Add profile attribute to device admin authorization rule resource

CiscoDevNet · Dec 1, 2023 · 21a8ec6 · 21a8ec6
1 parent 68d38d0
commit 21a8ec6
Show file tree

Hide file tree

Showing 9 changed files with 34 additions and 0 deletions.
diff --git a/docs/data-sources/device_admin_authorization_rule.md b/docs/data-sources/device_admin_authorization_rule.md
@@ -44,6 +44,7 @@ data "ise_device_admin_authorization_rule" "example" {
 - `condition_operator` (String) Equality operator
 - `condition_type` (String) Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that additional conditions are present under the children attribute.
 - `default` (Boolean) Indicates if this rule is the default one
+- `profile` (String) Device admin profiles control the initial login session of the device administrator
 - `rank` (Number) The rank (priority) in relation to other rules. Lower rank is higher priority.
 - `state` (String) The state that the rule is in. A disabled rule cannot be matched.
 

diff --git a/docs/resources/device_admin_authorization_rule.md b/docs/resources/device_admin_authorization_rule.md
@@ -26,6 +26,7 @@ resource "ise_device_admin_authorization_rule" "example" {
   condition_dictionary_name = "DEVICE"
   condition_operator        = "equals"
   command_sets              = ["DenyAllCommands"]
+  profile                   = "Default Shell Profile"
 }
 ```
 
@@ -52,6 +53,7 @@ resource "ise_device_admin_authorization_rule" "example" {
 - `condition_type` (String) Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that additional conditions are present under the children attribute.
   - Choices: `ConditionAndBlock`, `ConditionAttributes`, `ConditionOrBlock`, `ConditionReference`
 - `default` (Boolean) Indicates if this rule is the default one
+- `profile` (String) Device admin profiles control the initial login session of the device administrator
 - `rank` (Number) The rank (priority) in relation to other rules. Lower rank is higher priority.
 - `state` (String) The state that the rule is in. A disabled rule cannot be matched.
   - Choices: `disabled`, `enabled`, `monitor`

diff --git a/examples/resources/ise_device_admin_authorization_rule/resource.tf b/examples/resources/ise_device_admin_authorization_rule/resource.tf
@@ -11,4 +11,5 @@ resource "ise_device_admin_authorization_rule" "example" {
   condition_dictionary_name = "DEVICE"
   condition_operator        = "equals"
   command_sets              = ["DenyAllCommands"]
+  profile                   = "Default Shell Profile"
 }
diff --git a/gen/definitions/device_admin_authorization_rule.yaml b/gen/definitions/device_admin_authorization_rule.yaml
@@ -253,6 +253,10 @@ attributes:
     description: Command sets enforce the specified list of commands that can be executed by a device administrator
     example: DenyAllCommands
     minimum_test_value: '["DenyAllCommands"]'
+  - model_name: profile
+    type: String
+    description: Device admin profiles control the initial login session of the device administrator
+    example: Default Shell Profile
 
 test_prerequisites: |
   resource "ise_device_admin_policy_set" "test" {

diff --git a/internal/provider/data_source_ise_device_admin_authorization_rule.go b/internal/provider/data_source_ise_device_admin_authorization_rule.go
diff --git a/internal/provider/data_source_ise_device_admin_authorization_rule_test.go b/internal/provider/data_source_ise_device_admin_authorization_rule_test.go
diff --git a/internal/provider/model_ise_device_admin_authorization_rule.go b/internal/provider/model_ise_device_admin_authorization_rule.go
diff --git a/internal/provider/resource_ise_device_admin_authorization_rule.go b/internal/provider/resource_ise_device_admin_authorization_rule.go
diff --git a/internal/provider/resource_ise_device_admin_authorization_rule_test.go b/internal/provider/resource_ise_device_admin_authorization_rule_test.go