tencentcloudstack · lyu571 · Apr 19, 2024 · Apr 22, 2024
diff --git a/tencentcloud/provider.go b/tencentcloud/provider.go
@@ -1357,6 +1357,7 @@ func Provider() *schema.Provider {
 			"tencentcloud_postgresql_modify_account_remark_operation":          postgresql.ResourceTencentCloudPostgresqlModifyAccountRemarkOperation(),
 			"tencentcloud_postgresql_modify_switch_time_period_operation":      postgresql.ResourceTencentCloudPostgresqlModifySwitchTimePeriodOperation(),
 			"tencentcloud_postgresql_instance_ha_config":                       postgresql.ResourceTencentCloudPostgresqlInstanceHAConfig(),
+			"tencentcloud_postgresql_readonly_group_network_access_attachment": postgresql.ResourceTencentCloudPostgresqlReadonlyGroupNetworkAccessAttachment(),
 			"tencentcloud_sqlserver_instance":                                  sqlserver.ResourceTencentCloudSqlserverInstance(),
 			"tencentcloud_sqlserver_db":                                        sqlserver.ResourceTencentCloudSqlserverDB(),
 			"tencentcloud_sqlserver_account":                                   sqlserver.ResourceTencentCloudSqlserverAccount(),

diff --git a/...ud/services/postgresql/resource_tc_postgresql_readonly_group_network_access_attachment.go b/...ud/services/postgresql/resource_tc_postgresql_readonly_group_network_access_attachment.go
@@ -0,0 +1,292 @@
+package postgresql
+
+import (
+	"context"
+	"fmt"
+	"log"
+	"strings"
+	"time"
+
+	tccommon "github.com/tencentcloudstack/terraform-provider-tencentcloud/tencentcloud/common"
+	svctag "github.com/tencentcloudstack/terraform-provider-tencentcloud/tencentcloud/services/tag"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/resource"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
+	postgresql "github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/postgres/v20170312"
+	"github.com/tencentcloudstack/terraform-provider-tencentcloud/tencentcloud/internal/helper"
+)
+
+func ResourceTencentCloudPostgresqlReadonlyGroupNetworkAccessAttachment() *schema.Resource {
+	return &schema.Resource{
+		Create: resourceTencentCloudPostgresqlReadonlyGroupNetworkAccessAttachmentCreate,
+		Read:   resourceTencentCloudPostgresqlReadonlyGroupNetworkAccessAttachmentRead,
+		Delete: resourceTencentCloudPostgresqlReadonlyGroupNetworkAccessAttachmentDelete,
+		Importer: &schema.ResourceImporter{
+			State: schema.ImportStatePassthrough,
+		},
+		Schema: map[string]*schema.Schema{
+			"db_instance_id": {
+				Required:    true,
+				ForceNew:    true,
+				Type:        schema.TypeString,
+				Description: "Master database instance ID.",
+			},
+
+			"readonly_group_id": {
+				Required:    true,
+				ForceNew:    true,
+				Type:        schema.TypeString,
+				Description: "RO group identifier.",
+			},
+
+			"vpc_id": {
+				Required:    true,
+				ForceNew:    true,
+				Type:        schema.TypeString,
+				Description: "Unified VPC ID.",
+			},
+
+			"subnet_id": {
+				Required:    true,
+				ForceNew:    true,
+				Type:        schema.TypeString,
+				Description: "Subnet ID.",
+			},
+
+			"is_assign_vip": {
+				Required:    true,
+				ForceNew:    true,
+				Type:        schema.TypeBool,
+				Description: "Whether to manually assign the VIP. Valid values:true (manually assign), false (automatically assign).",
+			},
+
+			"vip": {
+				Optional:    true,
+				Computed:    true,
+				ForceNew:    true,
