-
Notifications
You must be signed in to change notification settings - Fork 21
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
adding datasource and resource for ds auth provider certificate
ds auth provider certificate adding changes for ds and resource
- Loading branch information
Showing
19 changed files
with
1,885 additions
and
0 deletions.
There are no files selected for viewing
147 changes: 147 additions & 0 deletions
147
docs/data-sources/directory_service_auth_provider_certificate.md
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,147 @@ | ||
| --- | ||
| # generated by https://github.com/hashicorp/terraform-plugin-docs | ||
| page_title: "redfish_directory_service_auth_provider_certificate Data Source - terraform-provider-redfish" | ||
| subcategory: "" | ||
| description: |- | ||
| This Terraform datasource is used to query existing Directory Service auth provider Certificate. The information fetched from this block can be further used for resource block. | ||
| --- | ||
|
|
||
| # redfish_directory_service_auth_provider_certificate (Data Source) | ||
|
|
||
| This Terraform datasource is used to query existing Directory Service auth provider Certificate. The information fetched from this block can be further used for resource block. | ||
|
|
||
| ## Example Usage | ||
|
|
||
| ```terraform | ||
| /* | ||
| Copyright (c) 2024 Dell Inc., or its subsidiaries. All Rights Reserved. | ||
| Licensed under the Mozilla Public License Version 2.0 (the "License"); | ||
| you may not use this file except in compliance with the License. | ||
| You may obtain a copy of the License at | ||
| http://mozilla.org/MPL/2.0/ | ||
| Unless required by applicable law or agreed to in writing, software | ||
| distributed under the License is distributed on an "AS IS" BASIS, | ||
| WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. | ||
| See the License for the specific language governing permissions and | ||
| limitations under the License. | ||
| */ | ||
| data "redfish_directory_service_auth_provider_certificate" "ds_auth_certificate" { | ||
| for_each = var.rack1 | ||
| redfish_server { | ||
| # Alias name for server BMCs. The key in provider's `redfish_servers` map | ||
| # `redfish_alias` is used to align with enhancements to password management. | ||
| # When using redfish_alias, provider's `redfish_servers` is required. | ||
| redfish_alias = each.key | ||
| user = each.value.user | ||
| password = each.value.password | ||
| endpoint = each.value.endpoint | ||
| ssl_insecure = each.value.ssl_insecure | ||
| } | ||
| certificate_filter { | ||
| certificate_provider_type = "LDAP" | ||
| # certificate_id = "SecurityCertificate.5" | ||
| } | ||
| # security_certificate can be viewed if server has datacenter license | ||
| } | ||
| output "directory_service_auth_provider_certificate" { | ||
| value = data.redfish_directory_service_auth_provider_certificate.ds_auth_certificate | ||
| sensitive = true | ||
| } | ||
| ``` | ||
|
|
||
| <!-- schema generated by tfplugindocs --> | ||
| ## Schema | ||
|
|
||
| ### Optional | ||
|
|
||
| - `certificate_filter` (Block, Optional) Certificate filter for Directory Service Auth Provider (see [below for nested schema](#nestedblock--certificate_filter)) | ||
| - `redfish_server` (Block List) List of server BMCs and their respective user credentials (see [below for nested schema](#nestedblock--redfish_server)) | ||
|
|
||
| ### Read-Only | ||
|
|
||
| - `directory_service_auth_provider_certificate` (Attributes) Directory Service Auth Provider Certificate Details. (see [below for nested schema](#nestedatt--directory_service_auth_provider_certificate)) | ||
| - `id` (String) ID of the Directory Service Auth Provider Certificate data-source | ||
|
|
||
| <a id="nestedblock--certificate_filter"></a> | ||
| ### Nested Schema for `certificate_filter` | ||
|
|
||
| Required: | ||
|
|
||
| - `certificate_provider_type` (String) Filter for CertificateProviderType | ||
|
|
||
| Optional: | ||
|
|
||
| - `certificate_id` (String) CertificateId | ||
|
|
||
|
|
||
| <a id="nestedblock--redfish_server"></a> | ||
| ### Nested Schema for `redfish_server` | ||
|
|
||
| Optional: | ||
|
|
||
| - `endpoint` (String) Server BMC IP address or hostname | ||
