Implement new stackit_network resource and datasource (#366)

* Copy file from DNS zone resource

* Implement resource

* Implement datasource

* Add examples

* Implement acceptance test; Some fixes

* Add docs

* Fix linter

* Fixes after review

Author: joaopalet

docs/data-sources/network.md

@@ -0,0 +1,37 @@
+---
+# generated by https://github.com/hashicorp/terraform-plugin-docs
+page_title: "stackit_network Data Source - stackit"
+subcategory: ""
+description: |-
+  Network resource schema. Must have a region specified in the provider configuration.
+---
+
+# stackit_network (Data Source)
+
+Network resource schema. Must have a `region` specified in the provider configuration.
+
+## Example Usage
+
+```terraform
+data "stackit_network" "example" {
+  project_id = "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+  network_id = "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+}
+```
+
+<!-- schema generated by tfplugindocs -->
+## Schema
+
+### Required
+
+- `network_id` (String) The network ID.
+- `project_id` (String) STACKIT project ID to which the network is associated.
+
+### Read-Only
+
+- `id` (String) Terraform's internal resource ID. It is structured as "`project_id`,`network_id`".
+- `ipv4_prefix_length` (Number) The IPv4 prefix length of the network.
+- `name` (String) The name of the network.
+- `nameservers` (List of String) The nameservers of the network.
+- `prefixes` (List of String) The prefixes of the network.
+- `public_ip` (String) The public IP of the network.

docs/index.md

@@ -143,6 +143,7 @@ Note: AWS specific checks must be skipped as they do not work on STACKIT. For de
 - `argus_custom_endpoint` (String) Custom endpoint for the Argus service
 - `credentials_path` (String) Path of JSON from where the credentials are read. Takes precedence over the env var `STACKIT_CREDENTIALS_PATH`. Default value is `~/.stackit/credentials.json`.
 - `dns_custom_endpoint` (String) Custom endpoint for the DNS service
+- `iaas_custom_endpoint` (String) Custom endpoint for the IaaS service
 - `jwks_custom_endpoint` (String, Deprecated) Custom endpoint for the jwks API, which is used to get the json web key sets (jwks) to validate tokens when using the key flow
 - `loadbalancer_custom_endpoint` (String) Custom endpoint for the Load Balancer service
 - `logme_custom_endpoint` (String) Custom endpoint for the LogMe service
@@ -155,7 +156,7 @@ Note: AWS specific checks must be skipped as they do not work on STACKIT. For de
 - `private_key` (String) Private RSA key used for authentication, relevant for the key flow. It takes precedence over the private key that is included in the service account key.
 - `private_key_path` (String) Path for the private RSA key used for authentication, relevant for the key flow. It takes precedence over the private key that is included in the service account key.
 - `rabbitmq_custom_endpoint` (String) Custom endpoint for the RabbitMQ service
-- `redis_custom_endpoint` (String)
+- `redis_custom_endpoint` (String) Custom endpoint for the Redis service
 - `region` (String) Region will be used as the default location for regional services. Not all services require a region, some are global
 - `resourcemanager_custom_endpoint` (String) Custom endpoint for the Resource Manager service
 - `secretsmanager_custom_endpoint` (String) Custom endpoint for the Secrets Manager service

docs/resources/network.md

@@ -0,0 +1,42 @@
+---
+# generated by https://github.com/hashicorp/terraform-plugin-docs
+page_title: "stackit_network Resource - stackit"
+subcategory: ""
+description: |-
+  Network resource schema. Must have a region specified in the provider configuration.
+---
+
+# stackit_network (Resource)
+
+Network resource schema. Must have a `region` specified in the provider configuration.
+
+## Example Usage
+
+```terraform
+resource "stackit_network" "example" {
+  project_id         = "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+  name               = "example-network"
+  nameservers        = ["1.2.3.4", "5.6.7.8"]
+  ipv4_prefix_length = 24
+}
+```
+
+<!-- schema generated by tfplugindocs -->
+## Schema
+
+### Required
+
+- `name` (String) The name of the network.
+- `nameservers` (List of String) The nameservers of the network.
+- `project_id` (String) STACKIT project ID to which the network is associated.
+
+### Optional
+
+- `ipv4_prefix_length` (Number) The IPv4 prefix length of the network.
+
+### Read-Only
+
+- `id` (String) Terraform's internal resource ID. It is structured as "`project_id`,`network_id`".
+- `network_id` (String) The network ID.
+- `prefixes` (List of String) The prefixes of the network.
+- `public_ip` (String) The public IP of the network.

