Merge pull request #34 from svantepihl/user-attributes

Add support for User Attribute resource type

Author: RazcoDev

README.md

@@ -4,12 +4,10 @@
 
 Permit.io is a cloud-based authorization service that allows you to define and manage permissions for your application.
 In order to make it easier and safer to manage your objects and policies in Permit.io, we have created a Terraform provider.
- 
-
 
 _This provider repository is built on the [Terraform Plugin Framework](https://github.com/hashicorp/terraform-plugin-framework). The template repository built on the [Terraform Plugin SDK](https://github.com/hashicorp/terraform-plugin-sdk) can be found at [terraform-provider-scaffolding](https://github.com/hashicorp/terraform-provider-scaffolding). See [Which SDK Should I Use?](https://developer.hashicorp.com/terraform/plugin/framework-benefits) in the Terraform documentation for additional information._
 
-## Usage 
+## Usage
 
 The [examples directory](./examples) contains a number of examples of how to use the provider.
 
@@ -26,8 +24,8 @@ terraform {
 }
 ```
 
-
 ### Configure the Provider
+
 ```hcl
 provider "permitio" {
     api_url = "https://api.permit.io" # Defaults to - "https://api.permit.io - Can be set as an environment variable PERMITIO_API_URL
@@ -38,6 +36,7 @@ provider "permitio" {
 ### Creating Objects in Permitio
 
 #### Create a Resource
+
 ```hcl
 resource "permitio_resource" "document" {
   key         = "document"
@@ -74,6 +73,15 @@ resource "permitio_role" "reader" {
 }
 ```
 
+#### Create a User Attribute
+
+```hcl
+resource "permitio_user_attribute" "department" {
+  key         = "department"
+  description = "The department of the user"
+  type        = "string"
+}
+```
 
 ## Requirements
 
@@ -118,7 +126,7 @@ To generate or update documentation, run `go generate`.
 
 In order to run the full suite of Acceptance tests, run `make testacc`.
 