| - `password` (String, Sensitive) User password for login | ||
| - `redfish_alias` (String) Alias name for server BMCs. The key in provider's `redfish_servers` map | ||
| - `ssl_insecure` (Boolean) This field indicates whether the SSL/TLS certificate must be verified or not | ||
| - `user` (String) User name for login | ||
|
|
||
|
|
||
| <a id="nestedatt--directory_service_auth_provider_certificate"></a> | ||
| ### Nested Schema for `directory_service_auth_provider_certificate` | ||
|
|
||
| Read-Only: | ||
|
|
||
| - `directory_service_certificate` (Attributes) Directory Service Certificate Details. (see [below for nested schema](#nestedatt--directory_service_auth_provider_certificate--directory_service_certificate)) | ||
| - `security_certificate` (Map of String) SecurityCertificate attributes in Dell iDRAC attributes. | ||
|
|
||
| <a id="nestedatt--directory_service_auth_provider_certificate--directory_service_certificate"></a> | ||
| ### Nested Schema for `directory_service_auth_provider_certificate.directory_service_certificate` | ||
|
|
||
| Read-Only: | ||
|
|
||
| - `certificate_usage_types` (List of String) The types or purposes for this certificate | ||
| - `description` (String) Description of the Certificate | ||
| - `issuer` (Attributes) The issuer of the certificate (see [below for nested schema](#nestedatt--directory_service_auth_provider_certificate--directory_service_certificate--issuer)) | ||
| - `name` (String) Name of the Certificate | ||
| - `odata_id` (String) OData ID for the Certificate | ||
| - `serial_number` (String) The serial number of the certificate | ||
| - `subject` (Attributes) The subject of the certificate (see [below for nested schema](#nestedatt--directory_service_auth_provider_certificate--directory_service_certificate--subject)) | ||
| - `valid_not_after` (String) The date when the certificate is no longer valid | ||
| - `valid_not_before` (String) The date when the certificate becomes valid | ||
|
|
||
| <a id="nestedatt--directory_service_auth_provider_certificate--directory_service_certificate--issuer"></a> | ||
| ### Nested Schema for `directory_service_auth_provider_certificate.directory_service_certificate.issuer` | ||
|
|
||
| Read-Only: | ||
|
|
||
| - `city` (String) The city or locality of the organization of the entity | ||
| - `common_name` (String) The common name of the entity | ||
| - `country` (String) The country of the organization of the entity | ||
| - `email` (String) The email address of the contact within the organization of the entity | ||
| - `organization` (String) The name of the organization of the entity | ||
| - `organizational_unit` (String) The name of the unit or division of the organization of the entity | ||
| - `state` (String) The state, province, or region of the organization of the entity | ||
|
|
||
|
|
||
| <a id="nestedatt--directory_service_auth_provider_certificate--directory_service_certificate--subject"></a> | ||
| ### Nested Schema for `directory_service_auth_provider_certificate.directory_service_certificate.subject` | ||
|
|
||
| Read-Only: | ||
|
|
||
| - `city` (String) The city or locality of the organization of the entity | ||
| - `common_name` (String) The common name of the entity | ||
| - `country` (String) The country of the organization of the entity | ||
| - `email` (String) The email address of the contact within the organization of the entity | ||
| - `organization` (String) The name of the organization of the entity | ||
| - `organizational_unit` (String) The name of the unit or division of the organization of the entity | ||
| - `state` (String) The state, province, or region of the organization of the entity |
85 changes: 85 additions & 0 deletions
85
docs/resources/directory_service_auth_provider_certificate.md
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,85 @@ | ||
| --- | ||
| # generated by https://github.com/hashicorp/terraform-plugin-docs | ||
| page_title: "redfish_directory_service_auth_provider_certificate Resource - terraform-provider-redfish" | ||
| subcategory: "" | ||
| description: |- | ||
| This Terraform resource is used to configure Directory Service Auth Provider certificate and RSA certificate | ||
| --- | ||
|
|
||
