feat(tco): add resource_tc_organization_org_manage_policy_config

Author: WeiMengXS

.github/workflows/golangci-lint.yml

@@ -32,7 +32,7 @@ jobs:
         with:
           go-version-file: .go-version
           #go-version: '1.21'
-          cache: false
+          cache: true
 
       # Runs a set of commands using the runners shell
       - name: golangci-lint

tencentcloud/provider.go

@@ -1652,6 +1652,7 @@ func Provider() *schema.Provider {
 			"tencentcloud_organization_org_member_policy_attachment":           tco.ResourceTencentCloudOrganizationOrgMemberPolicyAttachment(),
 			"tencentcloud_organization_org_manage_policy_config":               tco.ResourceTencentCloudOrganizationOrgManagePolicyConfig(),
 			"tencentcloud_organization_org_manage_policy":                      tco.ResourceTencentCloudOrganizationOrgManagePolicy(),
+			"tencentcloud_organization_org_manage_policy_target":               tco.ResourceTencentCloudOrganizationOrgManagePolicyTarget(),
 			"tencentcloud_dbbrain_sql_filter":                                  dbbrain.ResourceTencentCloudDbbrainSqlFilter(),
 			"tencentcloud_dbbrain_security_audit_log_export_task":              dbbrain.ResourceTencentCloudDbbrainSecurityAuditLogExportTask(),
 			"tencentcloud_dbbrain_db_diag_report_task":                         dbbrain.ResourceTencentCloudDbbrainDbDiagReportTask(),

tencentcloud/services/tco/resource_tc_organization_org_manage_policy.go

@@ -37,7 +37,8 @@ func ResourceTencentCloudOrganizationOrgManagePolicy() *schema.Resource {
 			},
 
 			"type": {
-				Required:    true,
+				Optional:    true,
+				Default:     ServiceControlPolicyType,
 				Type:        schema.TypeString,
 				Description: "Policy type. Default value is SERVICE_CONTROL_POLICY.\nValid values:\n  - `SERVICE_CONTROL_POLICY`: Service control policy.\n  - `TAG_POLICY`: Tag policy.",
 			},

