Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Iap iam rework #2178

Merged
merged 37 commits into from
Sep 5, 2019
Merged

Iap iam rework #2178

merged 37 commits into from
Sep 5, 2019

Conversation

slevenick
Copy link
Contributor

@slevenick slevenick commented Aug 14, 2019
edited
Loading

Generating several IAP resources. Still needed resources are for App Engine services, and specific versions of App Engine services. These are not supported currently in Terraform, and will need either support or manual testing.

Release Note for Downstream PRs (will be copied)

`google_iap_web_iam_binding/_member/_policy` are now available for managing IAP web IAM permissions
`google_iap_web_backend_service_binding/_member/_policy` are now available for managing IAM permissions on IAP enabled backend services
`google_iap_web_type_compute_iam_binding/_member/_policy` are now available for managing IAM permissions on IAP enabled compute services
`google_iap_web_type_app_engine_iam_binding/_member/_policy` are now available for managing IAM permissions on IAP enabled App Engine applications

@modular-magician
Copy link
Collaborator

Hi! I'm the modular magician, I work on Magic Modules.
This PR seems not to have generated downstream PRs before, as of af0aee6.

Pull request statuses

No diff detected in Inspec.

New Pull Requests

I built this PR into one or more new PRs on other repositories, and when those are closed, this PR will also be merged and closed.
depends: hashicorp/terraform-provider-google-beta#1044
depends: GoogleCloudPlatform/terraform-google-conversion#161
depends: hashicorp/terraform-provider-google#4253
depends: modular-magician/ansible#349

@modular-magician
Copy link
Collaborator

Hi! I'm the modular magician, I work on Magic Modules.
I see that this PR has already had some downstream PRs generated. Any open downstreams are already updated to your most recent commit, 21e865d.

Pull request statuses

terraform-provider-google-beta already has an open PR.
terraform-google-conversion already has an open PR.
terraform-provider-google already has an open PR.
No diff detected in Ansible.
No diff detected in Inspec.

New Pull Requests

I didn't open any new pull requests because of this PR.

@modular-magician
Copy link
Collaborator

Hi! I'm the modular magician, I work on Magic Modules.
I see that this PR has already had some downstream PRs generated. Any open downstreams are already updated to your most recent commit, 888af5e.

Pull request statuses

terraform-provider-google-beta already has an open PR.
terraform-google-conversion already has an open PR.
terraform-provider-google already has an open PR.
No diff detected in Ansible.
No diff detected in Inspec.

New Pull Requests

I didn't open any new pull requests because of this PR.

@modular-magician
Copy link
Collaborator

Hi! I'm the modular magician, I work on Magic Modules.
I see that this PR has already had some downstream PRs generated. Any open downstreams are already updated to your most recent commit, 36dae56.

Pull request statuses

terraform-provider-google-beta already has an open PR.
terraform-google-conversion already has an open PR.
terraform-provider-google already has an open PR.
No diff detected in Ansible.
No diff detected in Inspec.

New Pull Requests

I didn't open any new pull requests because of this PR.

@modular-magician
Copy link
Collaborator

Hi! I'm the modular magician, I work on Magic Modules.
I see that this PR has already had some downstream PRs generated. Any open downstreams are already updated to your most recent commit, 514e901.

Pull request statuses

terraform-provider-google-beta already has an open PR.
terraform-google-conversion already has an open PR.
terraform-provider-google already has an open PR.
No diff detected in Ansible.
No diff detected in Inspec.

New Pull Requests

I didn't open any new pull requests because of this PR.

@modular-magician
Copy link
Collaborator

Hi! I'm the modular magician, I work on Magic Modules.
I see that this PR has already had some downstream PRs generated. Any open downstreams are already updated to your most recent commit, 7c78b87.

Pull request statuses

terraform-provider-google-beta already has an open PR.
terraform-google-conversion already has an open PR.
terraform-provider-google already has an open PR.
No diff detected in Ansible.
No diff detected in Inspec.

New Pull Requests

I didn't open any new pull requests because of this PR.

@modular-magician
Copy link
Collaborator

Hi! I'm the modular magician, I work on Magic Modules.
I see that this PR has already had some downstream PRs generated. Any open downstreams are already updated to your most recent commit, 2ef58e0.

Pull request statuses

terraform-provider-google-beta already has an open PR.
terraform-google-conversion already has an open PR.
terraform-provider-google already has an open PR.
No diff detected in Ansible.
No diff detected in Inspec.

New Pull Requests

I didn't open any new pull requests because of this PR.

