Support new Secure notification templates for Slack/Teams (#368)

* Support new Secure notification templates for Slack/Teams

* Fixes after merge

* Fix an issue where MS Teams doesn't have channel field

* Fix issue with tests

* Address review comments

* Fix issue caught by acceptance test

* Returning error after setting empty id

Author: ombellare

sysdig/data_source_sysdig_secure_notification_channel.go

@@ -19,6 +19,14 @@ const (
 	NOTIFICATION_CHANNEL_TYPE_WEBHOOK    = "WEBHOOK"
 	NOTIFICATION_CHANNEL_TYPE_SLACK      = "SLACK"
 	NOTIFICATION_CHANNEL_TYPE_PAGERDUTY  = "PAGER_DUTY"
+	NOTIFICATION_CHANNEL_TYPE_MS_TEAMS   = "MS_TEAMS"
+
+	NOTIFICATION_CHANNEL_TYPE_SLACK_TEMPLATE_KEY_V1    = "SLACK_SECURE_EVENT_NOTIFICATION_TEMPLATE_METADATA_v1"
+	NOTIFICATION_CHANNEL_TYPE_SLACK_TEMPLATE_KEY_V2    = "SLACK_SECURE_EVENT_NOTIFICATION_TEMPLATE_METADATA_v2"
+	NOTIFICATION_CHANNEL_TYPE_MS_TEAMS_TEMPLATE_KEY_V1 = "MS_TEAMS_SECURE_EVENT_NOTIFICATION_TEMPLATE_METADATA_v1"
+	NOTIFICATION_CHANNEL_TYPE_MS_TEAMS_TEMPLATE_KEY_V2 = "MS_TEAMS_SECURE_EVENT_NOTIFICATION_TEMPLATE_METADATA_v2"
+
+	NOTIFICATION_CHANNEL_SECURE_EVENT_NOTIFICATION_CONTENT_SECTION = "SECURE_EVENT_NOTIFICATION_CONTENT"
 )
 
 func dataSourceSysdigSecureNotificationChannel() *schema.Resource {

sysdig/internal/client/v2/model.go

@@ -63,18 +63,29 @@ type usersWrapper struct {
 	Users []User `json:"users"`
 }
 
+type NotificationChannelTemplateConfigurationSection struct {
+	SectionName string `json:"sectionName,omitempty"`
+	ShouldShow  bool   `json:"shouldShow"`
+}
+
+type NotificationChannelTemplateConfiguration struct {
+	TemplateKey                   string                                            `json:"templateKey,omitempty"`
+	TemplateConfigurationSections []NotificationChannelTemplateConfigurationSection `json:"templateConfigurationSections,omitempty"`
+}
+
 type NotificationChannelOptions struct {
-	EmailRecipients   []string               `json:"emailRecipients,omitempty"`   // Type: email
-	SnsTopicARNs      []string               `json:"snsTopicARNs,omitempty"`      // Type: SNS
-	APIKey            string                 `json:"apiKey,omitempty"`            // Type: VictorOps
-	RoutingKey        string                 `json:"routingKey,omitempty"`        // Type: VictorOps
-	Url               string                 `json:"url,omitempty"`               // Type: OpsGenie, Webhook and Slack
-	Channel           string                 `json:"channel,omitempty"`           // Type: Slack
-	Account           string                 `json:"account,omitempty"`           // Type: PagerDuty
-	ServiceKey        string                 `json:"serviceKey,omitempty"`        // Type: PagerDuty
-	ServiceName       string                 `json:"serviceName,omitempty"`       // Type: PagerDuty
-	AdditionalHeaders map[string]interface{} `json:"additionalHeaders,omitempty"` // Type: Webhook
-	Region            string                 `json:"region,omitempty"`            // Type: OpsGenie
+	EmailRecipients       []string                                   `json:"emailRecipients,omitempty"`   // Type: email
+	SnsTopicARNs          []string                                   `json:"snsTopicARNs,omitempty"`      // Type: SNS
+	APIKey                string                                     `json:"apiKey,omitempty"`            // Type: VictorOps
+	RoutingKey            string                                     `json:"routingKey,omitempty"`        // Type: VictorOps
+	Url                   string                                     `json:"url,omitempty"`               // Type: OpsGenie, Webhook and Slack
+	Channel               string                                     `json:"channel,omitempty"`           // Type: Slack
+	Account               string                                     `json:"account,omitempty"`           // Type: PagerDuty
+	ServiceKey            string                                     `json:"serviceKey,omitempty"`        // Type: PagerDuty
+	ServiceName           string                                     `json:"serviceName,omitempty"`       // Type: PagerDuty
+	AdditionalHeaders     map[string]interface{}                     `json:"additionalHeaders,omitempty"` // Type: Webhook
+	Region                string                                     `json:"region,omitempty"`            // Type: OpsGenie
+	TemplateConfiguration []NotificationChannelTemplateConfiguration `json:"templateConfiguration,omitempty"`
 
