terraform-provider-edge-con.../internal/provider/provider.go

package provider

import (
	"context"
	"fmt"
	"net/http"
	"os"
	"time"

	"github.com/hashicorp/terraform-plugin-framework/datasource"
	"github.com/hashicorp/terraform-plugin-framework/path"
	"github.com/hashicorp/terraform-plugin-framework/provider"
	"github.com/hashicorp/terraform-plugin-framework/provider/schema"
	"github.com/hashicorp/terraform-plugin-framework/resource"
	"github.com/hashicorp/terraform-plugin-framework/types"
	"github.com/hashicorp/terraform-plugin-log/tflog"

	edgeclient "edp.buildth.ing/DevFW-CICD/edge-connect-client/v2/sdk/edgeconnect/v2"
)

var _ provider.Provider = &EdgeConnectProvider{}

type EdgeConnectProvider struct {
	version string
}

type EdgeConnectProviderModel struct {
	Endpoint types.String `tfsdk:"endpoint"`
	Token    types.String `tfsdk:"token"`
	Username types.String `tfsdk:"username"`
	Password types.String `tfsdk:"password"`
}

func (p *EdgeConnectProvider) Metadata(ctx context.Context, req provider.MetadataRequest, resp *provider.MetadataResponse) {
	resp.TypeName = "edge-connect"
	resp.Version = p.version
}

func (p *EdgeConnectProvider) Schema(ctx context.Context, req provider.SchemaRequest, resp *provider.SchemaResponse) {
	resp.Schema = schema.Schema{
		MarkdownDescription: "Provider for Edge Connect API. Supports authentication via token or username/password. " +
			"Configuration can be provided via attributes or environment variables.",
		Attributes: map[string]schema.Attribute{
			"endpoint": schema.StringAttribute{
				MarkdownDescription: "Edge Connect API endpoint. Can also be set via `EDGE_CONNECT_ENDPOINT` environment variable.",
				Optional:            true,
			},
			"token": schema.StringAttribute{
				MarkdownDescription: "Edge Connect API token. Required if username/password are not provided. " +
					"Can also be set via `EDGE_CONNECT_TOKEN` environment variable.",
				Optional:  true,
				Sensitive: true,
			},
			"username": schema.StringAttribute{
				MarkdownDescription: "Edge Connect API username. Required if token is not provided. " +
					"Can also be set via `EDGE_CONNECT_USERNAME` environment variable.",
				Optional: true,
			},
			"password": schema.StringAttribute{
				MarkdownDescription: "Edge Connect API password. Required if token is not provided. " +
					"Can also be set via `EDGE_CONNECT_PASSWORD` environment variable.",
				Optional:  true,
				Sensitive: true,
			},
		},
	}
}

func (p *EdgeConnectProvider) Configure(ctx context.Context, req provider.ConfigureRequest, resp *provider.ConfigureResponse) {
	var data EdgeConnectProviderModel

	resp.Diagnostics.Append(req.Config.Get(ctx, &data)...)

	if resp.Diagnostics.HasError() {
		return
	}

	// Read configuration values, falling back to environment variables
	endpoint := data.Endpoint.ValueString()
	if endpoint == "" {
		endpoint = os.Getenv("EDGE_CONNECT_ENDPOINT")
	}

	token := data.Token.ValueString()
	if token == "" {
		token = os.Getenv("EDGE_CONNECT_TOKEN")
	}

	username := data.Username.ValueString()
	if username == "" {
		username = os.Getenv("EDGE_CONNECT_USERNAME")
	}

	password := data.Password.ValueString()
	if password == "" {
		password = os.Getenv("EDGE_CONNECT_PASSWORD")
	}

	// Validate endpoint
	if endpoint == "" {
		resp.Diagnostics.AddAttributeError(
			path.Root("endpoint"),
			"Missing Edge Connect API Endpoint",
			"The provider cannot create the Edge Connect API client as there is a missing or empty value for the Edge Connect API endpoint. "+
				"Set the endpoint value in the configuration or use the EDGE_CONNECT_ENDPOINT environment variable.",
		)
	}

