection.0.items.*.id]
+}
+
+# Output the desktop IDs of the desktop pool
+output "desktop_pool_desktop_ids" {
+  value = [data.oci_desktops_desktop_pool_desktops.test_desktop_pool_desktops_datasource.desktop_pool_desktop_collection.0.items.*.desktop_id]
+}
+
+# Output the volume IDs of the desktop pool
+output "desktop_pool_volume_ids" {
+  value = [data.oci_desktops_desktop_pool_volumes.test_desktop_pool_volumes_datasource.desktop_pool_volume_collection.0.items.*.id]
+}
+
+# Output the desktop IDs of the desktop pool
+output "desktop_ids" {
+  value = [data.oci_desktops_desktops.test_desktops_datasource.desktop_collection.0.items.*.id]
+}

examples/desktops/desktop_pool/provider.tf

@@ -0,0 +1,24 @@
+// Copyright (c) 2017, 2024, Oracle and/or its affiliates. All rights reserved.
+// Licensed under the Mozilla Public License v2.0
+
+#provider "oci" {
+#  tenancy_ocid     = var.tenancy_ocid
+#  user_ocid        = var.user_ocid
+#  fingerprint      = var.fingerprint
+#  private_key_path = var.private_key_path
+#  region           = var.region
+#}
+
+variable "config_file_profile" {
+}
+
+provider "oci" {
+auth                = "SecurityToken"
+config_file_profile = var.config_file_profile
+region              = var.region
+}
+
+provider "local" {
+version = ">=1.3.0" # Need this version of the local provider to support base64 encoded inputs
+}
+

examples/desktops/desktop_pool/terraform.tfvars.template

@@ -0,0 +1,63 @@
+# GETTING STARTED
+#
+# 1. Download and install TerraForm (https://www.terraform.io/downloads.html)
+# 2. Download and install the OCI TerraForm provider (https://github.com/oracle/terraform-provider-oci/)
+# 3. Make sure that you have an OCI API key setup
+#       See https://docs.us-phoenix-1.oraclecloud.com/Content/API/Concepts/apisigningkey.htm for directions on creating an API signing key
+#       See https://docs.us-phoenix-1.oraclecloud.com/Content/Identity/Tasks/managingcredentials.htm on how to manage API keys in the OCI UI or API
+# 4. Copy your tenancy OCID below (bottom part of OCI screen, after Tenancy OCID: heading)
+# 5. Copy your OCI user account OCID (login to OCI > Identity > Users)
+# 6. Copy the required API key fingerprint and private key path (below)
+# 7. Fill-in the full path to the SSH public and private keys (this can be used when creating new instances)
+#       See https://docs.us-phoenix-1.oraclecloud.com/Content/GSG/Tasks/creatingkeys.htm for directions on how to create this key pair
+#
+# HELPFUL URLs
+# * https://github.com/oracle/terraform-provider-oci/blob/master/docs/Table%20of%20Contents.md
+#
+
+# RUNNING TerraForm
+#
+# Once you've gone through the steps mentioned above, you need to populate your environment variables, by sourcing this file... steps are below:
+# 1. Modify this file (so it reflects your OCIDs, etc.)
+# 2. $ terraform init
+#       You only have to do this once after installing or upgrading your TerraForm plugins
+# 3. $ terraform plan
+#       This will show you what TerraForm might do if you applied it
+# 4. $ terraform apply
+
+# Get this from the bottom of the OCI screen (after logging in, after Tenancy ID: heading)
+#tenancy_ocid="<tenancy OCID"
+# Get this from OCI > Identity > Users (for your user account)
+#user_ocid="<user OCID>"
+
+# the fingerprint can be gathered from your user account (OCI > Identity > Users > click your username > API Keys fingerprint (select it, copy it and paste it below))
+#fingerprint="<PEM key fingerprint>"
+# this is the full path on your local system to the private key used for the API key pair
+private_key_path="<path to the private key that matches the fingerprint above>"
+
+# OCI config profile
+config_file_profile="terraform-federation-test"
+
+# region (us-phoenix-1, ca-toronto-1, etc)
+region="<your region>"
+
+# To be able to use OCI Secure Desktops it requires to have some customer OCI resources ready in the customer tenancy like a VCN, Subnet and a custom Image.
+# Additionally a Dynamic Group, service policies and user policies are required.
+# See setting up the Tenancy: https://docs.oracle.com/en-us/iaas/secure-desktops/setup-tenancy.htm for guidance.
+# Oracle recommends using the OCI Secure Desktops Resource Manager (ORM) Stack to simplify the process of setting up the tenancy.
+# The ORM stack <volume_backup_policy_ocid>assists with several process tasks to help ensure the tenancy is set up according to best practices.
+# See https://support.oracle.com/epmos/faces/DocumentDisplay?_afrLoop=228601342054219&id=2948207.1&_afrWindowMode=0&_adf.ctrl-state=5q6cqoqnz_4 on "How To Configure Tenancy Using ORM Stack"
+
+
+# Secure Desktops Example Configuration
+#
+
+compartment_id                 = "<compartment_ocid>"
+
+desktop_pool_vcn_id            = "<vcn_ocid>"
+desktop_pool_subnet_id         = "<subnet_ocid>"
+desktop_pool_image_id          = "<image_ocid>"
+desktop_pool_image_name        = "<image_name>"
+desktop_pool_backup_policy_id  = "<volume_backup_policy_ocid>"
+desktop_pool_contact_details   = "<admin_contact_details>"
+