+				Type:        schema.TypeString,
+				Description: "Target VIP.",
+			},
+
+			"tags": {
+				Type:        schema.TypeMap,
+				ForceNew:    true,
+				Optional:    true,
+				Description: "Tag description list.",
+			},
+		},
+	}
+}
+
+func resourceTencentCloudPostgresqlReadonlyGroupNetworkAccessAttachmentCreate(d *schema.ResourceData, meta interface{}) error {
+	defer tccommon.LogElapsed("resource.tencentcloud_postgresql_readonly_group_network_access_attachment.create")()
+
+	logId := tccommon.GetLogId(tccommon.ContextNil)
+
+	var (
+		request      = postgresql.NewCreateReadOnlyGroupNetworkAccessRequest()
+		dbInstanceId string
+		roGroupId    string
+		vpcId        string
+		vip          string
+		port         string
+		isUserAssign bool
+	)
+	if v, ok := d.GetOk("db_instance_id"); ok {
+		dbInstanceId = v.(string)
+	}
+
+	if v, ok := d.GetOk("readonly_group_id"); ok {
+		request.ReadOnlyGroupId = helper.String(v.(string))
+		roGroupId = v.(string)
+	}
+
+	if v, ok := d.GetOk("vpc_id"); ok {
+		request.VpcId = helper.String(v.(string))
+		vpcId = v.(string)
+	}
+
+	if v, ok := d.GetOk("subnet_id"); ok {
+		request.SubnetId = helper.String(v.(string))
+	}
+
+	if v, ok := d.GetOkExists("is_assign_vip"); ok {
+		request.IsAssignVip = helper.Bool(v.(bool))
+		isUserAssign = v.(bool)
+	}
+
+	if v, ok := d.GetOk("vip"); ok {
+		request.Vip = helper.String(v.(string))
+		vip = v.(string)
+	}
+
+	err := resource.Retry(tccommon.WriteRetryTimeout, func() *resource.RetryError {
+		result, e := meta.(tccommon.ProviderMeta).GetAPIV3Conn().UsePostgresqlClient().CreateReadOnlyGroupNetworkAccess(request)
+		if e != nil {
+			return tccommon.RetryError(e)
+		} else {
+			log.Printf("[DEBUG]%s api[%s] success, request body [%s], response body [%s]\n", logId, request.GetAction(), request.ToJsonString(), result.ToJsonString())
+		}
+		return nil
+	})
+	if err != nil {
+		log.Printf("[CRITAL]%s create postgresql ReadonlyGroupNetworkAccessAttachment failed, reason:%+v", logId, err)
+		return err
+	}
+
+	id := strings.Join([]string{dbInstanceId, roGroupId, vpcId, vip, port}, tccommon.FILED_SP)
+
+	service := PostgresqlService{client: meta.(tccommon.ProviderMeta).GetAPIV3Conn()}
+	conf := tccommon.BuildStateChangeConf([]string{}, []string{"opened"}, 180*tccommon.ReadRetryTimeout, time.Second, service.PostgresqlReadonlyGroupNetworkAccessAttachmentStateRefreshFunc(id, []string{}))
+
+	var ret interface{}
+	var e error
+	if ret, e = conf.WaitForState(); e != nil {
+		return e
+	} else {
+		object := ret.(*postgresql.DBInstanceNetInfo)
+		// fill out the port and vip
+		if object != nil {
+			if isUserAssign {
+				// find the port
+				if *object.VpcId == vpcId && *object.Ip == vip {
+					port = helper.UInt64ToStr(*object.Port)
+				}
+			} else {
+				// find the port and vip when is_assign_vip is false
+				if *object.VpcId == vpcId {
+					port = helper.UInt64ToStr(*object.Port)
+					vip = *object.Ip
+				}
+			}
+		}
+	}
+
+	id = strings.Join([]string{dbInstanceId, roGroupId, vpcId, vip, port}, tccommon.FILED_SP)
+	d.SetId(id)
+
+	ctx := context.WithValue(context.TODO(), tccommon.LogIdKey, logId)
+	if tags := helper.GetTags(d, "tags"); len(tags) > 0 {
+		tagService := svctag.NewTagService(meta.(tccommon.ProviderMeta).GetAPIV3Conn())
+		region := meta.(tccommon.ProviderMeta).GetAPIV3Conn().Region