	// Validate authentication: either token OR username/password must be provided
	hasToken := token != ""
	hasUsernamePassword := username != "" && password != ""

	if !hasToken && !hasUsernamePassword {
		resp.Diagnostics.AddError(
			"Missing Authentication Credentials",
			"The provider requires authentication credentials. Please provide either:\n"+
				"  - token: API token for authentication (via 'token' attribute or EDGE_CONNECT_TOKEN environment variable), or\n"+
				"  - username and password: Username and password for authentication (via 'username'/'password' attributes or EDGE_CONNECT_USERNAME/EDGE_CONNECT_PASSWORD environment variables)",
		)
	}

	if hasToken && hasUsernamePassword {
		resp.Diagnostics.AddError(
			"Conflicting Authentication Methods",
			"Both token and username/password authentication methods are provided. Please use only one authentication method.",
		)
	}

	// Validate username/password pair
	if (username != "" && password == "") || (username == "" && password != "") {
		resp.Diagnostics.AddError(
			"Incomplete Username/Password Credentials",
			"Both username and password must be provided together for username/password authentication.",
		)
	}

	if resp.Diagnostics.HasError() {
		return
	}

	ctx = tflog.SetField(ctx, "edge_connect_endpoint", endpoint)

	if hasToken {
		ctx = tflog.MaskFieldValuesWithFieldKeys(ctx, "edge_connect_token")
		tflog.Debug(ctx, "Creating Edge Connect client with token authentication")
	} else {
		ctx = tflog.SetField(ctx, "edge_connect_username", username)
		ctx = tflog.MaskFieldValuesWithFieldKeys(ctx, "edge_connect_password")
		tflog.Debug(ctx, "Creating Edge Connect client with username/password authentication")
	}

	var client *edgeclient.Client
	if token != "" {
		client = edgeclient.NewClient(endpoint,
			edgeclient.WithHTTPClient(&http.Client{Timeout: 30 * time.Second}),
			edgeclient.WithAuthProvider(edgeclient.NewStaticTokenProvider(token)),
			edgeclient.WithLogger(tfLogger{}),
		)
	} else {
		client = edgeclient.NewClientWithCredentials(endpoint, username, password,
			edgeclient.WithHTTPClient(&http.Client{Timeout: 30 * time.Second}),
			edgeclient.WithLogger(tfLogger{}),
		)
	}
	// TODO: Configure client with authentication credentials
	// If using token: client.SetToken(token)
	// If using username/password: client.SetCredentials(username, password)

	resp.DataSourceData = client
	resp.ResourceData = client

	tflog.Info(ctx, "Configured Edge Connect client", map[string]any{"success": true})
}

func (p *EdgeConnectProvider) Resources(ctx context.Context) []func() resource.Resource {
	return []func() resource.Resource{
		NewAppResource,
		NewAppInstanceResource,
	}
}

func (p *EdgeConnectProvider) DataSources(ctx context.Context) []func() datasource.DataSource {
	return []func() datasource.DataSource{
		NewAppDataSource,
		NewAppInstanceDataSource,
	}
}

func New(version string) func() provider.Provider {
	return func() provider.Provider {
		return &EdgeConnectProvider{
			version: version,
		}
	}
}

type tfLogger struct{}

func (tfLogger) Printf(format string, v ...interface{}) {
	tflog.Debug(context.TODO(), fmt.Sprintf(format, v...))
}
init 2025-11-11 14:15:52 +01:00			`package provider`

			`import (`
			`"context"`
tested app 2025-11-11 17:05:34 +01:00			`"fmt"`
fixed bug 2025-11-11 15:55:38 +01:00			`"net/http"`
added username/password or token as env variable 2025-11-11 15:41:07 +01:00			`"os"`
fixed bug 2025-11-11 15:55:38 +01:00			`"time"`
init 2025-11-11 14:15:52 +01:00
			`"github.com/hashicorp/terraform-plugin-framework/datasource"`
			`"github.com/hashicorp/terraform-plugin-framework/path"`
			`"github.com/hashicorp/terraform-plugin-framework/provider"`
			`"github.com/hashicorp/terraform-plugin-framework/provider/schema"`
			`"github.com/hashicorp/terraform-plugin-framework/resource"`
			`"github.com/hashicorp/terraform-plugin-framework/types"`
			`"github.com/hashicorp/terraform-plugin-log/tflog"`

