From 7511dee64a7941a669286d88b2b96a1fd3c90eef Mon Sep 17 00:00:00 2001 From: Dana Date: Sun, 18 Aug 2024 17:01:47 +0300 Subject: [PATCH 01/22] addign custom vpc support --- dome9/common/providerconst/const.go | 1 + dome9/resource_dome9_awp_aws_onboarding.go | 7 +++++-- dome9/resource_dome9_awp_aws_onboarding_test.go | 4 +++- 3 files changed, 9 insertions(+), 3 deletions(-) diff --git a/dome9/common/providerconst/const.go b/dome9/common/providerconst/const.go index 4d111705..d8ffda58 100644 --- a/dome9/common/providerconst/const.go +++ b/dome9/common/providerconst/const.go @@ -212,4 +212,5 @@ const ( DefaultMaxConcurrentScansPerRegion = 20 MinMaxConcurrentScansPerRegion = 1 MaxScanMachineIntervalInHours = 1000 + DefaultInAccountScannerVPCMode = "ManagedByAWP" ) diff --git a/dome9/resource_dome9_awp_aws_onboarding.go b/dome9/resource_dome9_awp_aws_onboarding.go index ba22c960..8ba99268 100644 --- a/dome9/resource_dome9_awp_aws_onboarding.go +++ b/dome9/resource_dome9_awp_aws_onboarding.go @@ -9,8 +9,6 @@ import ( "time" "github.com/dome9/dome9-sdk-go/dome9/client" - "github.com/dome9/dome9-sdk-go/services/awp" - "github.com/dome9/dome9-sdk-go/services/awp/aws_onboarding" "github.com/dome9/dome9-sdk-go/services/cloudaccounts" "github.com/hashicorp/terraform-plugin-sdk/helper/schema" "github.com/hashicorp/terraform-plugin-sdk/helper/validation" @@ -295,6 +293,7 @@ func expandAgentlessAccountSettings(d *schema.ResourceData) (*awp_onboarding.Age DisabledRegions: make([]string, 0), CustomTags: make(map[string]string), ScanMachineIntervalInHours: scanMachineIntervalInHours, + InAccountScannerVPC: providerconst.DefaultInAccountScannerVPCMode, MaxConcurrenceScansPerRegion: providerconst.DefaultMaxConcurrentScansPerRegion, } @@ -327,6 +326,10 @@ func expandAgentlessAccountSettings(d *schema.ResourceData) (*awp_onboarding.Age agentlessAccountSettings.MaxConcurrenceScansPerRegion = maxConcurrentScans } + if inAccountScannerVPC, ok := agentlessAccountSettingsMap["in_account_scanner_vpc"].(int); ok { + agentlessAccountSettings.InAccountScannerVPC = inAccountScannerVPC + } + if customTagsInterface, ok := agentlessAccountSettingsMap["custom_tags"].(map[string]interface{}); ok { customTags := make(map[string]string) for k, v := range customTagsInterface { diff --git a/dome9/resource_dome9_awp_aws_onboarding_test.go b/dome9/resource_dome9_awp_aws_onboarding_test.go index 9bb1ad9b..a24e3cff 100644 --- a/dome9/resource_dome9_awp_aws_onboarding_test.go +++ b/dome9/resource_dome9_awp_aws_onboarding_test.go @@ -3,7 +3,6 @@ package dome9 import ( "encoding/json" "fmt" - "github.com/dome9/dome9-sdk-go/services/awp" "github.com/hashicorp/terraform-plugin-sdk/terraform" "github.com/terraform-providers/terraform-provider-dome9/dome9/common/testing/environmentvariable" "github.com/terraform-providers/terraform-provider-dome9/dome9/common/testing/variable" @@ -49,6 +48,7 @@ func TestAccResourceAWPAWSOnboardingBasic(t *testing.T) { resource.TestCheckResourceAttr(resourceTypeAndName, "agentless_account_settings.0.disabled_regions.1", disabledRegion2), resource.TestCheckResourceAttr(resourceTypeAndName, "agentless_account_settings.0.scan_machine_interval_in_hours", variable.ScanMachineIntervalInHours), resource.TestCheckResourceAttr(resourceTypeAndName, "agentless_account_settings.0.max_concurrent_scans_per_region", variable.MaxConcurrentScansPerRegion), + resource.TestCheckResourceAttr(resourceTypeAndName, "agentless_account_settings.0.in_account_scanner_vpc", variable.InAccountScannerVPC), resource.TestCheckResourceAttr(resourceTypeAndName, "agentless_account_settings.0.custom_tags.