@modular-magician
Copy link
Collaborator

Hi! I'm the modular magician, I work on Magic Modules.
I see that this PR has already had some downstream PRs generated. Any open downstreams are already updated to your most recent commit, 8be580d.

Pull request statuses

terraform-provider-google-beta already has an open PR.
terraform-google-conversion already has an open PR.
terraform-provider-google already has an open PR.
No diff detected in Ansible.
No diff detected in Inspec.

New Pull Requests

I didn't open any new pull requests because of this PR.

@modular-magician
Copy link
Collaborator

Hi! I'm the modular magician, I work on Magic Modules.
I see that this PR has already had some downstream PRs generated. Any open downstreams are already updated to your most recent commit, acbfe47.

Pull request statuses

terraform-provider-google-beta already has an open PR.
terraform-google-conversion already has an open PR.
terraform-provider-google already has an open PR.
No diff detected in Ansible.
No diff detected in Inspec.

New Pull Requests

I didn't open any new pull requests because of this PR.

@modular-magician
Copy link
Collaborator

Hi! I'm the modular magician, I work on Magic Modules.
I see that this PR has already had some downstream PRs generated. Any open downstreams are already updated to your most recent commit, db8d57f.

Pull request statuses

terraform-provider-google-beta already has an open PR.
terraform-google-conversion already has an open PR.
terraform-provider-google already has an open PR.
No diff detected in Ansible.
No diff detected in Inspec.

New Pull Requests

I didn't open any new pull requests because of this PR.

@modular-magician
Copy link
Collaborator

Hi! I'm the modular magician, I work on Magic Modules.
I see that this PR has already had some downstream PRs generated. Any open downstreams are already updated to your most recent commit, 32618fc.

Pull request statuses

terraform-provider-google-beta already has an open PR.
terraform-google-conversion already has an open PR.
terraform-provider-google already has an open PR.
No diff detected in Ansible.
No diff detected in Inspec.

New Pull Requests

I didn't open any new pull requests because of this PR.

@slevenick slevenick requested a review from danawillow August 15, 2019 20:33
slevenick
slevenick commented Aug 16, 2019
View reviewed changes
templates/terraform/examples/base_configs/iam_test_file.go.erb Outdated
@@ -174,7 +179,10 @@ func testAcc<%= resource_name -%>IamBinding_updateGenerated(context map[string]i
<%= example.config_test_body -%>

resource "<%= terraform_name -%>_iam_binding" "foo" {
<%= object.name.underscore -%> = "${<%= terraform_name -%>.<%= example.primary_resource_id -%>.id}"
<%= params.last.underscore -%> = "${<%= parent_resource_type_type -%>.<%= example.primary_resource_id -%>.<%= object.iam_policy.parent_resource_attribute -%>}"
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This currently uses resource.id as IAM resource should be able to parse their parent's id. I plan to change this to use the same code as the documentation example generation, which sets each field in the URL based on the fields of the parent resource.

For example: pubsub topic would set topic = google_pubsub_topic.my_topic.name and project = google_pubsub_topic.my_topic.project.

danawillow
danawillow suggested changes Aug 16, 2019
View reviewed changes
Copy link
Contributor

@danawillow danawillow left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

there's a part of me that hopes we encounter other APIs that use some of the stuff from here so that they get some use outside of IAP, and then there's another part that very much hopes we don't.

templates/terraform/iam_policy.go.erb Outdated Show resolved Hide resolved
templates/terraform/iam_policy.go.erb Outdated Show resolved Hide resolved
templates/terraform/iam_policy.go.erb Outdated Show resolved Hide resolved
templates/terraform/iam_policy.go.erb Show resolved Hide resolved
templates/terraform/resource_iam.html.markdown.erb Outdated Show resolved Hide resolved
templates/terraform/resource_iam.html.markdown.erb Show resolved Hide resolved
third_party/terraform/utils/import.go Show resolved Hide resolved
templates/terraform/examples/base_configs/iam_test_file.go.erb Outdated Show resolved Hide resolved
templates/terraform/resource_iam.html.markdown.erb Outdated Show resolved Hide resolved
products/iap/api.yaml Outdated Show resolved Hide resolved
@modular-magician
Copy link
Collaborator

Hi! I'm the modular magician, I work on Magic Modules.
I see that this PR has already had some downstream PRs generated. Any open downstreams are already updated to your most recent commit, a45a8f2.

Pull request statuses

terraform-provider-google-beta already has an open PR.
terraform-google-conversion already has an open PR.
terraform-provider-google already has an open PR.
No diff detected in Ansible.
No diff detected in Inspec.