fix: Fixed handling of removed resources when reading from client 2025-11-17 16:31:11 +01:00			`edgeclient "edp.buildth.ing/DevFW-CICD/edge-connect-client/v2/sdk/edgeconnect/v2"`
init 2025-11-11 14:15:52 +01:00			`)`

now using client sdk 2025-11-11 15:25:57 +01:00			`var _ provider.Provider = &EdgeConnectProvider{}`
init 2025-11-11 14:15:52 +01:00
now using client sdk 2025-11-11 15:25:57 +01:00			`type EdgeConnectProvider struct {`
init 2025-11-11 14:15:52 +01:00			`version string`
			`}`

now using client sdk 2025-11-11 15:25:57 +01:00			`type EdgeConnectProviderModel struct {`
			Endpoint types.String `tfsdk:"endpoint"`
init 2025-11-11 14:15:52 +01:00			Token types.String `tfsdk:"token"`
added username/password auth 2025-11-11 15:35:39 +01:00			Username types.String `tfsdk:"username"`
			Password types.String `tfsdk:"password"`
init 2025-11-11 14:15:52 +01:00			`}`

now using client sdk 2025-11-11 15:25:57 +01:00			`func (p EdgeConnectProvider) Metadata(ctx context.Context, req provider.MetadataRequest, resp provider.MetadataResponse) {`
init 2025-11-11 14:15:52 +01:00			`resp.TypeName = "edge-connect"`
			`resp.Version = p.version`
			`}`

now using client sdk 2025-11-11 15:25:57 +01:00			`func (p EdgeConnectProvider) Schema(ctx context.Context, req provider.SchemaRequest, resp provider.SchemaResponse) {`
init 2025-11-11 14:15:52 +01:00			`resp.Schema = schema.Schema{`
added username/password or token as env variable 2025-11-11 15:41:07 +01:00			`MarkdownDescription: "Provider for Edge Connect API. Supports authentication via token or username/password. " +`
			`"Configuration can be provided via attributes or environment variables.",`
init 2025-11-11 14:15:52 +01:00			`Attributes: map[string]schema.Attribute{`
now using client sdk 2025-11-11 15:25:57 +01:00			`"endpoint": schema.StringAttribute{`
added username/password or token as env variable 2025-11-11 15:41:07 +01:00			MarkdownDescription: "Edge Connect API endpoint. Can also be set via `EDGE_CONNECT_ENDPOINT` environment variable.",
			`Optional: true,`
init 2025-11-11 14:15:52 +01:00			`},`
			`"token": schema.StringAttribute{`
added username/password or token as env variable 2025-11-11 15:41:07 +01:00			`MarkdownDescription: "Edge Connect API token. Required if username/password are not provided. " +`
			"Can also be set via `EDGE_CONNECT_TOKEN` environment variable.",
			`Optional: true,`
			`Sensitive: true,`
added username/password auth 2025-11-11 15:35:39 +01:00			`},`
			`"username": schema.StringAttribute{`
added username/password or token as env variable 2025-11-11 15:41:07 +01:00			`MarkdownDescription: "Edge Connect API username. Required if token is not provided. " +`
			"Can also be set via `EDGE_CONNECT_USERNAME` environment variable.",
			`Optional: true,`
added username/password auth 2025-11-11 15:35:39 +01:00			`},`
			`"password": schema.StringAttribute{`
added username/password or token as env variable 2025-11-11 15:41:07 +01:00			`MarkdownDescription: "Edge Connect API password. Required if token is not provided. " +`
			"Can also be set via `EDGE_CONNECT_PASSWORD` environment variable.",
			`Optional: true,`
			`Sensitive: true,`
init 2025-11-11 14:15:52 +01:00			`},`
			`},`
			`}`
			`}`