%", "2"), resource.TestCheckResourceAttrSet(resourceTypeAndName, "id"), resource.TestCheckResourceAttr(resourceTypeAndName, "cloud_provider", "aws"), @@ -70,6 +70,7 @@ func TestAccResourceAWPAWSOnboardingBasic(t *testing.T) { resource.TestCheckResourceAttr(resourceTypeAndName, "agentless_account_settings.0.disabled_regions.3", disabledRegionUpdate4), resource.TestCheckResourceAttr(resourceTypeAndName, "agentless_account_settings.0.scan_machine_interval_in_hours", variable.ScanMachineIntervalInHoursUpdate), resource.TestCheckResourceAttr(resourceTypeAndName, "agentless_account_settings.0.max_concurrent_scans_per_region", variable.MaxConcurrentScansPerRegionUpdate), + resource.TestCheckResourceAttr(resourceTypeAndName, "agentless_account_settings.0.in_account_scanner_vpc", variable.InAccountScannerVPCUpdate), resource.TestCheckResourceAttr(resourceTypeAndName, "agentless_account_settings.0.custom_tags.%", "3"), resource.TestCheckResourceAttrSet(resourceTypeAndName, "id"), resource.TestCheckResourceAttr(resourceTypeAndName, "cloud_provider", "aws"), @@ -167,6 +168,7 @@ resource "%s" "%s" { IfThenElse(updateAction, variable.DisabledRegionsUpdate, variable.DisabledRegions), IfThenElse(updateAction, variable.ScanMachineIntervalInHoursUpdate, variable.ScanMachineIntervalInHours), IfThenElse(updateAction, variable.MaxConcurrentScansPerRegionUpdate, variable.MaxConcurrentScansPerRegion), + IfThenElse(updateAction, variable.InAccountScannerVPCUpdate, variable.InAccountScannerVPC), IfThenElse(updateAction, variable.CustomTagsUpdate, variable.CustomTags), ) } From d5b63759908bc88a77f20d98bc59ed24ca5999a3 Mon Sep 17 00:00:00 2001 From: Dana Date: Sun, 18 Aug 2024 17:10:45 +0300 Subject: [PATCH 02/22] adding explanations --- website/docs/r/awp_aws_onboarding.html.markdown | 1 + 1 file changed, 1 insertion(+) diff --git a/website/docs/r/awp_aws_onboarding.html.markdown b/website/docs/r/awp_aws_onboarding.html.markdown index ef58436e..ee62b76f 100644 --- a/website/docs/r/awp_aws_onboarding.html.markdown +++ b/website/docs/r/awp_aws_onboarding.html.markdown @@ -110,6 +110,7 @@ The following arguments are supported: * `disabled_regions` - (Optional) The disabled regions. valid values are "af-south-1", "ap-south-1", "eu-north-1", "eu-west-3", "eu-south-1", "eu-west-2", "eu-west-1", "ap-northeast-3", "ap-northeast-2", "me-south-1", "ap-northeast-1", "me-central-1", "ca-central-1", "sa-east-1", "ap-east-1", "ap-southeast-1", "ap-southeast-2", "eu-central-1", "ap-southeast-3", "us-east-1", "us-east-2", "us-west-1", "us-west-2" * `scan_machine_interval_in_hours` - (Optional) The scan machine interval in hours * `max_concurrent_scans_per_region` - (Optional) The max concurrent scans per region + * `in_account_scanner_vpc` - (Optional) The VPC mode. Valid values are "ManagedByAWP" or "ManagedByCustomer". * `custom_tags` - (Optional) The custom tags. * `should_create_policy` - (Optional) Whether to create a policy. Default is true. From ccc378cd044b4c5136e40f0eb2389b35cba07167 Mon Sep 17 