| # redfish_directory_service_auth_provider_certificate (Resource) | ||
|
|
||
| This Terraform resource is used to configure Directory Service Auth Provider certificate and RSA certificate | ||
|
|
||
| ## Example Usage | ||
|
|
||
| ```terraform | ||
| /* | ||
| Copyright (c) 2024 Dell Inc., or its subsidiaries. All Rights Reserved. | ||
| Licensed under the Mozilla Public License Version 2.0 (the "License"); | ||
| you may not use this file except in compliance with the License. | ||
| You may obtain a copy of the License at | ||
| http://mozilla.org/MPL/2.0/ | ||
| Unless required by applicable law or agreed to in writing, software | ||
| distributed under the License is distributed on an "AS IS" BASIS, | ||
| WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. | ||
| See the License for the specific language governing permissions and | ||
| limitations under the License. | ||
| */ | ||
| data "local_file" "ds_certificate" { | ||
| # this is the path to the certificate that we want to upload. | ||
| filename = "/root/certificate/new/terraform-provider-redfish/test-data/valid-ds-cert.txt" | ||
| } | ||
| resource "redfish_directory_service_auth_provider_certificate" "ds_auth_certificate" { | ||
| for_each = var.rack1 | ||
| redfish_server { | ||
| # Alias name for server BMCs. The key in provider's `redfish_servers` map | ||
| # `redfish_alias` is used to align with enhancements to password management. | ||
| # When using redfish_alias, provider's `redfish_servers` is required. | ||
| redfish_alias = each.key | ||
| user = each.value.user | ||
| password = each.value.password | ||
| endpoint = each.value.endpoint | ||
| ssl_insecure = each.value.ssl_insecure | ||
| } | ||
| # RSA_CA_CERT certificate resource can be created/modified only if server have datacenter license | ||
| # certificate type can be PEM or RSA_CA_CERT | ||
| certificate_type = "RSA_CA_CERT1" | ||
| certificate_string = data.local_file.ds_certificate.content | ||
| } | ||
| ``` | ||
|
|
||
| <!-- schema generated by tfplugindocs --> | ||
| ## Schema | ||
|
|
||
| ### Required | ||
|
|
||
| - `certificate_string` (String) Encrypted Certificate | ||
| - `certificate_type` (String) certificate Type | ||
|
|
||
| ### Optional | ||
|
|
||
| - `redfish_server` (Block List) List of server BMCs and their respective user credentials (see [below for nested schema](#nestedblock--redfish_server)) | ||
|
|
||
| ### Read-Only | ||
|
|
||
| - `id` (String) ID of the Directory Service Auth Provider Certificate resource | ||
|
|
||
| <a id="nestedblock--redfish_server"></a> | ||
| ### Nested Schema for `redfish_server` | ||
|
|
||
| Optional: | ||
|
|
||
| - `endpoint` (String) Server BMC IP address or hostname | ||
| - `password` (String, Sensitive) User password for login | ||
| - `redfish_alias` (String) Alias name for server BMCs. The key in provider's `redfish_servers` map | ||
| - `ssl_insecure` (Boolean) This field indicates whether the SSL/TLS certificate must be verified or not | ||
| - `user` (String) User name for login |
44 changes: 44 additions & 0 deletions
44
examples/data-sources/redfish_directory_service_auth_provider_certificate/data-source.tf
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,44 @@ | ||
| /* | ||
| Copyright (c) 2024 Dell Inc., or its subsidiaries. All Rights Reserved. | ||
| Licensed under the Mozilla Public License Version 2.0 (the "License"); | ||
| you may not use this file except in compliance with the License. | ||
| You may obtain a copy of the License at | ||
| http://mozilla.org/MPL/2.0/ | ||
| Unless required by applicable law or agreed to in writing, software | ||
| distributed under the License is distributed on an "AS IS" BASIS, | ||
| WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. | ||
| See the License for the specific language governing permissions and | ||
| limitations under the License. | ||
| */ | ||
|
|
||
| data "redfish_directory_service_auth_provider_certificate" "ds_auth_certificate" { | ||
| for_each = var.rack1 | ||
|
|
||
| redfish_server { | ||
| # Alias name for server BMCs. The key in provider's `redfish_servers` map | ||
| # `redfish_alias` is used to align with enhancements to password management. | ||
| # When using redfish_alias, provider's `redfish_servers` is required. | ||