now using client sdk 2025-11-11 15:25:57 +01:00			`func (p EdgeConnectProvider) Configure(ctx context.Context, req provider.ConfigureRequest, resp provider.ConfigureResponse) {`
			`var data EdgeConnectProviderModel`
init 2025-11-11 14:15:52 +01:00
now using client sdk 2025-11-11 15:25:57 +01:00			`resp.Diagnostics.Append(req.Config.Get(ctx, &data)...)`
init 2025-11-11 14:15:52 +01:00
			`if resp.Diagnostics.HasError() {`
			`return`
			`}`

added username/password or token as env variable 2025-11-11 15:41:07 +01:00			`// Read configuration values, falling back to environment variables`
now using client sdk 2025-11-11 15:25:57 +01:00			`endpoint := data.Endpoint.ValueString()`
added username/password or token as env variable 2025-11-11 15:41:07 +01:00			`if endpoint == "" {`
			`endpoint = os.Getenv("EDGE_CONNECT_ENDPOINT")`
			`}`

now using client sdk 2025-11-11 15:25:57 +01:00			`token := data.Token.ValueString()`
added username/password or token as env variable 2025-11-11 15:41:07 +01:00			`if token == "" {`
			`token = os.Getenv("EDGE_CONNECT_TOKEN")`
			`}`

added username/password auth 2025-11-11 15:35:39 +01:00			`username := data.Username.ValueString()`
added username/password or token as env variable 2025-11-11 15:41:07 +01:00			`if username == "" {`
			`username = os.Getenv("EDGE_CONNECT_USERNAME")`
			`}`

added username/password auth 2025-11-11 15:35:39 +01:00			`password := data.Password.ValueString()`
added username/password or token as env variable 2025-11-11 15:41:07 +01:00			`if password == "" {`
			`password = os.Getenv("EDGE_CONNECT_PASSWORD")`
			`}`
init 2025-11-11 14:15:52 +01:00
added username/password auth 2025-11-11 15:35:39 +01:00			`// Validate endpoint`
now using client sdk 2025-11-11 15:25:57 +01:00			`if endpoint == "" {`
init 2025-11-11 14:15:52 +01:00			`resp.Diagnostics.AddAttributeError(`
now using client sdk 2025-11-11 15:25:57 +01:00			`path.Root("endpoint"),`
			`"Missing Edge Connect API Endpoint",`
added username/password or token as env variable 2025-11-11 15:41:07 +01:00			`"The provider cannot create the Edge Connect API client as there is a missing or empty value for the Edge Connect API endpoint. "+`
			`"Set the endpoint value in the configuration or use the EDGE_CONNECT_ENDPOINT environment variable.",`
init 2025-11-11 14:15:52 +01:00			`)`
			`}`

added username/password auth 2025-11-11 15:35:39 +01:00			`// Validate authentication: either token OR username/password must be provided`
			`hasToken := token != ""`
			`hasUsernamePassword := username != "" && password != ""`

			`if !hasToken && !hasUsernamePassword {`
			`resp.Diagnostics.AddError(`
			`"Missing Authentication Credentials",`
			`"The provider requires authentication credentials. Please provide either:\n"+`
added username/password or token as env variable 2025-11-11 15:41:07 +01:00			`" - token: API token for authentication (via 'token' attribute or EDGE_CONNECT_TOKEN environment variable), or\n"+`
			`" - username and password: Username and password for authentication (via 'username'/'password' attributes or EDGE_CONNECT_USERNAME/EDGE_CONNECT_PASSWORD environment variables)",`
added username/password auth 2025-11-11 15:35:39 +01:00			`)`
			`}`

			`if hasToken && hasUsernamePassword {`
			`resp.Diagnostics.AddError(`
			`"Conflicting Authentication Methods",`
			`"Both token and username/password authentication methods are provided. Please use only one authentication method.",`
			`)`
			`}`

			`// Validate username/password pair`
			`if (username != "" && password == "") \|\| (username == "" && password != "") {`
			`resp.Diagnostics.AddError(`
			`"Incomplete Username/Password Credentials",`
			`"Both username and password must be provided together for username/password authentication.",`
init 2025-11-11 14:15:52 +01:00			`)`
			`}`

