terraform/builtin/providers/chef/provider.go

package chef

import (
	"encoding/json"
	"fmt"
	"io/ioutil"
	"os"
	"strings"
	"time"

	"github.com/hashicorp/terraform/helper/schema"
	"github.com/hashicorp/terraform/terraform"

	chefc "github.com/go-chef/chef"
)

func Provider() terraform.ResourceProvider {
	return &schema.Provider{
		Schema: map[string]*schema.Schema{
			"server_url": {
				Type:        schema.TypeString,
				Required:    true,
				DefaultFunc: schema.EnvDefaultFunc("CHEF_SERVER_URL", nil),
				Description: "URL of the root of the target Chef server or organization.",
			},
			"client_name": {
				Type:        schema.TypeString,
				Required:    true,
				DefaultFunc: schema.EnvDefaultFunc("CHEF_CLIENT_NAME", nil),
				Description: "Name of a registered client within the Chef server.",
			},
			"private_key_pem": {
				Type:        schema.TypeString,
				Optional:    true,
				DefaultFunc: providerPrivateKeyEnvDefault,
				Deprecated:  "Please use key_material instead",
				Description: "PEM-formatted private key for client authentication.",
			},
			"key_material": {
				Type:        schema.TypeString,
				Optional:    true,
				DefaultFunc: schema.EnvDefaultFunc("CHEF_KEY_MATERIAL", ""),
			},
			"allow_unverified_ssl": {
				Type:        schema.TypeBool,
				Optional:    true,
				Description: "If set, the Chef client will permit unverifiable SSL certificates.",
			},
		},

		ResourcesMap: map[string]*schema.Resource{
			//"chef_acl":           resourceChefAcl(),
			//"chef_client":        resourceChefClient(),
			//"chef_cookbook":      resourceChefCookbook(),
			"chef_data_bag":      resourceChefDataBag(),
			"chef_data_bag_item": resourceChefDataBagItem(),
			"chef_environment":   resourceChefEnvironment(),
			"chef_node":          resourceChefNode(),
			"chef_role":          resourceChefRole(),
		},

		ConfigureFunc: providerConfigure,
	}
}

func providerConfigure(d *schema.ResourceData) (interface{}, error) {
	config := &chefc.Config{
		Name:    d.Get("client_name").(string),
		BaseURL: d.Get("server_url").(string),
		SkipSSL: d.Get("allow_unverified_ssl").(bool),
		Timeout: 10 * time.Second,
	}

	if v, ok := d.GetOk("private_key_pem"); ok {
		config.Key = v.(string)
	}

	if v, ok := d.GetOk("key_material"); ok {
		config.Key = v.(string)
	}

	return chefc.NewClient(config)
}

func providerPrivateKeyEnvDefault() (interface{}, error) {
	if fn := os.Getenv("CHEF_PRIVATE_KEY_FILE"); fn != "" {
		contents, err := ioutil.ReadFile(fn)
		if err != nil {
			return nil, err
		}
		return string(contents), nil
	}

	return nil, nil
}

func jsonStateFunc(value interface{}) string {
	// Parse and re-stringify the JSON to make sure it's always kept
	// in a normalized form.
	in, ok := value.(string)
	if !ok {
		return "null"
	}
	var tmp map[string]interface{}

	// Assuming the value must be valid JSON since it passed okay through
	// our prepareDataBagItemContent function earlier.
	json.Unmarshal([]byte(in), &tmp)

	jsonValue, _ := json.Marshal(&tmp)
	return string(jsonValue)
}

func runListEntryStateFunc(value interface{}) string {
	// Recipes in run lists can either be naked, like "foo", or can
	// be explicitly qualified as "recipe[foo]". Whichever form we use,
	// the server will always normalize to the explicit form,
	// so we'll normalize too and then we won't generate unnecessary
	// diffs when we refresh.
	in := value.(string)
	if !strings.Contains(in, "[") {
		return fmt.Sprintf("recipe[%s]", in)
	}
	return in
}
Entry point for chef provider. 2015-08-27 01:50:12 +02:00			`package chef`

			`import (`
chef_data_bag_item resource. 2015-08-27 19:02:25 +02:00			`"encoding/json"`
chef_role resource. 2015-08-28 03:29:25 +02:00			`"fmt"`
Entry point for chef provider. 2015-08-27 01:50:12 +02:00			`"io/ioutil"`
			`"os"`
chef_role resource. 2015-08-28 03:29:25 +02:00			`"strings"`
Entry point for chef provider. 2015-08-27 01:50:12 +02:00			`"time"`

			`"github.com/hashicorp/terraform/helper/schema"`
			`"github.com/hashicorp/terraform/terraform"`