00:00:00 2001 From: Dana Date: Sun, 25 Aug 2024 12:22:24 +0300 Subject: [PATCH 03/22] adding support to setggings --- .../dome9/dome9-sdk-go/services/awp/onboarding_common.go | 1 + 1 file changed, 1 insertion(+) diff --git a/vendor/github.com/dome9/dome9-sdk-go/services/awp/onboarding_common.go b/vendor/github.com/dome9/dome9-sdk-go/services/awp/onboarding_common.go index 9053b0d6..46deb2e6 100644 --- a/vendor/github.com/dome9/dome9-sdk-go/services/awp/onboarding_common.go +++ b/vendor/github.com/dome9/dome9-sdk-go/services/awp/onboarding_common.go @@ -37,6 +37,7 @@ type AgentlessAccountSettings struct { ScanMachineIntervalInHours int `json:"scanMachineIntervalInHours"` MaxConcurrenceScansPerRegion int `json:"maxConcurrenceScansPerRegion"` SkipFunctionAppsScan bool `json:"skipFunctionAppsScan"` + InAccountScannerVPC string `json:"inAccountScannerVPC"` CustomTags map[string]string `json:"customTags"` } From a3bdb3eebc44e5716602f61dae1d0aec9052fb2e Mon Sep 17 00:00:00 2001 From: Dana Date: Sun, 25 Aug 2024 16:28:08 +0300 Subject: [PATCH 04/22] adding changes --- dome9/data_source_dome9_awp_aws_onboarding.go | 4 ++++ ...ta_source_dome9_awp_aws_onboarding_test.go | 1 + .../awp/aws_onboarding/aws_onboarding.go | 4 ++++ .../services/awp/onboarding_common.go | 19 +++++++++++++++++-- 4 files changed, 26 insertions(+), 2 deletions(-) diff --git a/dome9/data_source_dome9_awp_aws_onboarding.go b/dome9/data_source_dome9_awp_aws_onboarding.go index 2dd2bc0b..9398403e 100644 --- a/dome9/data_source_dome9_awp_aws_onboarding.go +++ b/dome9/data_source_dome9_awp_aws_onboarding.go @@ -39,6 +39,10 @@ func dataSourceAwpAwsOnboarding() *schema.Resource { Type: schema.TypeInt, Computed: true, }, + "in_account_scanner_vpc": { + Type: schema.TypeString, + Computed: true, + }, "custom_tags": { Type: schema.TypeMap, Computed: true, diff --git a/dome9/data_source_dome9_awp_aws_onboarding_test.go b/dome9/data_source_dome9_awp_aws_onboarding_test.go index d45fb76c..9487635f 100644 --- a/dome9/data_source_dome9_awp_aws_onboarding_test.go +++ b/dome9/data_source_dome9_awp_aws_onboarding_test.go @@ -37,6 +37,7 @@ func TestAccDataSourceAwpAwsOnboardingBasic(t *testing.T) { resource.TestCheckResourceAttrPair(awpAwsOnboardingDataSourceTypeAndName, "agentless_account_settings.0.disabled_regions.1", awpAwsOnboardingResourceTypeAndName, "agentless_account_settings.0.disabled_regions.1"), resource.TestCheckResourceAttrPair(awpAwsOnboardingDataSourceTypeAndName, "agentless_account_settings.0.scan_machine_interval_in_hours", awpAwsOnboardingResourceTypeAndName, "agentless_account_settings.0.scan_machine_interval_in_hours"), resource.TestCheckResourceAttrPair(awpAwsOnboardingDataSourceTypeAndName, "agentless_account_settings.0.max_concurrent_scans_per_region", awpAwsOnboardingResourceTypeAndName, "agentless_account_settings.0.max_concurrent_scans_per_region"), + resource.TestCheckResourceAttrPair(awpAwsOnboardingDataSourceTypeAndName, "agentless_account_settings.0.in_account_scanner_vpc", awpAwsOnboardingResourceTypeAndName, "agentless_account_settings.0.in_account_scanner_vpc"), resource.TestCheckResourceAttrPair(awpAwsOnboardingDataSourceTypeAndName, "agentless_account_settings.0.custom_tags.%", awpAwsOnboardingResourceTypeAndName, "agentless_account_settings.0.custom_tags.