 	NotifyOnOk           bool `json:"notifyOnOk"`
 	NotifyOnResolve      bool `json:"notifyOnResolve"`

sysdig/provider.go

@@ -114,6 +114,7 @@ func Provider() *schema.Provider {
 			"sysdig_secure_notification_channel_webhook":   resourceSysdigSecureNotificationChannelWebhook(),
 			"sysdig_secure_notification_channel_slack":     resourceSysdigSecureNotificationChannelSlack(),
 			"sysdig_secure_notification_channel_pagerduty": resourceSysdigSecureNotificationChannelPagerduty(),
+			"sysdig_secure_notification_channel_msteams":   resourceSysdigSecureNotificationChannelMSTeams(),
 			"sysdig_secure_rule_container":                 resourceSysdigSecureRuleContainer(),
 			"sysdig_secure_rule_filesystem":                resourceSysdigSecureRuleFilesystem(),
 			"sysdig_secure_rule_network":                   resourceSysdigSecureRuleNetwork(),
@@ -147,6 +148,7 @@ func Provider() *schema.Provider {
 			"sysdig_monitor_notification_channel_sns":       resourceSysdigMonitorNotificationChannelSNS(),
 			"sysdig_monitor_notification_channel_victorops": resourceSysdigMonitorNotificationChannelVictorOps(),
 			"sysdig_monitor_notification_channel_webhook":   resourceSysdigMonitorNotificationChannelWebhook(),
+			"sysdig_monitor_notification_channel_msteams":   resourceSysdigMonitorNotificationChannelMSTeams(),
 			"sysdig_monitor_team":                           resourceSysdigMonitorTeam(),
 			"sysdig_monitor_cloud_account":                  resourceSysdigMonitorCloudAccount(),
 		},

sysdig/resource_sysdig_monitor_notification_channel_msteams.go

@@ -0,0 +1,165 @@
+package sysdig
+
+import (
+	"context"
+	"strconv"
+	"time"
+
+	v2 "github.com/draios/terraform-provider-sysdig/sysdig/internal/client/v2"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/diag"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
+)
+
+func resourceSysdigMonitorNotificationChannelMSTeams() *schema.Resource {
+	timeout := 5 * time.Minute
+
+	return &schema.Resource{
+		CreateContext: resourceSysdigMonitorNotificationChannelMSTeamsCreate,
+		UpdateContext: resourceSysdigMonitorNotificationChannelMSTeamsUpdate,
+		ReadContext:   resourceSysdigMonitorNotificationChannelMSTeamsRead,
+		DeleteContext: resourceSysdigMonitorNotificationChannelMSTeamsDelete,
+		Importer: &schema.ResourceImporter{
+			StateContext: schema.ImportStatePassthroughContext,
+		},
+
+		Timeouts: &schema.ResourceTimeout{
+			Create: schema.DefaultTimeout(timeout),
+			Update: schema.DefaultTimeout(timeout),
+			Read:   schema.DefaultTimeout(timeout),
+			Delete: schema.DefaultTimeout(timeout),
+		},
+
+		Schema: createMonitorNotificationChannelSchema(map[string]*schema.Schema{
+			"url": {
+				Type:     schema.TypeString,
+				Required: true,
+			},
+		}),
+	}
+}
+
+func resourceSysdigMonitorNotificationChannelMSTeamsCreate(ctx context.Context, d *schema.ResourceData, meta interface{}) diag.Diagnostics {
+	clients := meta.(SysdigClients)
+	client, err := getMonitorNotificationChannelClient(clients)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	teamID, err := client.CurrentTeamID(ctx)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	notificationChannel, err := monitorNotificationChannelMSTeamsFromResourceData(d, teamID)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	notificationChannel, err = client.CreateNotificationChannel(ctx, notificationChannel)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	d.SetId(strconv.Itoa(notificationChannel.ID))
+
+	return resourceSysdigMonitorNotificationChannelMSTeamsRead(ctx, d, meta)
+}
+
+func resourceSysdigMonitorNotificationChannelMSTeamsRead(ctx context.Context, d *schema.ResourceData, meta interface{}) diag.Diagnostics {
+	client, err := getMonitorNotificationChannelClient(meta.(SysdigClients))
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	id, err := strconv.Atoi(d.Id())
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	nc, err := client.GetNotificationChannelById(ctx, id)
+
+	if err != nil {
+		d.SetId("")
+		return diag.FromErr(err)
+	}
+
+	err = monitorNotificationChannelMSTeamsToResourceData(&nc, d)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	return nil
+}
+
+func resourceSysdigMonitorNotificationChannelMSTeamsUpdate(ctx context.Context, d *schema.ResourceData, meta interface{}) diag.Diagnostics {
+	clients := meta.(SysdigClients)
+	client, err := getMonitorNotificationChannelClient(clients)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	teamID, err := client.CurrentTeamID(ctx)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	nc, err := monitorNotificationChannelMSTeamsFromResourceData(d, teamID)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	nc.Version = d.Get("version").(int)
+	nc.ID, err = strconv.Atoi(d.Id())
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	_, err = client.UpdateNotificationChannel(ctx, nc)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	return resourceSysdigMonitorNotificationChannelMSTeamsRead(ctx, d, meta)
+}
+
+func resourceSysdigMonitorNotificationChannelMSTeamsDelete(ctx context.Context, d *schema.ResourceData, meta interface{}) diag.Diagnostics {
+	client, err := getMonitorNotificationChannelClient(meta.(SysdigClients))
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	id, err := strconv.Atoi(d.Id())
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	err = client.DeleteNotificationChannel(ctx, id)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	return nil
+}
+
+func monitorNotificationChannelMSTeamsFromResourceData(d *schema.ResourceData, teamID int) (nc v2.NotificationChannel, err error) {
+	nc, err = monitorNotificationChannelFromResourceData(d, teamID)
+	if err != nil {
+		return
+	}
+
+	nc.Type = NOTIFICATION_CHANNEL_TYPE_MS_TEAMS
+	nc.Options.Url = d.Get("url").(string)
+	return
+}
+
+func monitorNotificationChannelMSTeamsToResourceData(nc *v2.NotificationChannel, d *schema.ResourceData) (err error) {
+	err = monitorNotificationChannelToResourceData(nc, d)
+	if err != nil {
+		return
+	}
+
+	_ = d.Set("url", nc.Options.Url)
+
+	return
+}

