New Resource: azurerm_iot_time_series_insights_access_policy
#7202
Conversation
mbfrahry
commented
Jun 4, 2020
mbfrahry
commented
ghost
added
There was a problem hiding this comment.
Hi @mbfrahry thanks for this PR! This PR overall looks very good, and I have left some comment inline, please have a look, thanks!
| ForceNew: true, | ||
| ValidateFunc: validation.StringMatch( | ||
| regexp.MustCompile(`^[-\w\._\(\)]+$`), | ||
| "IoT Time Series Insights Access Policy name must contain only word characters, periods, underscores, and parentheses.", |
There was a problem hiding this comment.
The regex also says hyphens are allowed, could we please also update the message accordingly? Or please confirm whether the hyphens are allowed?
| ForceNew: true, | ||
| ValidateFunc: validation.StringMatch( | ||
| regexp.MustCompile(`^[-\w\._\(\)]+$`), | ||
| "IoT Time Series Insights Environment name must contain only word characters, periods, underscores, and parentheses.", |
| Type: schema.TypeString, | ||
| Required: true, | ||
| ForceNew: true, | ||
| ValidateFunc: validation.StringIsNotEmpty, |
There was a problem hiding this comment.
Since this is an object id, could we add a validation of IsUUID?
And I suppose maybe principal_id is sufficient, since there are a lot of principal_ids in the identity blocks of other resources.
There was a problem hiding this comment.
I'm going based off the docs in Azure and the API accepts any string. I'd like to keep it matching with what the API accepts over forcing our own rules.
| if !utils.ResponseWasNotFound(response) { | ||
| return fmt.Errorf("deleting IoT Time Series Insights Access Policy %q (Resource Group %q): %+v", id.Name, id.ResourceGroup, err) | ||
| } |
There was a problem hiding this comment.
I think we should not escape 404 errors here. Whether the SDK gives non-nil errors is defined here in the response section of the swagger. For the listed status codes, SDK will not return non-nil errors for them (in this case, they are 200 and 204). And all other status codes, the SDK will return non-nil errors using the error schema defined here.
This means in this case, 404 will always be an error and indicates something is wrong. If this resource does not exist, and we still want to delete this, the service should return 204 for this.
One of the scenario 404 was returned in deletion should be we are deleting this resource, but the resource group does not exist. I believe in this case the service would return 404. But in this case I believe we should call out and throw errors.
What do you think?
| if utils.ResponseWasNotFound(resp.Response) { | ||
| return fmt.Errorf("Bad: Time Series Insights Access Policy %q (resource group: %q) does not exist", id.Name, id.ResourceGroup) | ||
| } |
There was a problem hiding this comment.
Could we please move this if statement should move into the above if err != nil statement? Because when the service returns 404, the err will always be non-nil, this means this piece of code is actually unreachable.
| if err != nil { | ||
| return nil | ||
| } | ||
|
|
||
| if resp.StatusCode != http.StatusNotFound { | ||
| return fmt.Errorf("time Series Insights Access Policy still exists: %q", id.Name) | ||
| } |
There was a problem hiding this comment.
I suppose we should guarantee that this function only returns nil when the response code is 404 and return non-nil errors for all the other cases.
| Azure IoT Time Series Insights Access Policy can be imported using the `resource id`, e.g. | ||
|
|
||
| ```shell | ||
| terraform import azurerm_iot_time_series_access_policy.example /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/example/providers/Microsoft.TimeSeriesInsights/environments/environment1/accessPolicies/example |
There was a problem hiding this comment.
In the parsing function, we are poping out the name segment using accesspolicies(small p). Therefore could we either modify this example or check if the parsing function is working properly using the small p?
|
|
||
| "resource_group_name": azure.SchemaResourceGroupName(), | ||
|
|
||
| "environment_name": { |
There was a problem hiding this comment.
i think this might be more clear is time_series_environment_name?
| _, err := client.CreateOrUpdate(ctx, resourceGroup, environmentName, name, policy) | ||
| if err != nil { |
There was a problem hiding this comment.
these lines cna be combines
| _, err := client.CreateOrUpdate(ctx, resourceGroup, environmentName, name, policy) | |
| if err != nil { | |
| if _, err := client.CreateOrUpdate(ctx, resourceGroup, environmentName, name, policy); err != nil { |
|
This has been released in version 2.14.0 of the provider. Please see the Terraform documentation on provider versioning or reach out if you need any assistance upgrading. As an example: provider "azurerm" {
version = "~> 2.14.0"
}
# ... other configuration ... |
|
I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. If you feel I made an error 🤖 🙉 , please reach out to my human friends 👉 hashibot-feedback@hashicorp.com. Thanks! |