-*Note:* Acceptance tests create real resources, and often cost money to run.
+_Note:_ Acceptance tests create real resources, and often cost money to run.
 
 ```shell
 make testacc

docs/resources/permitio_user_attribute.md

@@ -0,0 +1,36 @@
+---
+# generated by https://github.com/hashicorp/terraform-plugin-docs
+page_title: "permitio_user_attribute Resource - terraform-provider-permit-io"
+subcategory: ""
+description: |-
+  See the documentation https://api.permit.io/v2/redoc#tag/User-Attributes/operation/create_user_attribute for more information about User Attributes
+---
+
+# permitio_user_attribute (Resource)
+
+See [the documentation](https://api.permit.io/v2/redoc#tag/User-Attributes/operation/create_user_attribute) for more information about User Attributes
+
+
+
+<!-- schema generated by tfplugindocs -->
+## Schema
+
+### Required
+
+- `description` (String) The description of the attribute
+- `key` (String) The key of the attribute
+- `type` (String) The type of the attribute
+
+### Optional
+
+- `updated_at` (String) The update timestamp. This is a timestamp for when the object was last updated.
+
+### Read-Only
+
+- `created_at` (String) The creation timestamp. This is a timestamp for when the object was created.
+- `environment_id` (String) The environment ID. This is a unique identifier for the environment.
+- `id` (String) The resource ID. This is a unique identifier for the resource.
+- `organization_id` (String) The organization ID. This is a unique identifier for the organization.
+- `project_id` (String) The project ID. This is a unique identifier for the project.
+- `resource_id` (String) The ID of the User resource
+- `resource_key` (String) The key of the User resource, will always be `__user`

internal/provider/common/attribute_type_validator.go

@@ -0,0 +1,42 @@
+package common
+
+import (
+	"context"
+	"fmt"
+
+	"github.com/hashicorp/terraform-plugin-framework/schema/validator"
+	"github.com/permitio/permit-golang/pkg/models"
+)
+
+type AttributeTypeValidator struct{}
+
+func (a AttributeTypeValidator) Description(ctx context.Context) string {
+	return "The type of the attribute in the resource."
+}
+
+func (a AttributeTypeValidator) MarkdownDescription(ctx context.Context) string {
+	return "The type of the attribute in the resource."
+}
+
+func (a AttributeTypeValidator) ValidateString(ctx context.Context, request validator.StringRequest, response *validator.StringResponse) {
+	if request.ConfigValue.IsUnknown() {
+		response.Diagnostics.AddError("Unable to read resource attribute type",
+			fmt.Sprintf("Unable to read resource attribute type: %s", request.Path.String()),
+		)
+		return
+	}
+	if request.ConfigValue.IsNull() {
+		response.Diagnostics.AddError("Invalid resource attribute type",
+			fmt.Sprintf("Invalid null resource attribute type: %s", request.Path.String()),
+		)
+		return
+	}
+
+	value := request.ConfigValue.ValueString()
+	if !models.AttributeType(value).IsValid() {
+		response.Diagnostics.AddError("Invalid resource attribute type",
+			fmt.Sprintf("Invalid resource attribute type: %s. Valid types are: %v", value, models.AllowedAttributeTypeEnumValues),
+		)
+		return
+	}
+}

internal/provider/provider.go

@@ -5,6 +5,10 @@ package provider
 
 import (
 	"context"
+	"os"
+	"strconv"
+	"time"
+
 	"github.com/hashicorp/terraform-plugin-framework/path"
 	"github.com/hashicorp/terraform-plugin-log/tflog"
 	permitConfig "github.com/permitio/permit-golang/pkg/config"
@@ -16,9 +20,7 @@ import (
 	"github.com/permitio/terraform-provider-permit-io/internal/provider/resources"
 	"github.com/permitio/terraform-provider-permit-io/internal/provider/role_derivations"
 	"github.com/permitio/terraform-provider-permit-io/internal/provider/roles"
-	"os"
-	"strconv"
-	"time"
+	"github.com/permitio/terraform-provider-permit-io/internal/provider/user_attributes"
 
 	"github.com/hashicorp/terraform-plugin-framework/datasource"
 	"github.com/hashicorp/terraform-plugin-framework/provider"
@@ -184,6 +186,7 @@ func (p *PermitProvider) Resources(_ context.Context) []func() resource.Resource
 		proxy_configs.NewProxyConfigResource,
 		relations.NewRelationResource,
 		role_derivations.NewRoleDerivationResource,
+		user_attributes.NewUserAttributeResource,
 	}
 }
 

internal/provider/resources/resource_resource.go

@@ -3,13 +3,15 @@ package resources
 import (
 	"context"
 	"fmt"
+
 	"github.com/hashicorp/terraform-plugin-framework/resource"