| redfish_alias = each.key | ||
|
|
||
| user = each.value.user | ||
| password = each.value.password | ||
| endpoint = each.value.endpoint | ||
| ssl_insecure = each.value.ssl_insecure | ||
| } | ||
|
|
||
| certificate_filter { | ||
| certificate_provider_type = "LDAP" | ||
| # certificate_id = "SecurityCertificate.5" | ||
| } | ||
|
|
||
| # security_certificate can be viewed if server has datacenter license | ||
| } | ||
|
|
||
| output "directory_service_auth_provider_certificate" { | ||
| value = data.redfish_directory_service_auth_provider_certificate.ds_auth_certificate | ||
| sensitive = true | ||
| } |
32 changes: 32 additions & 0 deletions
32
examples/data-sources/redfish_directory_service_auth_provider_certificate/provider.tf
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,32 @@ | ||
| /* | ||
| Copyright (c) 2024 Dell Inc., or its subsidiaries. All Rights Reserved. | ||
| Licensed under the Mozilla Public License Version 2.0 (the "License"); | ||
| you may not use this file except in compliance with the License. | ||
| You may obtain a copy of the License at | ||
| http://mozilla.org/MPL/2.0/ | ||
| Unless required by applicable law or agreed to in writing, software | ||
| distributed under the License is distributed on an "AS IS" BASIS, | ||
| WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. | ||
| See the License for the specific language governing permissions and | ||
| limitations under the License. | ||
| */ | ||
|
|
||
| terraform { | ||
| required_providers { | ||
| redfish = { | ||
| version = "1.5.0" | ||
| source = "registry.terraform.io/dell/redfish" | ||
| } | ||
| } | ||
| } | ||
|
|
||
| provider "redfish" { | ||
| # `redfish_servers` is used to align with enhancements to password management. | ||
| # Map of server BMCs with their alias keys and respective user credentials. | ||
| # This is required when resource/datasource's `redfish_alias` is not null | ||
| redfish_servers = var.rack1 | ||
| } |
31 changes: 31 additions & 0 deletions
31
examples/data-sources/redfish_directory_service_auth_provider_certificate/terraform.tfvars
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,31 @@ | ||
| /* | ||
| Copyright (c) 2024 Dell Inc., or its subsidiaries. All Rights Reserved. | ||
| Licensed under the Mozilla Public License Version 2.0 (the "License"); | ||
| you may not use this file except in compliance with the License. | ||
| You may obtain a copy of the License at | ||
| http://mozilla.org/MPL/2.0/ | ||
| Unless required by applicable law or agreed to in writing, software | ||
| distributed under the License is distributed on an "AS IS" BASIS, | ||
| WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. | ||
| See the License for the specific language governing permissions and | ||
| limitations under the License. | ||
| */ | ||
|
|
||
| rack1 = { | ||
| "my-server-1" = { | ||
| user = "admin" | ||
| password = "passw0rd" | ||
| endpoint = "https://my-server-1.myawesomecompany.org" | ||
| ssl_insecure = true | ||
| }, | ||
| "my-server-2" = { | ||
| user = "admin" | ||
| password = "passw0rd" | ||
| endpoint = "https://my-server-2.myawesomecompany.org" | ||
| ssl_insecure = true | ||
| }, | ||
| } |
25 changes: 25 additions & 0 deletions
25
examples/data-sources/redfish_directory_service_auth_provider_certificate/variables.tf
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,25 @@ | ||
| /* | ||
| Copyright (c) 2024 Dell Inc., or its subsidiaries. All Rights Reserved. | ||
| Licensed under the Mozilla Public License Version 2.0 (the "License"); | ||
| you may not use this file except in compliance with the License. | ||
| You may obtain a copy of the License at | ||
| http://mozilla.org/MPL/2.0/ | ||
| Unless required by applicable law or agreed to in writing, software | ||
| distributed under the License is distributed on an "AS IS" BASIS, | ||
| WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. | ||
| See the License for the specific language governing permissions and | ||
| limitations under the License. | ||
| */ | ||
|
|
||
| variable "rack1" { | ||
| type = map(object({ | ||
| user = string | ||
| password = string | ||
| endpoint = string | ||
| ssl_insecure = bool | ||
| })) | ||
| } |
Oops, something went wrong.