terraform-provider-docker/docker/resource_docker_secret.go

package docker

import (
	"encoding/base64"
	"log"

	"context"

	"github.com/docker/docker/api/types/swarm"
	"github.com/hashicorp/terraform-plugin-sdk/helper/schema"
)

func resourceDockerSecret() *schema.Resource {
	return &schema.Resource{
		Create: resourceDockerSecretCreate,
		Read:   resourceDockerSecretRead,
		Delete: resourceDockerSecretDelete,

		Schema: map[string]*schema.Schema{
			"name": {
				Type:        schema.TypeString,
				Description: "User-defined name of the secret",
				Required:    true,
				ForceNew:    true,
			},

			"data": {
				Type:         schema.TypeString,
				Description:  "User-defined name of the secret",
				Required:     true,
				Sensitive:    true,
				ForceNew:     true,
				ValidateFunc: validateStringIsBase64Encoded(),
			},

			"labels": {
				Type:     schema.TypeSet,
				Optional: true,
				ForceNew: true,
				Elem:     labelSchema,
			},
		},
	}
}

func resourceDockerSecretCreate(d *schema.ResourceData, meta interface{}) error {
	client := meta.(*ProviderConfig).DockerClient
	data, _ := base64.StdEncoding.DecodeString(d.Get("data").(string))

	secretSpec := swarm.SecretSpec{
		Annotations: swarm.Annotations{
			Name: d.Get("name").(string),
		},
		Data: data,
	}

	if v, ok := d.GetOk("labels"); ok {
		secretSpec.Annotations.Labels = labelSetToMap(v.(*schema.Set))
	}

	secret, err := client.SecretCreate(context.Background(), secretSpec)
	if err != nil {
		return err
	}

	d.SetId(secret.ID)

	return resourceDockerSecretRead(d, meta)
}

func resourceDockerSecretRead(d *schema.ResourceData, meta interface{}) error {
	client := meta.(*ProviderConfig).DockerClient
	secret, _, err := client.SecretInspectWithRaw(context.Background(), d.Id())

	if err != nil {
		log.Printf("[WARN] Secret (%s) not found, removing from state", d.Id())
		d.SetId("")
		return nil
	}
	d.SetId(secret.ID)
	return nil
}

func resourceDockerSecretDelete(d *schema.ResourceData, meta interface{}) error {
	client := meta.(*ProviderConfig).DockerClient
	err := client.SecretRemove(context.Background(), d.Id())

	if err != nil {
		return err
	}

	d.SetId("")
	return nil
}
Feat/swarm 4 new resources (#40) Adds docker swarm features to the provider for the Docker Engine 17.09.1 and API Version 1.32. The spec is close to the API. By default, the swarm services are fire and forget. A converging config implements the features of the docker cli to ensure a service and all its replicas are up and running. Furthermore, service can have configs, secrets, networks, mounts and be added to a network. 2018-05-16 12:00:04 -04:00			`package docker`

			`import (`
			`"encoding/base64"`
			`"log"`

Migrate/docker-client (#70) Migrates to the official docker client to connect to the Docker API/Deamon. Closes #32 2018-07-03 11:30:53 -04:00			`"context"`
trying something different 2019-11-08 18:24:50 -05:00
Feat/swarm 4 new resources (#40) Adds docker swarm features to the provider for the Docker Engine 17.09.1 and API Version 1.32. The spec is close to the API. By default, the swarm services are fire and forget. A converging config implements the features of the docker cli to ensure a service and all its replicas are up and running. Furthermore, service can have configs, secrets, networks, mounts and be added to a network. 2018-05-16 12:00:04 -04:00			`"github.com/docker/docker/api/types/swarm"`
Move to standalone plugin SDK (#200) Closes #197 Signed-off-by: dubo-dubon-duponey <dubodubonduponey+github@pm.me> 2019-10-09 14:25:38 -04:00			`"github.com/hashicorp/terraform-plugin-sdk/helper/schema"`
Feat/swarm 4 new resources (#40) Adds docker swarm features to the provider for the Docker Engine 17.09.1 and API Version 1.32. The spec is close to the API. By default, the swarm services are fire and forget. A converging config implements the features of the docker cli to ensure a service and all its replicas are up and running. Furthermore, service can have configs, secrets, networks, mounts and be added to a network. 2018-05-16 12:00:04 -04:00			`)`