sysdig/resource_sysdig_monitor_notification_channel_msteams_test.go

@@ -0,0 +1,63 @@
+//go:build tf_acc_sysdig_monitor || tf_acc_sysdig_common || tf_acc_ibm_monitor || tf_acc_ibm_common
+
+package sysdig_test
+
+import (
+	"fmt"
+	"testing"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/acctest"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/resource"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
+
+	"github.com/draios/terraform-provider-sysdig/sysdig"
+)
+
+func TestAccMonitorNotificationChannelMSTeams(t *testing.T) {
+	rText := func() string { return acctest.RandStringFromCharSet(10, acctest.CharSetAlphaNum) }
+
+	resource.ParallelTest(t, resource.TestCase{
+		PreCheck: sysdigOrIBMMonitorPreCheck(t),
+		ProviderFactories: map[string]func() (*schema.Provider, error){
+			"sysdig": func() (*schema.Provider, error) {
+				return sysdig.Provider(), nil
+			},
+		},
+		Steps: []resource.TestStep{
+			{
+				Config: monitorNotificationChannelMSTeamsWithName(rText()),
+			},
+			{
+				Config: monitorNotificationChannelMSTeamsSharedWithCurrentTeam(rText()),
+			},
+			{
+				ResourceName:      "sysdig_monitor_notification_channel_msteams.sample-msteams",
+				ImportState:       true,
+				ImportStateVerify: true,
+			},
+		},
+	})
+}
+
+func monitorNotificationChannelMSTeamsWithName(name string) string {
+	return fmt.Sprintf(`
+resource "sysdig_monitor_notification_channel_msteams" "sample-msteams" {
+	name = "Example Channel %s - MS Teams"
+	enabled = true
+	url = "https://hooks.msteams.cwom/services/XXXXXXXXX/XXXXXXXXX/XXXXXXXXXXXXXXXXXXXXXXXX"
+	notify_when_ok = true
+	notify_when_resolved = true
+}`, name)
+}
+
+func monitorNotificationChannelMSTeamsSharedWithCurrentTeam(name string) string {
+	return fmt.Sprintf(`
+resource "sysdig_monitor_notification_channel_msteams" "sample-msteams" {
+	name = "Example Channel %s - MS Teams"
+    share_with_current_team = true
+	enabled = true
+	url = "https://hooks.msteams.cwom/services/XXXXXXXXX/XXXXXXXXX/XXXXXXXXXXXXXXXXXXXXXXXX"
+	notify_when_ok = true
+	notify_when_resolved = true
+}`, name)
+}