 	"github.com/hashicorp/terraform-plugin-framework/resource/schema"
 	"github.com/hashicorp/terraform-plugin-framework/resource/schema/planmodifier"
 	"github.com/hashicorp/terraform-plugin-framework/resource/schema/stringplanmodifier"
 	"github.com/hashicorp/terraform-plugin-framework/schema/validator"
 	"github.com/hashicorp/terraform-plugin-log/tflog"
 	"github.com/permitio/permit-golang/pkg/permit"
+	"github.com/permitio/terraform-provider-permit-io/internal/provider/common"
 )
 
 // Ensure the implementation satisfies the expected interfaces.
@@ -141,7 +143,7 @@ func (r *ResourceResource) Schema(_ context.Context, _ resource.SchemaRequest, r
 						"type": schema.StringAttribute{
 							Required: true,
 							Validators: []validator.String{
-								attributeTypeValidator{},
+								common.AttributeTypeValidator{},
 							},
 						},
 						"description": schema.StringAttribute{

internal/provider/user_attributes/client.go

@@ -0,0 +1,68 @@
+package user_attributes
+
+import (
+	"context"
+
+	"github.com/permitio/permit-golang/pkg/models"
+	"github.com/permitio/permit-golang/pkg/permit"
+)
+
+type userAttributesClient struct {
+	client *permit.Client
+}
+
+func (c *userAttributesClient) Create(ctx context.Context, plan userAttributeModel) (userAttributeModel, error) {
+
+	attributeType, err := models.NewAttributeTypeFromValue(plan.Type.ValueString())
+
+	if err != nil {
+		return userAttributeModel{}, err
+	}
+
+	attributeCreate := models.ResourceAttributeCreate{}
+	attributeCreate.SetKey(plan.Key.ValueString())
+	attributeCreate.SetType(*attributeType)
+	attributeCreate.SetDescription(plan.Description.ValueString())
+
+	createdAttribute, err := c.client.Api.ResourceAttributes.Create(ctx, UserKey, attributeCreate)
+
+	if err != nil {
+		return userAttributeModel{}, err
+	}
+
+	return tfModelFromSDK(*createdAttribute), nil
+}
+
+func (c *userAttributesClient) Read(ctx context.Context, key string) (userAttributeModel, error) {
+	readAttribute, err := c.client.Api.ResourceAttributes.Get(ctx, UserKey, key)
+
+	if err != nil {
+		return userAttributeModel{}, err
+	}
+
+	return tfModelFromSDK(*readAttribute), nil
+}
+
+func (c *userAttributesClient) Delete(ctx context.Context, key string) error {
+	return c.client.Api.ResourceAttributes.Delete(ctx, UserKey, key)
+}
+
+func (c *userAttributesClient) Update(ctx context.Context, key string, plan userAttributeModel) (userAttributeModel, error) {
+	attributeType, err := models.NewAttributeTypeFromValue(plan.Type.ValueString())
+
+	if err != nil {
+		return userAttributeModel{}, err
+	}
+
+	attributeUpdate := models.ResourceAttributeUpdate{}
+	attributeUpdate.SetType(*attributeType)
+	attributeUpdate.SetDescription(plan.Description.ValueString())
+
+	updatedAttribute, err := c.client.Api.ResourceAttributes.Update(ctx, UserKey, key, attributeUpdate)
+
+	if err != nil {
+		return userAttributeModel{}, err
+	}
+
+	return tfModelFromSDK(*updatedAttribute), nil
+}

internal/provider/user_attributes/model.go

@@ -0,0 +1,44 @@
+package user_attributes
+
+import (
+	"github.com/hashicorp/terraform-plugin-framework/types"
+	"github.com/permitio/permit-golang/pkg/models"
+)
+
+const UserKey = "__user"
+
+type userAttributeModel struct {
+	Id             types.String `tfsdk:"id"`
+	OrganizationId types.String `tfsdk:"organization_id"`
+	ProjectId      types.String `tfsdk:"project_id"`
+	EnvironmentId  types.String `tfsdk:"environment_id"`
+
+	ResourceId  types.String `tfsdk:"resource_id"`
+	ResourceKey types.String `tfsdk:"resource_key"` // Will always be "__user"
+
+	CreatedAt types.String `tfsdk:"created_at"`
+	UpdatedAt types.String `tfsdk:"updated_at"`
+
+	Type        types.String `tfsdk:"type"`
+	Key         types.String `tfsdk:"key"`
+	Description types.String `tfsdk:"description"`
+}
+
+func tfModelFromSDK(m models.ResourceAttributeRead) userAttributeModel {
+	return userAttributeModel{
+		Id:             types.StringValue(m.Id),
+		OrganizationId: types.StringValue(m.OrganizationId),
+		ProjectId:      types.StringValue(m.ProjectId),
+		EnvironmentId:  types.StringValue(m.EnvironmentId),
+
+		ResourceId:  types.StringValue(m.ResourceId),
+		ResourceKey: types.StringValue(UserKey), // Will always be "__user"
+
+		CreatedAt: types.StringValue(m.CreatedAt.String()),
+		UpdatedAt: types.StringValue(m.UpdatedAt.String()),
+
+		Type:        types.StringValue(string(m.Type)),
+		Key:         types.StringValue(m.Key),
+		Description: types.StringValue(*m.Description),
+	}
+}