tencentcloud/services/tco/resource_tc_organization_org_manage_policy_target.go

@@ -0,0 +1,179 @@
+package tco
+
+import (
+	"context"
+	"fmt"
+	"log"
+	"strings"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/resource"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
+	organization "github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/organization/v20210331"
+
+	tccommon "github.com/tencentcloudstack/terraform-provider-tencentcloud/tencentcloud/common"
+	"github.com/tencentcloudstack/terraform-provider-tencentcloud/tencentcloud/internal/helper"
+)
+
+func ResourceTencentCloudOrganizationOrgManagePolicyTarget() *schema.Resource {
+	return &schema.Resource{
+		Create: resourceTencentCloudOrganizationOrgManagePolicyTargetCreate,
+		Read:   resourceTencentCloudOrganizationOrgManagePolicyTargetRead,
+		Delete: resourceTencentCloudOrganizationOrgManagePolicyTargetDelete,
+		Importer: &schema.ResourceImporter{
+			State: schema.ImportStatePassthrough,
+		},
+		Schema: map[string]*schema.Schema{
+			"target_id": {
+				Required:    true,
+				ForceNew:    true,
+				Type:        schema.TypeInt,
+				Description: "Binding target ID of the policy. Member Uin or Department ID.",
+			},
+
+			"target_type": {
+				Required:    true,
+				ForceNew:    true,
+				Type:        schema.TypeString,
+				Description: "Target type.\nValid values:\n  - `NODE`: Department.\n  - `MEMBER`: Check Member.",
+			},
+
+			"policy_id": {
+				Required:    true,
+				ForceNew:    true,
+				Type:        schema.TypeInt,
+				Description: "Policy Id.",
+			},
+
+			"policy_type": {
+				Optional:    true,
+				ForceNew:    true,
+				Default:     ServiceControlPolicyType,
+				Type:        schema.TypeString,
+				Description: "Policy type. Default value is SERVICE_CONTROL_POLICY.\nValid values:\n  - `SERVICE_CONTROL_POLICY`: Service control policy.\n  - `TAG_POLICY`: Tag policy.",
+			},
+		},
+	}
+}
+
+func resourceTencentCloudOrganizationOrgManagePolicyTargetCreate(d *schema.ResourceData, meta interface{}) error {
+	defer tccommon.LogElapsed("resource.tencentcloud_organization_org_manage_policy_target.create")()
+	defer tccommon.InconsistentCheck(d, meta)()
+
+	logId := tccommon.GetLogId(tccommon.ContextNil)
+
+	var (
+		request    = organization.NewAttachPolicyRequest()
+		policyType string
+		policyId   int
+		targetType string
+		targetId   int
+	)
+	if v, ok := d.GetOkExists("target_id"); ok {
+		targetId = v.(int)
+		request.TargetId = helper.IntUint64(v.(int))
+	}
+
+	if v, ok := d.GetOk("target_type"); ok {
+		targetType = v.(string)
+		request.TargetType = helper.String(v.(string))
+	}
+
+	if v, ok := d.GetOkExists("policy_id"); ok {
+		policyId = v.(int)
+		request.PolicyId = helper.IntUint64(v.(int))
+	}
+
+	if v, ok := d.GetOk("policy_type"); ok {
+		policyType = v.(string)
+		request.Type = helper.String(v.(string))
+	}
+
+	err := resource.Retry(tccommon.WriteRetryTimeout, func() *resource.RetryError {
+		result, e := meta.(tccommon.ProviderMeta).GetAPIV3Conn().UseOrganizationClient().AttachPolicy(request)
+		if e != nil {
+			return tccommon.RetryError(e)
+		} else {
+			log.Printf("[DEBUG]%s api[%s] success, request body [%s], response body [%s]\n", logId, request.GetAction(), request.ToJsonString(), result.ToJsonString())
+		}
+		return nil
+	})
+	if err != nil {
+		log.Printf("[CRITAL]%s create organization OrgManagePolicyTarget failed, reason:%+v", logId, err)
+		return err
+	}
+
+	d.SetId(strings.Join([]string{policyType, helper.Int64ToStr(int64(policyId)), targetType, helper.Int64ToStr(int64(targetId))}, tccommon.FILED_SP))
+
+	return resourceTencentCloudOrganizationOrgManagePolicyTargetRead(d, meta)
+}
+
+func resourceTencentCloudOrganizationOrgManagePolicyTargetRead(d *schema.ResourceData, meta interface{}) error {
+	defer tccommon.LogElapsed("resource.tencentcloud_organization_org_manage_policy_target.read")()
+	defer tccommon.InconsistentCheck(d, meta)()
+
+	logId := tccommon.GetLogId(tccommon.ContextNil)
+
+	ctx := context.WithValue(context.TODO(), tccommon.LogIdKey, logId)
+
+	service := OrganizationService{client: meta.(tccommon.ProviderMeta).GetAPIV3Conn()}
+
+	idSplit := strings.Split(d.Id(), tccommon.FILED_SP)
+
+	if len(idSplit) != 4 {
+		return fmt.Errorf("id is broken,%s", d.Id())
+	}
+
+	policyType := idSplit[0]
+
+	policyId := idSplit[1]
+
+	targetType := idSplit[2]
+
+	targetId := idSplit[3]
+
+	OrgManagePolicyTarget, err := service.DescribeOrganizationOrgManagePolicyTargetById(ctx, policyType, policyId, targetType, targetId)
+	if err != nil {
+		return err
+	}
+
+	if OrgManagePolicyTarget == nil {
+		d.SetId("")
+		log.Printf("[WARN]%s resource `OrganizationOrgManagePolicyTarget` [%s] not found, please check if it has been deleted.\n", logId, d.Id())
+		return nil
+	}
+
+	_ = d.Set("target_id", targetId)
+	_ = d.Set("target_type", targetType)
+	_ = d.Set("policy_id", policyId)
+	_ = d.Set("policy_type", policyType)
+	return nil
+}
+
+func resourceTencentCloudOrganizationOrgManagePolicyTargetDelete(d *schema.ResourceData, meta interface{}) error {
+	defer tccommon.LogElapsed("resource.tencentcloud_organization_org_manage_policy_target.delete")()
+	defer tccommon.InconsistentCheck(d, meta)()
+
+	logId := tccommon.GetLogId(tccommon.ContextNil)
+	ctx := context.WithValue(context.TODO(), tccommon.LogIdKey, logId)
+
+	service := OrganizationService{client: meta.(tccommon.ProviderMeta).GetAPIV3Conn()}
+	idSplit := strings.Split(d.Id(), tccommon.FILED_SP)
+
+	if len(idSplit) != 4 {
+		return fmt.Errorf("id is broken,%s", d.Id())
+	}
+
+	policyType := idSplit[0]
+
+	policyId := idSplit[1]
+
+	targetType := idSplit[2]
+
+	targetId := idSplit[3]
+
+	if err := service.DeleteOrganizationOrgManagePolicyTargetById(ctx, policyType, policyId, targetType, targetId); err != nil {
+		return err
+	}
+
+	return nil
+}

tencentcloud/services/tco/resource_tc_organization_org_manage_policy_target.md

@@ -0,0 +1,20 @@
+Provides a resource to create a organization org_manage_policy_target
+
+Example Usage
+
+```hcl
+resource "tencentcloud_organization_org_manage_policy_target" "org_manage_policy_target" {
+  target_id = 10001
+  target_type = "NODE"
+  policy_id = 100001
+  policy_type = "SERVICE_CONTROL_POLICY"
+}
+```
+
+Import
+
+organization org_manage_policy_target can be imported using the id, e.g.
+
+```
+terraform import tencentcloud_organization_org_manage_policy_target.org_manage_policy_target org_manage_policy_target_id
+```

tencentcloud/services/tco/resource_tc_organization_org_manage_policy_target_test.go