			`func resourceDockerSecret() *schema.Resource {`
			`return &schema.Resource{`
			`Create: resourceDockerSecretCreate,`
			`Read: resourceDockerSecretRead,`
			`Delete: resourceDockerSecretDelete,`

			`Schema: map[string]*schema.Schema{`
provider: Ensured Go 1.11 in TravisCI and README provider: Run go fix provider: Run go fmt provider: Encode go version 1.11.5 to .go-version file 2019-03-01 16:02:17 -05:00			`"name": {`
Feat/swarm 4 new resources (#40) Adds docker swarm features to the provider for the Docker Engine 17.09.1 and API Version 1.32. The spec is close to the API. By default, the swarm services are fire and forget. A converging config implements the features of the docker cli to ensure a service and all its replicas are up and running. Furthermore, service can have configs, secrets, networks, mounts and be added to a network. 2018-05-16 12:00:04 -04:00			`Type: schema.TypeString,`
			`Description: "User-defined name of the secret",`
			`Required: true,`
			`ForceNew: true,`
			`},`

provider: Ensured Go 1.11 in TravisCI and README provider: Run go fix provider: Run go fmt provider: Encode go version 1.11.5 to .go-version file 2019-03-01 16:02:17 -05:00			`"data": {`
Feat/swarm 4 new resources (#40) Adds docker swarm features to the provider for the Docker Engine 17.09.1 and API Version 1.32. The spec is close to the API. By default, the swarm services are fire and forget. A converging config implements the features of the docker cli to ensure a service and all its replicas are up and running. Furthermore, service can have configs, secrets, networks, mounts and be added to a network. 2018-05-16 12:00:04 -04:00			`Type: schema.TypeString,`
			`Description: "User-defined name of the secret",`
			`Required: true,`
			`Sensitive: true,`
			`ForceNew: true,`
			`ValidateFunc: validateStringIsBase64Encoded(),`
			`},`
Add labels to support docker stacks (#92) * Add network labels and options attachable, ingress and ipv6 * Add volume labels * Add secret labels * Updates documentation 2018-10-18 06:39:58 -04:00
provider: Ensured Go 1.11 in TravisCI and README provider: Run go fix provider: Run go fmt provider: Encode go version 1.11.5 to .go-version file 2019-03-01 16:02:17 -05:00			`"labels": {`
trying something different 2019-11-08 18:24:50 -05:00			`Type: schema.TypeSet,`
specify labels are optional 2019-11-08 18:56:55 -05:00			`Optional: true,`
Add labels to support docker stacks (#92) * Add network labels and options attachable, ingress and ipv6 * Add volume labels * Add secret labels * Updates documentation 2018-10-18 06:39:58 -04:00			`ForceNew: true,`
trying something different 2019-11-08 18:24:50 -05:00			`Elem: labelSchema,`
Add labels to support docker stacks (#92) * Add network labels and options attachable, ingress and ipv6 * Add volume labels * Add secret labels * Updates documentation 2018-10-18 06:39:58 -04:00			`},`
Feat/swarm 4 new resources (#40) Adds docker swarm features to the provider for the Docker Engine 17.09.1 and API Version 1.32. The spec is close to the API. By default, the swarm services are fire and forget. A converging config implements the features of the docker cli to ensure a service and all its replicas are up and running. Furthermore, service can have configs, secrets, networks, mounts and be added to a network. 2018-05-16 12:00:04 -04:00			`},`
			`}`
			`}`

			`func resourceDockerSecretCreate(d *schema.ResourceData, meta interface{}) error {`
			`client := meta.(*ProviderConfig).DockerClient`
			`data, _ := base64.StdEncoding.DecodeString(d.Get("data").(string))`

Migrate/docker-client (#70) Migrates to the official docker client to connect to the Docker API/Deamon. Closes #32 2018-07-03 11:30:53 -04:00			`secretSpec := swarm.SecretSpec{`
			`Annotations: swarm.Annotations{`
			`Name: d.Get("name").(string),`
Feat/swarm 4 new resources (#40) Adds docker swarm features to the provider for the Docker Engine 17.09.1 and API Version 1.32. The spec is close to the API. By default, the swarm services are fire and forget. A converging config implements the features of the docker cli to ensure a service and all its replicas are up and running. Furthermore, service can have configs, secrets, networks, mounts and be added to a network. 2018-05-16 12:00:04 -04:00			`},`
Migrate/docker-client (#70) Migrates to the official docker client to connect to the Docker API/Deamon. Closes #32 2018-07-03 11:30:53 -04:00			`Data: data,`
Feat/swarm 4 new resources (#40) Adds docker swarm features to the provider for the Docker Engine 17.09.1 and API Version 1.32. The spec is close to the API. By default, the swarm services are fire and forget. A converging config implements the features of the docker cli to ensure a service and all its replicas are up and running. Furthermore, service can have configs, secrets, networks, mounts and be added to a network. 2018-05-16 12:00:04 -04:00			`}`

