refactor datasource

Author: Shadow649

sysdig/data_source_sysdig_secure_zone.go

@@ -95,71 +95,62 @@ func dataSourceSysdigSecureZone() *schema.Resource {
 }
 
 func dataSourceSysdigSecureZoneRead(ctx context.Context, d *schema.ResourceData, m any) diag.Diagnostics {
-	client, err := getZoneClient(m.(SysdigClients))
+	clientV2, err := getZoneV2Client(m.(SysdigClients))
 	if err != nil {
 		return diag.FromErr(err)
 	}
-	clientv2, err := getZoneV2Client(m.(SysdigClients))
-	if err != nil {
-		return diag.FromErr(err)
-	}
-	var zone *v2.Zone
 	var zoneV2 *v2.ZoneV2
 	zoneIDRaw, hasZoneID := d.GetOk("id")
 	if hasZoneID {
 		zoneID, err := strconv.Atoi(zoneIDRaw.(string))
-		if err != nil {
-			return diag.FromErr(fmt.Errorf("invalid zone id: %s", err))
-		}
-		zone, err = client.GetZoneByID(ctx, zoneID)
 		if err != nil {
 			return diag.FromErr(fmt.Errorf("error fetching zone by ID: %s", err))
 		}
-		zoneV2, err = clientv2.GetZoneV2(ctx, zoneID)
+		zoneV2, err = clientV2.GetZoneV2(ctx, zoneID)
 		if err != nil {
 			return diag.FromErr(fmt.Errorf("error fetching zone v2 by ID: %s", err))
 		}
 	} else if nameRaw, hasName := d.GetOk("name"); hasName {
 		name := nameRaw.(string)
-		zones, err := client.GetZones(ctx, name)
+		zones, err := clientV2.GetZonesV2(ctx, name)
 		if err != nil {
 			return diag.FromErr(fmt.Errorf("error fetching zones: %s", err))
 		}
 		for _, z := range zones {
 			if z.Name == name {
-				zone = &z
+				zoneV2 = &z
 				break
 			}
 		}
-		if zone == nil {
+		if zoneV2 == nil {
 			return diag.FromErr(fmt.Errorf("zone with name '%s' not found", name))
 		}
-		zoneV2, err = clientv2.GetZoneV2(ctx, zone.ID)
+		zoneV2, err = clientV2.GetZoneV2(ctx, zoneV2.ID)
 		if err != nil {
 			return diag.FromErr(fmt.Errorf("error fetching zones: %s", err))
 		}
 	} else {
 		return diag.FromErr(fmt.Errorf("either id or name must be specified"))
 	}
 
-	d.SetId(fmt.Sprintf("%d", zone.ID))
-	_ = d.Set(SchemaNameKey, zone.Name)
-	_ = d.Set(SchemaDescriptionKey, zone.Description)
-	_ = d.Set(SchemaIsSystemKey, zone.IsSystem)
-	_ = d.Set(SchemaAuthorKey, zone.Author)
-	_ = d.Set(SchemaLastModifiedBy, zone.LastModifiedBy)
-	_ = d.Set(SchemaLastUpdated, time.UnixMilli(zone.LastUpdated).Format(time.RFC3339))
+	d.SetId(fmt.Sprintf("%d", zoneV2.ID))
+	_ = d.Set(SchemaNameKey, zoneV2.Name)
+	_ = d.Set(SchemaDescriptionKey, zoneV2.Description)
+	_ = d.Set(SchemaIsSystemKey, zoneV2.IsSystem)
+	_ = d.Set(SchemaAuthorKey, zoneV2.Author)
+	_ = d.Set(SchemaLastModifiedBy, zoneV2.LastModifiedBy)
+	_ = d.Set(SchemaLastUpdated, time.UnixMilli(zoneV2.LastUpdated).Format(time.RFC3339))
 
-	if err := d.Set(SchemaScopeKey, getZoneScopes(zone.Scopes, zoneV2)); err != nil {
+	if err := d.Set(SchemaScopeKey, getZoneScopes(zoneV2)); err != nil {
 		return diag.FromErr(fmt.Errorf("error setting scope: %s", err))
 	}
 
 	return nil
 }
 
-func getZoneScopes(legacyScopes []v2.ZoneScope, zoneV2 *v2.ZoneV2) []any {
+func getZoneScopes(zoneV2 *v2.ZoneV2) []any {
 	// Build expression lookup by filter ID from the v2 response.
-	exprByID := make(map[int][]any)
+	out := make([]any, 0)
 	if zoneV2 != nil {
 		for _, s := range zoneV2.Scopes {
 			for _, f := range s.Filters {
@@ -168,26 +159,16 @@ func getZoneScopes(legacyScopes []v2.ZoneScope, zoneV2 *v2.ZoneV2) []any {
 					for _, e := range f.Expressions {
 						exprs = append(exprs, flattenExpressionV2(e))
 					}
-					exprByID[f.ID] = exprs
+					m := map[string]any{
+						SchemaIDKey:         f.ID,
+						SchemaTargetTypeKey: f.ResourceType,
+						SchemaRulesKey:      f.Rules,
+					}
+					m[SchemaExpressionKey] = exprs
+					out = append(out, m)
 				}
 			}
 		}
 	}
-
-	// Merge: v1 scope ← v2 expressions by ID.
-	// If a scope's ID has no v2 match (rollout not complete, or filter has no
-	// expressions), the scope gets rules only — graceful degradation.
-	out := make([]any, 0, len(legacyScopes))
-	for _, scope := range legacyScopes {
-		m := map[string]any{
-			SchemaIDKey:         scope.ID,
-			SchemaTargetTypeKey: scope.TargetType,
-			SchemaRulesKey:      scope.Rules,
-		}
-		if exprs, ok := exprByID[scope.ID]; ok {
-			m[SchemaExpressionKey] = exprs
-		}
-		out = append(out, m)
-	}
 	return out
 }