%"), resource.TestCheckResourceAttrPair(awpAwsOnboardingDataSourceTypeAndName, "missing_awp_private_network_regions", awpAwsOnboardingResourceTypeAndName, "missing_awp_private_network_regions"), resource.TestCheckResourceAttrPair(awpAwsOnboardingDataSourceTypeAndName, "agentless_protection_enabled", awpAwsOnboardingResourceTypeAndName, "agentless_protection_enabled"), diff --git a/vendor/github.com/dome9/dome9-sdk-go/services/awp/aws_onboarding/aws_onboarding.go b/vendor/github.com/dome9/dome9-sdk-go/services/awp/aws_onboarding/aws_onboarding.go index b6e6d508..77f34f5a 100644 --- a/vendor/github.com/dome9/dome9-sdk-go/services/awp/aws_onboarding/aws_onboarding.go +++ b/vendor/github.com/dome9/dome9-sdk-go/services/awp/aws_onboarding/aws_onboarding.go @@ -59,6 +59,10 @@ func (service *Service) UpdateAWPSettings(id string, req awp_onboarding.Agentles return awp_onboarding.UpdateAWPSettings(service.Client, awp_onboarding.ProviderAWS, id, req) } +func (service *Service) UpdateAWPCentralizedSettings(id string, req awp_onboarding.AgentlessCentralizedAccountSettings) (*http.Response, error) { + return awp_onboarding.UpdateAWPCentralizedSettings(service.Client, awp_onboarding.ProviderAWS, id, req) +} + func (service *Service) GetOnboardingData() (*AgentlessTerraformOnboardingDataResponseAws, *http.Response, error) { v := new(AgentlessTerraformOnboardingDataResponseAws) resp, err := service.Client.NewRequestDoRetry("GET", GetOnboardingDataPath, nil, nil, v, nil) diff --git a/vendor/github.com/dome9/dome9-sdk-go/services/awp/onboarding_common.go b/vendor/github.com/dome9/dome9-sdk-go/services/awp/onboarding_common.go index 46deb2e6..d0a505aa 100644 --- a/vendor/github.com/dome9/dome9-sdk-go/services/awp/onboarding_common.go +++ b/vendor/github.com/dome9/dome9-sdk-go/services/awp/onboarding_common.go @@ -41,6 +41,10 @@ type AgentlessAccountSettings struct { CustomTags map[string]string `json:"customTags"` } +type AgentlessCentralizedAccountSettings struct { + InAccountScannerVPC string `json:"inAccountScannerVPC"` +} + type AccountIssues struct { Regions map[string]interface{} `json:"regions"` Account *map[string]interface{} `json:"account"` @@ -100,6 +104,17 @@ func UpdateAWPSettings(client *client.Client, cloudProvider string, id string, r return resp, nil } +func UpdateAWPCentralizedSettings(client *client.Client, cloudProvider string, id string, req AgentlessCentralizedAccountSettings) (*http.Response, error) { + // Construct the URL path + path := fmt.Sprintf(OnboardingResourcePath, cloudProvider, id) + // Make a PATCH request with the JSON body + resp, err := client.NewRequestDoRetry("PATCH", fmt.Sprintf("%s/settings", path), nil, req, nil, shouldRetry) + if err != nil { + return nil, err + } + return resp, nil +} + func shouldRetry(resp *http.Response) bool { - return resp != nil && resp.StatusCode >= 400 && resp.StatusCode < 600 -} \ No newline at end of file + return resp != nil && resp.StatusCode >= 400 && resp.StatusCode < 600 +} From d750a1fb522183a1efafee9d678fbb63b0b1aef9 Mon Sep 17 00:00:00 2001 From: Dana Date: Wed, 28 Aug 2024 10:30:54 +0300 Subject: [PATCH 05/22] adding missing dependencies --- dome9/resource_dome9_awp_aws_onboarding.go | 2 ++ 1 file changed, 2 insertions(+) diff --git a/dome9/resource_dome9_awp_aws_onboarding.go b/dome9/resource_dome9_awp_aws_onboarding.go