Add labels to support docker stacks (#92) * Add network labels and options attachable, ingress and ipv6 * Add volume labels * Add secret labels * Updates documentation 2018-10-18 06:39:58 -04:00			`if v, ok := d.GetOk("labels"); ok {`
trying something different 2019-11-08 18:24:50 -05:00			`secretSpec.Annotations.Labels = labelSetToMap(v.(*schema.Set))`
Add labels to support docker stacks (#92) * Add network labels and options attachable, ingress and ipv6 * Add volume labels * Add secret labels * Updates documentation 2018-10-18 06:39:58 -04:00			`}`

Migrate/docker-client (#70) Migrates to the official docker client to connect to the Docker API/Deamon. Closes #32 2018-07-03 11:30:53 -04:00			`secret, err := client.SecretCreate(context.Background(), secretSpec)`
Feat/swarm 4 new resources (#40) Adds docker swarm features to the provider for the Docker Engine 17.09.1 and API Version 1.32. The spec is close to the API. By default, the swarm services are fire and forget. A converging config implements the features of the docker cli to ensure a service and all its replicas are up and running. Furthermore, service can have configs, secrets, networks, mounts and be added to a network. 2018-05-16 12:00:04 -04:00			`if err != nil {`
			`return err`
			`}`

			`d.SetId(secret.ID)`

			`return resourceDockerSecretRead(d, meta)`
			`}`

			`func resourceDockerSecretRead(d *schema.ResourceData, meta interface{}) error {`
			`client := meta.(*ProviderConfig).DockerClient`
Migrate/docker-client (#70) Migrates to the official docker client to connect to the Docker API/Deamon. Closes #32 2018-07-03 11:30:53 -04:00			`secret, _, err := client.SecretInspectWithRaw(context.Background(), d.Id())`
Feat/swarm 4 new resources (#40) Adds docker swarm features to the provider for the Docker Engine 17.09.1 and API Version 1.32. The spec is close to the API. By default, the swarm services are fire and forget. A converging config implements the features of the docker cli to ensure a service and all its replicas are up and running. Furthermore, service can have configs, secrets, networks, mounts and be added to a network. 2018-05-16 12:00:04 -04:00
			`if err != nil {`
Migrate/docker-client (#70) Migrates to the official docker client to connect to the Docker API/Deamon. Closes #32 2018-07-03 11:30:53 -04:00			`log.Printf("[WARN] Secret (%s) not found, removing from state", d.Id())`
			`d.SetId("")`
			`return nil`
Feat/swarm 4 new resources (#40) Adds docker swarm features to the provider for the Docker Engine 17.09.1 and API Version 1.32. The spec is close to the API. By default, the swarm services are fire and forget. A converging config implements the features of the docker cli to ensure a service and all its replicas are up and running. Furthermore, service can have configs, secrets, networks, mounts and be added to a network. 2018-05-16 12:00:04 -04:00			`}`
			`d.SetId(secret.ID)`
			`return nil`
			`}`

			`func resourceDockerSecretDelete(d *schema.ResourceData, meta interface{}) error {`
			`client := meta.(*ProviderConfig).DockerClient`
Migrate/docker-client (#70) Migrates to the official docker client to connect to the Docker API/Deamon. Closes #32 2018-07-03 11:30:53 -04:00			`err := client.SecretRemove(context.Background(), d.Id())`
Feat/swarm 4 new resources (#40) Adds docker swarm features to the provider for the Docker Engine 17.09.1 and API Version 1.32. The spec is close to the API. By default, the swarm services are fire and forget. A converging config implements the features of the docker cli to ensure a service and all its replicas are up and running. Furthermore, service can have configs, secrets, networks, mounts and be added to a network. 2018-05-16 12:00:04 -04:00
			`if err != nil {`
			`return err`
			`}`

			`d.SetId("")`
			`return nil`
			`}`