			`chefc "github.com/go-chef/chef"`
			`)`

			`func Provider() terraform.ResourceProvider {`
			`return &schema.Provider{`
			`Schema: map[string]*schema.Schema{`
provider/chef: Migrate Chef to use KEY_MATERIAL rather than using a Pem file This will allow us to standardise on how we set KEY_MATERIAL 2016-11-14 19:07:49 +01:00			`"server_url": {`
Entry point for chef provider. 2015-08-27 01:50:12 +02:00			`Type: schema.TypeString,`
			`Required: true,`
			`DefaultFunc: schema.EnvDefaultFunc("CHEF_SERVER_URL", nil),`
			`Description: "URL of the root of the target Chef server or organization.",`
			`},`
provider/chef: Migrate Chef to use KEY_MATERIAL rather than using a Pem file This will allow us to standardise on how we set KEY_MATERIAL 2016-11-14 19:07:49 +01:00			`"client_name": {`
Entry point for chef provider. 2015-08-27 01:50:12 +02:00			`Type: schema.TypeString,`
			`Required: true,`
			`DefaultFunc: schema.EnvDefaultFunc("CHEF_CLIENT_NAME", nil),`
			`Description: "Name of a registered client within the Chef server.",`
			`},`
provider/chef: Migrate Chef to use KEY_MATERIAL rather than using a Pem file This will allow us to standardise on how we set KEY_MATERIAL 2016-11-14 19:07:49 +01:00			`"private_key_pem": {`
Entry point for chef provider. 2015-08-27 01:50:12 +02:00			`Type: schema.TypeString,`
provider/chef: Migrate Chef to use KEY_MATERIAL rather than using a Pem file This will allow us to standardise on how we set KEY_MATERIAL 2016-11-14 19:07:49 +01:00			`Optional: true,`
Entry point for chef provider. 2015-08-27 01:50:12 +02:00			`DefaultFunc: providerPrivateKeyEnvDefault,`
provider/chef: Migrate Chef to use KEY_MATERIAL rather than using a Pem file This will allow us to standardise on how we set KEY_MATERIAL 2016-11-14 19:07:49 +01:00			`Deprecated: "Please use key_material instead",`
Entry point for chef provider. 2015-08-27 01:50:12 +02:00			`Description: "PEM-formatted private key for client authentication.",`
			`},`
provider/chef: Migrate Chef to use KEY_MATERIAL rather than using a Pem file This will allow us to standardise on how we set KEY_MATERIAL 2016-11-14 19:07:49 +01:00			`"key_material": {`
			`Type: schema.TypeString,`
			`Optional: true,`
			`DefaultFunc: schema.EnvDefaultFunc("CHEF_KEY_MATERIAL", ""),`
			`},`
			`"allow_unverified_ssl": {`
Entry point for chef provider. 2015-08-27 01:50:12 +02:00			`Type: schema.TypeBool,`
			`Optional: true,`
			`Description: "If set, the Chef client will permit unverifiable SSL certificates.",`
			`},`
			`},`

			`ResourcesMap: map[string]*schema.Resource{`
			`//"chef_acl": resourceChefAcl(),`
			`//"chef_client": resourceChefClient(),`
			`//"chef_cookbook": resourceChefCookbook(),`
chef_data_bag resource. 2015-08-27 02:37:09 +02:00			`"chef_data_bag": resourceChefDataBag(),`
chef_data_bag_item resource. 2015-08-27 19:02:25 +02:00			`"chef_data_bag_item": resourceChefDataBagItem(),`
chef_environment resource. 2015-08-28 03:04:22 +02:00			`"chef_environment": resourceChefEnvironment(),`
chef_node resource. 2015-08-28 03:54:52 +02:00			`"chef_node": resourceChefNode(),`
chef_role resource. 2015-08-28 03:29:25 +02:00			`"chef_role": resourceChefRole(),`
Entry point for chef provider. 2015-08-27 01:50:12 +02:00			`},`

			`ConfigureFunc: providerConfigure,`
			`}`
			`}`

			`func providerConfigure(d *schema.ResourceData) (interface{}, error) {`
			`config := &chefc.Config{`
			`Name: d.Get("client_name").(string),`
			`BaseURL: d.Get("server_url").(string),`
			`SkipSSL: d.Get("allow_unverified_ssl").(bool),`
			`Timeout: 10 * time.Second,`
			`}`

provider/chef: Migrate Chef to use KEY_MATERIAL rather than using a Pem file This will allow us to standardise on how we set KEY_MATERIAL 2016-11-14 19:07:49 +01:00			`if v, ok := d.GetOk("private_key_pem"); ok {`
			`config.Key = v.(string)`
			`}`

			`if v, ok := d.GetOk("key_material"); ok {`
			`config.Key = v.(string)`
			`}`

Entry point for chef provider. 2015-08-27 01:50:12 +02:00			`return chefc.NewClient(config)`
			`}`

			`func providerPrivateKeyEnvDefault() (interface{}, error) {`
			`if fn := os.Getenv("CHEF_PRIVATE_KEY_FILE"); fn != "" {`
			`contents, err := ioutil.ReadFile(fn)`
			`if err != nil {`
			`return nil, err`
			`}`
			`return string(contents), nil`
			`}`

			`return nil, nil`
			`}`
chef_data_bag_item resource. 2015-08-27 19:02:25 +02:00
			`func jsonStateFunc(value interface{}) string {`
			`// Parse and re-stringify the JSON to make sure it's always kept`
			`// in a normalized form.`
			`in, ok := value.(string)`
			`if !ok {`
			`return "null"`
			`}`
			`var tmp map[string]interface{}`

			`// Assuming the value must be valid JSON since it passed okay through`
			`// our prepareDataBagItemContent function earlier.`
			`json.Unmarshal([]byte(in), &tmp)`

			`jsonValue, _ := json.Marshal(&tmp)`
			`return string(jsonValue)`
			`}`
chef_role resource. 2015-08-28 03:29:25 +02:00
			`func runListEntryStateFunc(value interface{}) string {`
			`// Recipes in run lists can either be naked, like "foo", or can`
			`// be explicitly qualified as "recipe[foo]". Whichever form we use,`
			`// the server will always normalize to the explicit form,`
			`// so we'll normalize too and then we won't generate unnecessary`
			`// diffs when we refresh.`
			`in := value.(string)`
			`if !strings.Contains(in, "[") {`
			`return fmt.Sprintf("recipe[%s]", in)`
			`}`
			`return in`
			`}`