sysdig/data_source_sysdig_secure_zone_unit_test.go

@@ -7,13 +7,6 @@ import (
 )
 
 func TestGetZoneScopes_MatchByID(t *testing.T) {
-	// Two scopes with the same target_type but different IDs.
-	// Each must get the correct expressions.
-	legacyScopes := []v2.ZoneScope{
-		{ID: 10, TargetType: "kubernetes", Rules: `cluster in ("a")`},
-		{ID: 20, TargetType: "kubernetes", Rules: `cluster in ("b")`},
-	}
-
 	zoneV2 := &v2.ZoneV2{
 		Scopes: []v2.ScopeV2{
 			{
@@ -37,7 +30,7 @@ func TestGetZoneScopes_MatchByID(t *testing.T) {
 		},
 	}
 
-	result := getZoneScopes(legacyScopes, zoneV2)
+	result := getZoneScopes(zoneV2)
 	if len(result) != 2 {
 		t.Fatalf("expected 2 scopes, got %d", len(result))
 	}
@@ -61,109 +54,3 @@ func TestGetZoneScopes_MatchByID(t *testing.T) {
 	}
 }
 
-func TestGetZoneScopes_NilV2(t *testing.T) {
-	legacyScopes := []v2.ZoneScope{
-		{ID: 1, TargetType: "aws", Rules: `account in ("123")`},
-	}
-
-	result := getZoneScopes(legacyScopes, nil)
-	if len(result) != 1 {
-		t.Fatalf("expected 1 scope, got %d", len(result))
-	}
-
-	scope := result[0].(map[string]any)
-	if scope[SchemaRulesKey] != `account in ("123")` {
-		t.Errorf("expected rules preserved, got: %v", scope[SchemaRulesKey])
-	}
-	if _, hasExpr := scope[SchemaExpressionKey]; hasExpr {
-		t.Errorf("expected no expressions when v2 is nil, got: %v", scope[SchemaExpressionKey])
-	}
-}
-
-func TestGetZoneScopes_MissingV2ID(t *testing.T) {
-	// v2 filters have ID=0 (backend hasn't rolled out IDs yet).
-	// Should degrade gracefully: no expressions attached.
-	legacyScopes := []v2.ZoneScope{
-		{ID: 5, TargetType: "aws", Rules: `org in ("o1")`},
-	}
-
-	zoneV2 := &v2.ZoneV2{
-		Scopes: []v2.ScopeV2{
-			{
-				Filters: []v2.FilterV2{
-					{
-						ID:           0,
-						ResourceType: "aws",
-						Expressions: []v2.ExpressionV2{
-							{Field: "org", Operator: "in", Values: []string{"o1"}},
-						},
-					},
-				},
-			},
-		},
-	}
-
-	result := getZoneScopes(legacyScopes, zoneV2)
-	if len(result) != 1 {
-		t.Fatalf("expected 1 scope, got %d", len(result))
-	}
-
-	scope := result[0].(map[string]any)
-	if _, hasExpr := scope[SchemaExpressionKey]; hasExpr {
-		t.Errorf("expected no expressions when v2 ID=0, got: %v", scope[SchemaExpressionKey])
-	}
-}
-
-func TestGetZoneScopes_PartialMatch(t *testing.T) {
-	// 3 v1 scopes, only 2 have v2 matches.
-	legacyScopes := []v2.ZoneScope{
-		{ID: 1, TargetType: "aws", Rules: `org in ("o1")`},
-		{ID: 2, TargetType: "gcp", Rules: `org in ("o2")`},
-		{ID: 3, TargetType: "azure", Rules: `org in ("o3")`},
-	}
-
-	zoneV2 := &v2.ZoneV2{
-		Scopes: []v2.ScopeV2{
-			{
-				Filters: []v2.FilterV2{
-					{
-						ID:           1,
-						ResourceType: "aws",
-						Expressions: []v2.ExpressionV2{
-							{Field: "org", Operator: "in", Values: []string{"o1"}},
-						},
-					},
-					{
-						ID:           3,
-						ResourceType: "azure",
-						Expressions: []v2.ExpressionV2{
-							{Field: "org", Operator: "in", Values: []string{"o3"}},
-						},
-					},
-				},
-			},
-		},
-	}
-
-	result := getZoneScopes(legacyScopes, zoneV2)
-	if len(result) != 3 {
-		t.Fatalf("expected 3 scopes, got %d", len(result))
-	}
-
-	for _, raw := range result {
-		scope := raw.(map[string]any)
-		id := scope[SchemaIDKey].(int)
-		_, hasExpr := scope[SchemaExpressionKey]
-
-		switch id {
-		case 1, 3:
-			if !hasExpr {
-				t.Errorf("scope ID=%d: expected expressions (matched in v2)", id)
-			}
-		case 2:
-			if hasExpr {
-				t.Errorf("scope ID=2: expected no expressions (no v2 match)")
-			}
-		}
-	}
-}