New Pull Requests

I didn't open any new pull requests because of this PR.

@modular-magician
Copy link
Collaborator

Hi! I'm the modular magician, I work on Magic Modules.
I see that this PR has already had some downstream PRs generated. Any open downstreams are already updated to your most recent commit, a90f2de.

Pull request statuses

terraform-provider-google-beta already has an open PR.
terraform-google-conversion already has an open PR.
terraform-provider-google already has an open PR.
No diff detected in Ansible.
No diff detected in Inspec.

New Pull Requests

I didn't open any new pull requests because of this PR.

@modular-magician
Copy link
Collaborator

Hi! I'm the modular magician, I work on Magic Modules.
I see that this PR has already had some downstream PRs generated. Any open downstreams are already updated to your most recent commit, 58ff68c.

Pull request statuses

terraform-provider-google-beta already has an open PR.
terraform-google-conversion already has an open PR.
terraform-provider-google already has an open PR.
No diff detected in Ansible.
No diff detected in Inspec.

New Pull Requests

I didn't open any new pull requests because of this PR.

@modular-magician
Copy link
Collaborator

Hi! I'm the modular magician, I work on Magic Modules.
I see that this PR has already had some downstream PRs generated. Any open downstreams are already updated to your most recent commit, 8f5aeb6.

Pull request statuses

terraform-provider-google-beta already has an open PR.
terraform-google-conversion already has an open PR.
terraform-provider-google already has an open PR.
No diff detected in Ansible.
No diff detected in Inspec.

New Pull Requests

I didn't open any new pull requests because of this PR.

@modular-magician
Copy link
Collaborator

Hi! I'm the modular magician, I work on Magic Modules.
I see that this PR has already had some downstream PRs generated. Any open downstreams are already updated to your most recent commit, 34b017f.

Pull request statuses

terraform-provider-google-beta already has an open PR.
terraform-google-conversion already has an open PR.
terraform-provider-google already has an open PR.
No diff detected in Ansible.
No diff detected in Inspec.

New Pull Requests

I didn't open any new pull requests because of this PR.

slevenick and others added 24 commits September 5, 2019 21:46
@slevenick @modular-magician
Set state during read
fad345d
@slevenick @modular-magician
Correct primary resource name for appengine test generation
2f0adf7
@slevenick @modular-magician
Add backendServiceName description to iap web backend
d303cd4
@slevenick @modular-magician
Add IAP iam to website
224027b
@slevenick @modular-magician
Extra erb end
9df937a
@slevenick @modular-magician
Reorder website
96d8bc7
@slevenick @modular-magician
Add comments
04eec3f
@slevenick @modular-magician
PR feedback
844410f
@slevenick @modular-magician
Fix rebase issue in website
1929fbd
@slevenick @modular-magician
Refactoring iam attributes
ec10de2
@slevenick @modular-magician
Typo
454ddb4
@slevenick @modular-magician
Refactor examples to use attributes generated during test
77fb300
@slevenick @modular-magician
Website rename
0e62857
@slevenick @modular-magician
Try not setting extra fields
fc1484d
@slevenick @modular-magician
Project doc updates
7cdcc38
@slevenick @modular-magician
Fix import parsing logic
e961994
@slevenick @modular-magician
Enough arguments
c2e787c
@slevenick @modular-magician
Add back pubsub handwritten test
99195a1
@slevenick @modular-magician
PR feedback, spacing, moving methods to iam.go, naming
51a4eee
@slevenick @modular-magician
Add required import
2112af9
@slevenick @modular-magician
Default to viewer role, not editor
fc427bb
@slevenick @modular-magician
PR comments, moving functions/not depending on project.id
10032ea
@slevenick @modular-magician
Remove unused import
58567cb
@modular-magician
Update tracked submodules -> HEAD on Thu Sep 5 21:46:55 UTC 2019
d3f06f2 
Tracked submodules are build/terraform-beta build/terraform-mapper build/terraform build/ansible build/inspec.
@modular-magician modular-magician merged commit 1b038f7 into GoogleCloudPlatform:master Sep 5, 2019
This was referenced Sep 6, 2019
Merged
Merged
Merged
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@emilymye emilymye emilymye approved these changes

@danawillow danawillow danawillow approved these changes

Assignees
No one assigned
Labels
ansible automerged cla: yes downstream-generated terraform-google-conversion terraform-provider-google terraform-provider-google-beta
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@slevenick @modular-magician @danawillow @emilymye @googlebot