azurerm_private_endpoint - expose private_dns_zone_group, private_dns_zone_configs, and custom_dns_configs
#7246
Conversation
ghost
added
the
WodansSon
changed the title
azurerm_private_endpoint - expose custom_dns_configs azurerm_private_endpoint - expose custom_dns_configs add New Resource: azurerm_private_dns_zone_group
WodansSon
changed the title
azurerm_private_endpoint - expose custom_dns_configs add New Resource: azurerm_private_dns_zone_groupazurerm_private_endpoint - expose private_dns_zone_group, private_dns_zone_configs, and custom_dns_configs and
|
|
WodansSon
changed the title
azurerm_private_endpoint - expose private_dns_zone_group, private_dns_zone_configs, and custom_dns_configs and azurerm_private_endpoint - expose private_dns_zone_group, private_dns_zone_configs, and custom_dns_configs and
WodansSon
changed the title
azurerm_private_endpoint - expose private_dns_zone_group, private_dns_zone_configs, and custom_dns_configs and azurerm_private_endpoint - expose private_dns_zone_group, private_dns_zone_configs, and custom_dns_configs
| Name: id.Path["privateDnsZoneGroups"], | ||
| ResourceGroup: id.ResourceGroup, | ||
| ID: input, | ||
| } |
There was a problem hiding this comment.
we should use the PopSegment and ValidateNoEmptySegments functions here to ensure this is the ID of a private endpoint and not something else
There was a problem hiding this comment.
Mostly Fixed. I can't use ValidateNoEmptySegments because I am parsing the information for multiple resources from one resource ID(e.g. /subscriptions/XXXX/resourceGroups/jcline-privateDns-rg/providers/Microsoft.Network/privateEndpoints/contoso-cosmosdb/privateDnsZoneGroups/privatelink.postgres.database.azure.com2/privateDnsZoneConfigs/finance-contoso-com.
| return privateDnsZoneGroup, nil | ||
| } | ||
|
|
||
| func PrivateDnsZoneResourceIDs(input []interface{}) ([]NameResourceGroup, error) { |
| return results, nil | ||
| } | ||
|
|
||
| func PrivateEndpointResourceID(input string) (NameResourceGroup, error) { |
| Name: id.Path["privateDnsZones"], | ||
| ResourceGroup: id.ResourceGroup, | ||
| ID: v, | ||
| } |
| } | ||
|
|
||
| privateDnsZone := NameResourceGroup{ | ||
| Name: id.Path["privateDnsZones"], |
There was a problem hiding this comment.
can we pull this out into a separate ParseDNSZoneResourceID method?
| Required: true, | ||
| Elem: &schema.Schema{ | ||
| Type: schema.TypeString, | ||
| ValidateFunc: azure.ValidateResourceID, |
There was a problem hiding this comment.
which then means we can validate this is a Private DNS Zone ID here
| } | ||
| if resp.ID == nil || *resp.ID == "" { | ||
| return fmt.Errorf("API returns a nil/empty id on Private Endpoint %q (Resource Group %q): %+v", name, resourceGroup, err) | ||
| } | ||
| d.SetId(*resp.ID) | ||
|
|
||
| // now create the dns zone group | ||
| // first I have to see if the dns zone group exists, if it does I need to delete it an re-create it because you can only have one per private endpoint |
There was a problem hiding this comment.
what happens to traffic when this is deleted, is this dropped? if so - should we be locating the existing one and updating instead?
There was a problem hiding this comment.
I only delete if the name has changed, else I will need to force new the attribute which would delete the entire private endpoint. Once the private DNS zone group is deleted the traffic is automatically re-routed to the existing private endpoint FQDN which is displayed via the custom DNS configs attribute.
Co-authored-by: Tom Harvey <tombuildsstuff@users.noreply.github.com>
Co-authored-by: Tom Harvey <tombuildsstuff@users.noreply.github.com>
Co-authored-by: Tom Harvey <tombuildsstuff@users.noreply.github.com>
|
=== RUN TestAccAzureRMPrivateEndpoint_basic |
| result["id"] = *input.ID | ||
| result["name"] = *input.Name |
There was a problem hiding this comment.
We should nil check these?
|
|
|
This has been released in version 2.15.0 of the provider. Please see the Terraform documentation on provider versioning or reach out if you need any assistance upgrading. As an example: provider "azurerm" {
version = "~> 2.15.0"
}
# ... other configuration ... |
|
I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. If you feel I made an error 🤖 🙉 , please reach out to my human friends 👉 hashibot-feedback@hashicorp.com. Thanks! |
(fixes #6571)