index 8ba99268..9201d620 100644 --- a/dome9/resource_dome9_awp_aws_onboarding.go +++ b/dome9/resource_dome9_awp_aws_onboarding.go @@ -9,6 +9,8 @@ import ( "time" "github.com/dome9/dome9-sdk-go/dome9/client" + "github.com/dome9/dome9-sdk-go/services/awp" + "github.com/dome9/dome9-sdk-go/services/awp/aws_onboarding" "github.com/dome9/dome9-sdk-go/services/cloudaccounts" "github.com/hashicorp/terraform-plugin-sdk/helper/schema" "github.com/hashicorp/terraform-plugin-sdk/helper/validation" From e16e93a78648117618a1c687b66f08405c2dc831 Mon Sep 17 00:00:00 2001 From: Dana Date: Wed, 28 Aug 2024 10:58:39 +0300 Subject: [PATCH 06/22] small change --- dome9/resource_dome9_awp_aws_onboarding.go | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/dome9/resource_dome9_awp_aws_onboarding.go b/dome9/resource_dome9_awp_aws_onboarding.go index 9201d620..d20e01a7 100644 --- a/dome9/resource_dome9_awp_aws_onboarding.go +++ b/dome9/resource_dome9_awp_aws_onboarding.go @@ -328,7 +328,7 @@ func expandAgentlessAccountSettings(d *schema.ResourceData) (*awp_onboarding.Age agentlessAccountSettings.MaxConcurrenceScansPerRegion = maxConcurrentScans } - if inAccountScannerVPC, ok := agentlessAccountSettingsMap["in_account_scanner_vpc"].(int); ok { + if inAccountScannerVPC, ok := agentlessAccountSettingsMap["in_account_scanner_vpc"].(string); ok { agentlessAccountSettings.InAccountScannerVPC = inAccountScannerVPC } From a22c6259d55ccd0124fa92897e19a4e3977235bd Mon Sep 17 00:00:00 2001 From: Dana Date: Wed, 28 Aug 2024 11:21:46 +0300 Subject: [PATCH 07/22] adjust update --- .../awp/aws_onboarding/aws_onboarding.go | 11 +++++++---- .../services/awp/onboarding_common.go | 19 ++++--------------- 2 files changed, 11 insertions(+), 19 deletions(-) diff --git a/vendor/github.com/dome9/dome9-sdk-go/services/awp/aws_onboarding/aws_onboarding.go b/vendor/github.com/dome9/dome9-sdk-go/services/awp/aws_onboarding/aws_onboarding.go index 77f34f5a..2c7c8a5f 100644 --- a/vendor/github.com/dome9/dome9-sdk-go/services/awp/aws_onboarding/aws_onboarding.go +++ b/vendor/github.com/dome9/dome9-sdk-go/services/awp/aws_onboarding/aws_onboarding.go @@ -56,11 +56,14 @@ func (service *Service) DeleteAWPOnboarding(id string, queryParams awp_onboardin } func (service *Service) UpdateAWPSettings(id string, req awp_onboarding.AgentlessAccountSettings) (*http.Response, error) { - return awp_onboarding.UpdateAWPSettings(service.Client, awp_onboarding.ProviderAWS, id, req) -} + pathPostfix := awp_onboarding.UpdatePostfix + if req.ScanMode == awp_onboarding.ScanModeInAccountHub { + pathPostfix = awp_onboarding.UpdateHubPostfix + } + + path := fmt.Sprintf(awp_onboarding.OnboardingResourcePath, awp_onboarding.ProviderAWS, id) -func (service *Service) UpdateAWPCentralizedSettings(id string, req awp_onboarding.AgentlessCentralizedAccountSettings) (*http.Response, error) { - return awp_onboarding.UpdateAWPCentralizedSettings(service.Client, awp_onboarding.ProviderAWS, id, req) + return awp_onboarding.UpdateAWPSettings(service.Client,fmt. Sprintf("%s/%s", path, pathPostfix), req) } func (service *Service) GetOnboardingData() (*AgentlessTerraformOnboardingDataResponseAws, *http.Response, error) { diff --git a/vendor/github.com/dome9/dome9-sdk-go/services/awp/onboarding_common.go b/vendor/github.com/dome9/dome9-sdk-go/services/awp/onboarding_common.go