examples/data-sources/stackit_network/data-source.tf

@@ -0,0 +1,4 @@
+data "stackit_network" "example" {
+  project_id = "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+  network_id = "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+}

examples/resources/stackit_network/resource.tf

@@ -0,0 +1,6 @@
+resource "stackit_network" "example" {
+  project_id         = "xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
+  name               = "example-network"
+  nameservers        = ["1.2.3.4", "5.6.7.8"]
+  ipv4_prefix_length = 24
+}

go.mod

@@ -14,6 +14,7 @@ require (
 	github.com/stackitcloud/stackit-sdk-go/core v0.12.0
 	github.com/stackitcloud/stackit-sdk-go/services/argus v0.10.0
 	github.com/stackitcloud/stackit-sdk-go/services/dns v0.9.1
+	github.com/stackitcloud/stackit-sdk-go/services/iaas v0.3.0
 	github.com/stackitcloud/stackit-sdk-go/services/loadbalancer v0.12.0
 	github.com/stackitcloud/stackit-sdk-go/services/logme v0.14.0
 	github.com/stackitcloud/stackit-sdk-go/services/mariadb v0.14.0

go.sum

@@ -152,6 +152,8 @@ github.com/stackitcloud/stackit-sdk-go/services/argus v0.10.0 h1:FAYOt6UBy/F2jPH
 github.com/stackitcloud/stackit-sdk-go/services/argus v0.10.0/go.mod h1:nVllQfYODhX1q3bgwVTLO7wHOp+8NMLiKbn3u/Dg5nU=
 github.com/stackitcloud/stackit-sdk-go/services/dns v0.9.1 h1:pj2nAJvgzFSckA56rCPdi7StXGrr06go8qejI1weNJ8=
 github.com/stackitcloud/stackit-sdk-go/services/dns v0.9.1/go.mod h1:MdZcRbs19s2NLeJmSLSoqTzm9IPIQhE1ZEMpo9gePq0=
+github.com/stackitcloud/stackit-sdk-go/services/iaas v0.3.0 h1:0Nb7CruTyM/HxhZQjntQUHJqwCoKjFUC9KZcBBj+c5c=
+github.com/stackitcloud/stackit-sdk-go/services/iaas v0.3.0/go.mod h1:XtJA9FMK/yJ0dj4HtRAogmZPRUsZiFcuwUSfHYNASjo=
 github.com/stackitcloud/stackit-sdk-go/services/loadbalancer v0.12.0 h1:LAteZO46XmqTsmPw0QV8n8WiGM205pxrcqHqWznNmyY=
 github.com/stackitcloud/stackit-sdk-go/services/loadbalancer v0.12.0/go.mod h1:wsO3+vXe1XiKLeCIctWAptaHQZ07Un7kmLTQ+drbj7w=
 github.com/stackitcloud/stackit-sdk-go/services/logme v0.14.0 h1:vvQFCN5sKZA9tdzrbDnAVMsaTijX8lvTYnPaKQHmkoI=

stackit/internal/core/core.go

@@ -19,6 +19,7 @@ type ProviderData struct {
 	Region                        string
 	ArgusCustomEndpoint           string
 	DnsCustomEndpoint             string
+	IaaSCustomEndpoint            string
 	LoadBalancerCustomEndpoint    string
 	LogMeCustomEndpoint           string
 	MariaDBCustomEndpoint         string

