package aws import ( "fmt" "log" "github.com/hashicorp/terraform/helper/schema" "github.com/aws/aws-sdk-go/aws" "github.com/aws/aws-sdk-go/aws/awserr" "github.com/aws/aws-sdk-go/service/cloudwatchlogs" "github.com/hashicorp/errwrap" ) func resourceAwsCloudWatchLogGroup() *schema.Resource { return &schema.Resource{ Create: resourceAwsCloudWatchLogGroupCreate, Read: resourceAwsCloudWatchLogGroupRead, Update: resourceAwsCloudWatchLogGroupUpdate, Delete: resourceAwsCloudWatchLogGroupDelete, Importer: &schema.ResourceImporter{ State: schema.ImportStatePassthrough, }, Schema: map[string]*schema.Schema{ "name": { Type: schema.TypeString, Required: true, ForceNew: true, ValidateFunc: validateLogGroupName, }, "retention_in_days": { Type: schema.TypeInt, Optional: true, Default: 0, }, "arn": { Type: schema.TypeString, Computed: true, }, "tags": tagsSchema(), }, } } func resourceAwsCloudWatchLogGroupCreate(d *schema.ResourceData, meta interface{}) error { conn := meta.(*AWSClient).cloudwatchlogsconn log.Printf("[DEBUG] Creating CloudWatch Log Group: %s", d.Get("name").(string)) _, err := conn.CreateLogGroup(&cloudwatchlogs.CreateLogGroupInput{ LogGroupName: aws.String(d.Get("name").(string)), }) if err != nil { if awsErr, ok := err.(awserr.Error); ok && awsErr.Code() == "ResourceAlreadyExistsException" { return fmt.Errorf("Creating CloudWatch Log Group failed: %s: The CloudWatch Log Group '%s' already exists.", err, d.Get("name").(string)) } return fmt.Errorf("Creating CloudWatch Log Group failed: %s '%s'", err, d.Get("name")) } d.SetId(d.Get("name").(string)) log.Println("[INFO] CloudWatch Log Group created") return resourceAwsCloudWatchLogGroupUpdate(d, meta) } func resourceAwsCloudWatchLogGroupRead(d *schema.ResourceData, meta interface{}) error { conn := meta.(*AWSClient).cloudwatchlogsconn log.Printf("[DEBUG] Reading CloudWatch Log Group: %q", d.Get("name").(string)) lg, exists, err := lookupCloudWatchLogGroup(conn, d.Id(), nil) if err != nil { return err } if !exists { log.Printf("[DEBUG] CloudWatch Group %q Not Found", d.Id()) d.SetId("") return nil } log.Printf("[DEBUG] Found Log Group: %#v", *lg) d.Set("arn", lg.Arn) d.Set("name", lg.LogGroupName) if lg.RetentionInDays != nil { d.Set("retention_in_days", lg.RetentionInDays) } if meta.(*AWSClient).partition != "aws-us-gov" { tags, err := flattenCloudWatchTags(d, conn) if err != nil { return err } d.Set("tags", tags) } return nil } func lookupCloudWatchLogGroup(conn *cloudwatchlogs.CloudWatchLogs, name string, nextToken *string) (*cloudwatchlogs.LogGroup, bool, error) { input := &cloudwatchlogs.DescribeLogGroupsInput{ LogGroupNamePrefix: aws.String(name), NextToken: nextToken, } resp, err := conn.DescribeLogGroups(input) if err != nil { return nil, true, err } for _, lg := range resp.LogGroups { if *lg.LogGroupName == name { return lg, true, nil } } if resp.NextToken != nil { return lookupCloudWatchLogGroup(conn, name, resp.NextToken) } return nil, false, nil } func resourceAwsCloudWatchLogGroupUpdate(d *schema.ResourceData, meta interface{}) error { conn := meta.(*AWSClient).cloudwatchlogsconn name := d.Get("name").(string) log.Printf("[DEBUG] Updating CloudWatch Log Group: %q", name) if d.HasChange("retention_in_days") { var err error if v, ok := d.GetOk("retention_in_days"); ok { input := cloudwatchlogs.PutRetentionPolicyInput{ LogGroupName: aws.String(name), RetentionInDays: aws.Int64(int64(v.(int))), } log.Printf("[DEBUG] Setting retention for CloudWatch Log Group: %q: %s", name, input) _, err = conn.PutRetentionPolicy(&input) } else { log.Printf("[DEBUG] Deleting retention for CloudWatch Log Group: %q", name) _, err = conn.DeleteRetentionPolicy(&cloudwatchlogs.DeleteRetentionPolicyInput{ LogGroupName: aws.String(name), }) } if err != nil { return err } } if meta.(*AWSClient).partition != "aws-us-gov" && d.HasChange("tags") { oraw, nraw := d.GetChange("tags") o := oraw.(map[string]interface{}) n := nraw.(map[string]interface{}) create, remove := diffCloudWatchTags(o, n) if len(remove) > 0 { log.Printf("[DEBUG] Removing tags from %s", name) _, err := conn.UntagLogGroup(&cloudwatchlogs.UntagLogGroupInput{ LogGroupName: aws.String(name), Tags: remove, }) if err != nil { return err } } if len(create) > 0 { log.Printf("[DEBUG] Creating tags on %s", name) _, err := conn.TagLogGroup(&cloudwatchlogs.TagLogGroupInput{ LogGroupName: aws.String(name), Tags: create, }) if err != nil { return err } } } return resourceAwsCloudWatchLogGroupRead(d, meta) } func diffCloudWatchTags(oldTags map[string]interface{}, newTags map[string]interface{}) (map[string]*string, []*string) { create := make(map[string]*string) for k, v := range newTags { create[k] = aws.String(v.(string)) } var remove []*string for _, t := range oldTags { old, ok := create[t.(string)] if !ok || *old != t.(string) { remove = append(remove, aws.String(t.(string))) } } return create, remove } func resourceAwsCloudWatchLogGroupDelete(d *schema.ResourceData, meta interface{}) error { conn := meta.(*AWSClient).cloudwatchlogsconn log.Printf("[INFO] Deleting CloudWatch Log Group: %s", d.Id()) _, err := conn.DeleteLogGroup(&cloudwatchlogs.DeleteLogGroupInput{ LogGroupName: aws.String(d.Get("name").(string)), }) if err != nil { return fmt.Errorf("Error deleting CloudWatch Log Group: %s", err) } log.Println("[INFO] CloudWatch Log Group deleted") d.SetId("") return nil } func flattenCloudWatchTags(d *schema.ResourceData, conn *cloudwatchlogs.CloudWatchLogs) (map[string]interface{}, error) { tagsOutput, err := conn.ListTagsLogGroup(&cloudwatchlogs.ListTagsLogGroupInput{ LogGroupName: aws.String(d.Get("name").(string)), }) if err != nil { return nil, errwrap.Wrapf("Error Getting CloudWatch Logs Tag List: {{err}}", err) } if tagsOutput != nil { output := make(map[string]interface{}, len(tagsOutput.Tags)) for i, v := range tagsOutput.Tags { output[i] = *v } return output, nil } return make(map[string]interface{}), nil }