+		resourceName := fmt.Sprintf("qcs::postgres:%s:uin/:dbInstanceId/%s", region, d.Id())
+		if err := tagService.ModifyTags(ctx, resourceName, tags, nil); err != nil {
+			return err
+		}
+	}
+
+	return resourceTencentCloudPostgresqlReadonlyGroupNetworkAccessAttachmentRead(d, meta)
+}
+
+func resourceTencentCloudPostgresqlReadonlyGroupNetworkAccessAttachmentRead(d *schema.ResourceData, meta interface{}) error {
+	defer tccommon.LogElapsed("resource.tencentcloud_postgresql_readonly_group_network_access_attachment.read")()
+	defer tccommon.InconsistentCheck(d, meta)()
+
+	logId := tccommon.GetLogId(tccommon.ContextNil)
+
+	ctx := context.WithValue(context.TODO(), tccommon.LogIdKey, logId)
+
+	service := PostgresqlService{client: meta.(tccommon.ProviderMeta).GetAPIV3Conn()}
+
+	idSplit := strings.Split(d.Id(), tccommon.FILED_SP)
+	if len(idSplit) != 5 {
+		return fmt.Errorf("id is broken,%s, location:%s", d.Id(), "resource.tencentcloud_postgresql_readonly_group_network_access_attachment.read")
+	}
+
+	dbInstanceId := idSplit[0]
+	roGroupId := idSplit[1]
+	vpcId := idSplit[2]
+	vip := idSplit[3]
+	port := idSplit[4]
+
+	ReadonlyGroupNetworkAccessAttachment, err := service.DescribePostgresqlReadonlyGroupNetworkAccessAttachmentById(ctx, dbInstanceId, roGroupId)
+	if err != nil {
+		return err
+	}
+
+	if ReadonlyGroupNetworkAccessAttachment == nil {
+		d.SetId("")
+		log.Printf("[WARN]%s resource `PostgresqlReadonlyGroupNetworkAccessAttachment` [%s] not found, please check if it has been deleted.\n", logId, d.Id())
+		return nil
+	}
+
+	if ReadonlyGroupNetworkAccessAttachment.MasterDBInstanceId != nil {
+		_ = d.Set("db_instance_id", ReadonlyGroupNetworkAccessAttachment.MasterDBInstanceId)
+	}
+
+	if ReadonlyGroupNetworkAccessAttachment.ReadOnlyGroupId != nil {
+		_ = d.Set("readonly_group_id", ReadonlyGroupNetworkAccessAttachment.ReadOnlyGroupId)
+	}
+
+	if ReadonlyGroupNetworkAccessAttachment.VpcId != nil {
+		_ = d.Set("vpc_id", ReadonlyGroupNetworkAccessAttachment.VpcId)
+	}
+
+	if ReadonlyGroupNetworkAccessAttachment.SubnetId != nil {
+		_ = d.Set("subnet_id", ReadonlyGroupNetworkAccessAttachment.SubnetId)
+	}
+
+	if vip == "" {
+		// That's mean isUserAssign is false and need to set vip assigned by system
+		if ReadonlyGroupNetworkAccessAttachment.DBInstanceNetInfo != nil {
+			for _, info := range ReadonlyGroupNetworkAccessAttachment.DBInstanceNetInfo {
+				if *info.VpcId == vpcId && helper.UInt64ToStr(*info.Port) == port {
+					if info.Ip != nil {
+						vip = *info.Ip
+						log.Printf("[DEBUG]%s the id:[%s]'s filed vip[%s] updated successfully!\n", logId, d.Id(), vip)
+						break
+					}
+				}
+			}
+		}
+		// update the vip into unique id
+		id := strings.Join([]string{dbInstanceId, roGroupId, vpcId, vip, port}, tccommon.FILED_SP)
+		d.SetId(id)
+	}
+	_ = d.Set("vip", vip)
+
+	tcClient := meta.(tccommon.ProviderMeta).GetAPIV3Conn()
+	tagService := svctag.NewTagService(tcClient)
+	tags, err := tagService.DescribeResourceTags(ctx, "postgres", "dbInstanceId", tcClient.Region, d.Id())
+	if err != nil {
+		return err
+	}
+	_ = d.Set("tags", tags)
+
+	return nil
+}
+
+func resourceTencentCloudPostgresqlReadonlyGroupNetworkAccessAttachmentDelete(d *schema.ResourceData, meta interface{}) error {
+	defer tccommon.LogElapsed("resource.tencentcloud_postgresql_readonly_group_network_access_attachment.delete")()
+	defer tccommon.InconsistentCheck(d, meta)()