stackit/internal/services/iaas/iaas_acc_test.go

@@ -0,0 +1,187 @@
+package iaas_test
+
+import (
+	"context"
+	"fmt"
+	"strings"
+	"testing"
+
+	"github.com/hashicorp/terraform-plugin-testing/helper/acctest"
+	"github.com/hashicorp/terraform-plugin-testing/helper/resource"
+	"github.com/hashicorp/terraform-plugin-testing/terraform"
+	"github.com/stackitcloud/stackit-sdk-go/core/config"
+	"github.com/stackitcloud/stackit-sdk-go/core/utils"
+	"github.com/stackitcloud/stackit-sdk-go/services/iaas"
+	"github.com/stackitcloud/terraform-provider-stackit/stackit/internal/core"
+	"github.com/stackitcloud/terraform-provider-stackit/stackit/internal/testutil"
+)
+
+// Network resource data
+var networkResource = map[string]string{
+	"project_id":         testutil.ProjectId,
+	"name":               fmt.Sprintf("acc-test-%s", acctest.RandStringFromCharSet(5, acctest.CharSetAlphaNum)),
+	"ipv4_prefix_length": "24",
+	"nameserver0":        "1.2.3.4",
+	"nameserver1":        "5.6.7.8",
+}
+
+func resourceConfig(name, nameservers string) string {
+	return fmt.Sprintf(`
+				%s
+
+				resource "stackit_network" "network" {
+					project_id = "%s"
+					name       = "%s"
+					ipv4_prefix_length = "%s"
+					nameservers = %s
+				}
+				`,
+		testutil.IaaSProviderConfig(),
+		networkResource["project_id"],
+		name,
+		networkResource["ipv4_prefix_length"],
+		nameservers,
+	)
+}
+
+func TestAccIaaS(t *testing.T) {
+	resource.Test(t, resource.TestCase{
+		ProtoV6ProviderFactories: testutil.TestAccProtoV6ProviderFactories,
+		CheckDestroy:             testAccCheckIaaSDestroy,
+		Steps: []resource.TestStep{
+
+			// Creation
+			{
+				Config: resourceConfig(
+					networkResource["name"],
+					fmt.Sprintf(
+						"[%q]",
+						networkResource["nameserver0"],
+					),
+				),
+				Check: resource.ComposeAggregateTestCheckFunc(
+					// Instance
+					resource.TestCheckResourceAttr("stackit_network.network", "project_id", networkResource["project_id"]),
+					resource.TestCheckResourceAttrSet("stackit_network.network", "network_id"),
+					resource.TestCheckResourceAttr("stackit_network.network", "name", networkResource["name"]),
+					resource.TestCheckResourceAttr("stackit_network.network", "nameservers.#", "1"),
+					resource.TestCheckResourceAttr("stackit_network.network", "nameservers.0", networkResource["nameserver0"]),
+				),
+			},
+			// Data source
+			{
+				Config: fmt.Sprintf(`
+					%s
+
+					data "stackit_network" "network" {
+						project_id  = stackit_network.network.project_id
+						network_id = stackit_network.network.network_id
+					}`,
+					resourceConfig(
+						networkResource["name"],
+						fmt.Sprintf(
+							"[%q]",
+							networkResource["nameserver0"],
+						),
+					),
+				),
+				Check: resource.ComposeAggregateTestCheckFunc(
+					// Instance
+					resource.TestCheckResourceAttr("data.stackit_network.network", "project_id", networkResource["project_id"]),
+					resource.TestCheckResourceAttrPair(
+						"stackit_network.network", "network_id",
+						"data.stackit_network.network", "network_id",
+					),
+					resource.TestCheckResourceAttr("data.stackit_network.network", "name", networkResource["name"]),
+					resource.TestCheckResourceAttr("data.stackit_network.network", "nameservers.0", networkResource["nameserver0"]),
+				),
+			},
+			// Import
+			{
+				ResourceName: "stackit_network.network",
+				ImportStateIdFunc: func(s *terraform.State) (string, error) {
+					r, ok := s.RootModule().Resources["stackit_network.network"]
+					if !ok {
+						return "", fmt.Errorf("couldn't find resource stackit_network.network")
+					}
+					networkId, ok := r.Primary.Attributes["network_id"]
+					if !ok {
+						return "", fmt.Errorf("couldn't find attribute network_id")
+					}
+					return fmt.Sprintf("%s,%s", testutil.ProjectId, networkId), nil
+				},
+				ImportState:             true,
+				ImportStateVerify:       true,
+				ImportStateVerifyIgnore: []string{"ipv4_prefix_length"}, // Field is not returned by the API
+			},
+			// Update
+			{
+				Config: resourceConfig(
+					fmt.Sprintf("%s-updated", networkResource["name"]),
+					fmt.Sprintf(
+						"[%q, %q]",
+						networkResource["nameserver0"],
+						networkResource["nameserver1"],
+					),
+				),
+				Check: resource.ComposeAggregateTestCheckFunc(
+					// Instance
+					resource.TestCheckResourceAttr("stackit_network.network", "project_id", networkResource["project_id"]),
+					resource.TestCheckResourceAttrSet("stackit_network.network", "network_id"),
+					resource.TestCheckResourceAttr("stackit_network.network", "name", fmt.Sprintf("%s-updated", networkResource["name"])),
+					resource.TestCheckResourceAttr("stackit_network.network", "nameservers.#", "2"),
+					resource.TestCheckResourceAttr("stackit_network.network", "nameservers.0", networkResource["nameserver0"]),
+					resource.TestCheckResourceAttr("stackit_network.network", "nameservers.1", networkResource["nameserver1"]),
+				),
+			},
+			// Deletion is done by the framework implicitly
+		},
+	})
+}
+
+func testAccCheckIaaSDestroy(s *terraform.State) error {
+	ctx := context.Background()
+	var client *iaas.APIClient
+	var err error
+	if testutil.IaaSCustomEndpoint == "" {
+		client, err = iaas.NewAPIClient(
+			config.WithRegion("eu01"),
+		)
+	} else {
+		client, err = iaas.NewAPIClient(
+			config.WithEndpoint(testutil.IaaSCustomEndpoint),
+		)
+	}
+	if err != nil {
+		return fmt.Errorf("creating client: %w", err)
+	}
+
+	networksToDestroy := []string{}
+	for _, rs := range s.RootModule().Resources {
+		if rs.Type != "stackit_network" {
+			continue
+		}
+		// network terraform ID: "[project_id],[network_id]"
+		networkId := strings.Split(rs.Primary.ID, core.Separator)[1]
+		networksToDestroy = append(networksToDestroy, networkId)
+	}
+
+	networksResp, err := client.ListNetworksExecute(ctx, testutil.ProjectId)
+	if err != nil {
+		return fmt.Errorf("getting networksResp: %w", err)
+	}
+
+	networks := *networksResp.Items
+	for i := range networks {
+		if networks[i].NetworkId == nil {
+			continue
+		}
+		if utils.Contains(networksToDestroy, *networks[i].NetworkId) {
+			err := client.DeleteNetworkExecute(ctx, testutil.ProjectId, *networks[i].NetworkId)
+			if err != nil {
+				return fmt.Errorf("destroying network %s during CheckDestroy: %w", *networks[i].NetworkId, err)
+			}
+		}
+	}
+	return nil
+}