@@ -0,0 +1,41 @@
+package tco
+
+import (
+	"testing"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/resource"
+
+	tcacctest "github.com/tencentcloudstack/terraform-provider-tencentcloud/tencentcloud/acctest"
+)
+
+func TestAccTencentCloudOrganizationOrgManagePolicyTargetResource_basic(t *testing.T) {
+	t.Parallel()
+	resource.Test(t, resource.TestCase{
+		PreCheck: func() {
+			tcacctest.AccPreCheck(t)
+		},
+		Providers: tcacctest.AccProviders,
+		Steps: []resource.TestStep{
+			{
+				Config: testAccOrganizationOrgManagePolicyTarget,
+				Check:  resource.ComposeTestCheckFunc(resource.TestCheckResourceAttrSet("tencentcloud_organization_org_manage_policy_target.org_manage_policy_target", "id")),
+			},
+			{
+				ResourceName:      "tencentcloud_organization_org_manage_policy_target.org_manage_policy_target",
+				ImportState:       true,
+				ImportStateVerify: true,
+			},
+		},
+	})
+}
+
+const testAccOrganizationOrgManagePolicyTarget = `
+
+resource "tencentcloud_organization_org_manage_policy_target" "org_manage_policy_target" {
+  target_id = 10001
+  target_type = "NODE"
+  policy_id = 100001
+  policy_type = "SERVICE_CONTROL_POLICY"
+}
+
+`

tencentcloud/services/tco/service_tencentcloud_organization.go

@@ -1090,3 +1090,57 @@ func (me *OrganizationService) DeleteOrganizationOrgManagePolicyById(ctx context
 
 	return
 }
+
+func (me *OrganizationService) DescribeOrganizationOrgManagePolicyTargetById(ctx context.Context, policyType string, policyId string, targetType string, targetId string) (OrgManagePolicyTarget *organization.ListTargetsForPolicyResponseParams, errRet error) {
+	logId := tccommon.GetLogId(ctx)
+
+	request := organization.NewListTargetsForPolicyRequest()
+	request.PolicyType = &policyType
+	request.PolicyId = helper.StrToUint64Point(policyId)
+	request.TargetType = &targetType
+
+	defer func() {
+		if errRet != nil {
+			log.Printf("[CRITAL]%s api[%s] fail, request body [%s], reason[%s]\n", logId, request.GetAction(), request.ToJsonString(), errRet.Error())
+		}
+	}()
+
+	ratelimit.Check(request.GetAction())
+
+	response, err := me.client.UseOrganizationClient().ListTargetsForPolicy(request)
+	if err != nil {
+		errRet = err
+		return
+	}
+	log.Printf("[DEBUG]%s api[%s] success, request body [%s], response body [%s]\n", logId, request.GetAction(), request.ToJsonString(), response.ToJsonString())
+
+	OrgManagePolicyTarget = response.Response
+	return
+}
+
+func (me *OrganizationService) DeleteOrganizationOrgManagePolicyTargetById(ctx context.Context, policyType string, policyId string, targetType string, targetId string) (errRet error) {
+	logId := tccommon.GetLogId(ctx)
+
+	request := organization.NewDetachPolicyRequest()
+	request.Type = &policyType
+	request.PolicyId = helper.StrToUint64Point(policyId)
+	request.TargetType = &targetType
+	request.TargetId = helper.StrToUint64Point(targetId)
+
+	defer func() {
+		if errRet != nil {
+			log.Printf("[CRITAL]%s api[%s] fail, request body [%s], reason[%s]\n", logId, request.GetAction(), request.ToJsonString(), errRet.Error())
+		}
+	}()
+
+	ratelimit.Check(request.GetAction())
+
+	response, err := me.client.UseOrganizationClient().DetachPolicy(request)
+	if err != nil {
+		errRet = err
+		return
+	}
+	log.Printf("[DEBUG]%s api[%s] success, request body [%s], response body [%s]\n", logId, request.GetAction(), request.ToJsonString(), response.ToJsonString())
+
+	return
+}