			`if resp.Diagnostics.HasError() {`
			`return`
			`}`

now using client sdk 2025-11-11 15:25:57 +01:00			`ctx = tflog.SetField(ctx, "edge_connect_endpoint", endpoint)`
init 2025-11-11 14:15:52 +01:00
added username/password auth 2025-11-11 15:35:39 +01:00			`if hasToken {`
			`ctx = tflog.MaskFieldValuesWithFieldKeys(ctx, "edge_connect_token")`
			`tflog.Debug(ctx, "Creating Edge Connect client with token authentication")`
			`} else {`
			`ctx = tflog.SetField(ctx, "edge_connect_username", username)`
			`ctx = tflog.MaskFieldValuesWithFieldKeys(ctx, "edge_connect_password")`
			`tflog.Debug(ctx, "Creating Edge Connect client with username/password authentication")`
			`}`
init 2025-11-11 14:15:52 +01:00
fixed bug 2025-11-11 15:55:38 +01:00			`var client *edgeclient.Client`
			`if token != "" {`
			`client = edgeclient.NewClient(endpoint,`
Update appinstance data schema to return list 2025-11-13 12:12:34 +01:00			`edgeclient.WithHTTPClient(&http.Client{Timeout: 30 * time.Second}),`
fixed bug 2025-11-11 15:55:38 +01:00			`edgeclient.WithAuthProvider(edgeclient.NewStaticTokenProvider(token)),`
added edge-connect_app_instance 2025-11-11 17:20:04 +01:00			`edgeclient.WithLogger(tfLogger{}),`
fixed bug 2025-11-11 15:55:38 +01:00			`)`
			`} else {`
			`client = edgeclient.NewClientWithCredentials(endpoint, username, password,`
Update appinstance data schema to return list 2025-11-13 12:12:34 +01:00			`edgeclient.WithHTTPClient(&http.Client{Timeout: 30 * time.Second}),`
added edge-connect_app_instance 2025-11-11 17:20:04 +01:00			`edgeclient.WithLogger(tfLogger{}),`
fixed bug 2025-11-11 15:55:38 +01:00			`)`
			`}`
added username/password auth 2025-11-11 15:35:39 +01:00			`// TODO: Configure client with authentication credentials`
			`// If using token: client.SetToken(token)`
			`// If using username/password: client.SetCredentials(username, password)`

now using client sdk 2025-11-11 15:25:57 +01:00			`resp.DataSourceData = client`
			`resp.ResourceData = client`
init 2025-11-11 14:15:52 +01:00
			`tflog.Info(ctx, "Configured Edge Connect client", map[string]any{"success": true})`
			`}`

now using client sdk 2025-11-11 15:25:57 +01:00			`func (p *EdgeConnectProvider) Resources(ctx context.Context) []func() resource.Resource {`
			`return []func() resource.Resource{`
			`NewAppResource,`
			`NewAppInstanceResource,`
			`}`
			`}`

			`func (p *EdgeConnectProvider) DataSources(ctx context.Context) []func() datasource.DataSource {`
init 2025-11-11 14:15:52 +01:00			`return []func() datasource.DataSource{`
			`NewAppDataSource,`
now using client sdk 2025-11-11 15:25:57 +01:00			`NewAppInstanceDataSource,`
init 2025-11-11 14:15:52 +01:00			`}`
			`}`

now using client sdk 2025-11-11 15:25:57 +01:00			`func New(version string) func() provider.Provider {`
			`return func() provider.Provider {`
			`return &EdgeConnectProvider{`
			`version: version,`
			`}`
init 2025-11-11 14:15:52 +01:00			`}`
			`}`
tested app 2025-11-11 17:05:34 +01:00
Update appinstance data schema to return list 2025-11-13 12:12:34 +01:00			`type tfLogger struct{}`
tested app 2025-11-11 17:05:34 +01:00
Update appinstance data schema to return list 2025-11-13 12:12:34 +01:00			`func (tfLogger) Printf(format string, v ...interface{}) {`
added edge-connect_app_instance 2025-11-11 17:20:04 +01:00			`tflog.Debug(context.TODO(), fmt.Sprintf(format, v...))`
tested app 2025-11-11 17:05:34 +01:00			`}`