+
+	logId := tccommon.GetLogId(tccommon.ContextNil)
+	ctx := context.WithValue(context.TODO(), tccommon.LogIdKey, logId)
+
+	service := PostgresqlService{client: meta.(tccommon.ProviderMeta).GetAPIV3Conn()}
+
+	idSplit := strings.Split(d.Id(), tccommon.FILED_SP)
+	if len(idSplit) != 5 {
+		return fmt.Errorf("id is broken,%s", d.Id())
+	}
+
+	var subnetId string
+	roGroupId := idSplit[1]
+	vpcId := idSplit[2]
+	vip := idSplit[3]
+	if v, ok := d.GetOk("subnet_id"); ok {
+		subnetId = v.(string)
+	}
+
+	if err := service.DeletePostgresqlReadonlyGroupNetworkAccessAttachmentById(ctx, roGroupId, vpcId, subnetId, vip); err != nil {
+		return err
+	}
+
+	conf := tccommon.BuildStateChangeConf([]string{}, []string{"closed"}, 180*tccommon.ReadRetryTimeout, time.Second, service.PostgresqlReadonlyGroupNetworkAccessAttachmentStateRefreshFunc(d.Id(), []string{}))
+
+	if _, e := conf.WaitForState(); e != nil {
+		return e
+	}
+
+	return nil
+}
diff --git a/...s/postgresql/resource_tc_postgresql_readonly_group_network_access_attachment.md b/...s/postgresql/resource_tc_postgresql_readonly_group_network_access_attachment.md
@@ -0,0 +1,69 @@
+/*
+Provides a resource to create a postgresql readonly_group_network_access_attachment
+
+Example Usage
+
+Vip assigned by system.
+
+```hcl
+resource "tencentcloud_vpc" "vpc" {
+  cidr_block = "172.18.111.0/24"
+  name       = "test-pg-network-vpc"
+}
+resource "tencentcloud_subnet" "subnet" {
+  availability_zone = var.default_az
+  cidr_block        = "172.18.111.0/24"
+  name              = "test-pg-network-sub1"
+  vpc_id            = tencentcloud_vpc.vpc.id
+}
+locals {
+  my_vpc_id    = tencentcloud_subnet.subnet.vpc_id
+  my_subnet_id = tencentcloud_subnet.subnet.id
+}
+resource "tencentcloud_postgresql_readonly_group" "group" {
+  master_db_instance_id       = local.pgsql_id
+  name                        = "tf_test_postgresql_readonly_group"
+  project_id                  = 0
+  vpc_id                      = local.my_vpc_id
+  subnet_id                   = local.my_subnet_id
+  replay_lag_eliminate        = 1
+  replay_latency_eliminate    = 1
+  max_replay_lag              = 100
+  max_replay_latency          = 512
+  min_delay_eliminate_reserve = 1
+}
+resource "tencentcloud_postgresql_readonly_group_network_access_attachment" "readonly_group_network_access_attachment" {
+  db_instance_id    = local.pgsql_id
+  readonly_group_id = tencentcloud_postgresql_readonly_group.group.id
+  vpc_id            = local.my_vpc_id
+  subnet_id         = local.my_subnet_id
+  is_assign_vip     = false
+  tags = {
+    "createdBy" = "terraform"
+  }
+}
+```
+
+Vip specified by user.
+
+```hcl
+resource "tencentcloud_postgresql_readonly_group_network_access_attachment" "readonly_group_network_access_attachment" {
+  db_instance_id    = local.pgsql_id
+  readonly_group_id = tencentcloud_postgresql_readonly_group.group.id
+  vpc_id            = local.my_vpc_id
+  subnet_id         = local.my_subnet_id
+  is_assign_vip     = true
+  vip               = "172.18.111.111"
+  tags = {
+    "createdBy" = "terraform"
+  }
+}
+
+Import
+
+postgresql readonly_group_network_access_attachment can be imported using the id, e.g.
+
+```
+terraform import tencentcloud_postgresql_readonly_group_network_access_attachment.readonly_group_network_access_attachment db_instance_id#readonly_group_id#vpc_id#vip#port
+```
+*/