index d0a505aa..ce5bc23e 100644 --- a/vendor/github.com/dome9/dome9-sdk-go/services/awp/onboarding_common.go +++ b/vendor/github.com/dome9/dome9-sdk-go/services/awp/onboarding_common.go @@ -17,6 +17,8 @@ const ( EnablePostfix = "enable" EnableSubPostfix = "enableSubAccount" EnableHubPostfix = "enableCentralizedAccount" + UpdatePostfix = "settings" + UpdateHubPostfix = "centralizedAccountSettings" ) const ( @@ -93,22 +95,9 @@ func DeleteAWPOnboarding(client *client.Client, cloudProvider string, id string, return resp, nil } -func UpdateAWPSettings(client *client.Client, cloudProvider string, id string, req AgentlessAccountSettings) (*http.Response, error) { - // Construct the URL path - path := fmt.Sprintf(OnboardingResourcePath, cloudProvider, id) - // Make a PATCH request with the JSON body - resp, err := client.NewRequestDoRetry("PATCH", fmt.Sprintf("%s/settings", path), nil, req, nil, shouldRetry) - if err != nil { - return nil, err - } - return resp, nil -} - -func UpdateAWPCentralizedSettings(client *client.Client, cloudProvider string, id string, req AgentlessCentralizedAccountSettings) (*http.Response, error) { - // Construct the URL path - path := fmt.Sprintf(OnboardingResourcePath, cloudProvider, id) +func UpdateAWPSettings(client *client.Client, path string, req AgentlessAccountSettings) (*http.Response, error) { // Make a PATCH request with the JSON body - resp, err := client.NewRequestDoRetry("PATCH", fmt.Sprintf("%s/settings", path), nil, req, nil, shouldRetry) + resp, err := client.NewRequestDoRetry("PATCH", path, nil, req, nil, shouldRetry) if err != nil { return nil, err } From ca215d02a9b720f8a56f1022b5ac0f292a57ff82 Mon Sep 17 00:00:00 2001 From: Dana Date: Wed, 28 Aug 2024 12:17:00 +0300 Subject: [PATCH 08/22] adding scan mode to update --- dome9/resource_dome9_awp_aws_onboarding.go | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/dome9/resource_dome9_awp_aws_onboarding.go b/dome9/resource_dome9_awp_aws_onboarding.go index d20e01a7..042699ee 100644 --- a/dome9/resource_dome9_awp_aws_onboarding.go +++ b/dome9/resource_dome9_awp_aws_onboarding.go @@ -410,8 +410,11 @@ func resourceAWPAWSOnboardingUpdate(d *schema.ResourceData, meta interface{}) er if err != nil { return err } + + scanMode := d.Get("scan_mode").(string) + // Send the update request - _, err = d9Client.awpAwsOnboarding.UpdateAWPSettings(d.Id(), *newAgentlessAccountSettings) + _, err = d9Client.awpAwsOnboarding.UpdateAWPSettings(d.Id(), scanMode, *newAgentlessAccountSettings) if err != nil { return err } From 3260cb1279a64f8f2167d16a4b51d15c90d47d68 Mon Sep 17 00:00:00 2001 From: Dana Date: Wed, 28 Aug 2024 13:51:57 +0300 Subject: [PATCH 09/22] adding changes --- dome9/resource_dome9_awp_azure_onboarding.go | 4 +++- .../services/awp/aws_onboarding/aws_onboarding.go | 6 +++--- .../services/awp/azure_onboarding/azure_onboarding.go | 6 ++++-- .../dome9/dome9-sdk-go/services/awp/onboarding_common.go | 4 ---- 4 files changed, 10 insertions(+), 10 deletions(-) diff --git a/dome9/resource_dome9_awp_azure_onboarding.go b/dome9/resource_dome9_awp_azure_onboarding.go index 1d7663a1..71e476b0 100644 --- a/dome9/resource_dome9_awp_azure_onboarding.go +++ b/dome9/resource_dome9_awp_azure_onboarding.go @@ -386,7 +386,9 @@ func resourceAWPAzureOnboardingUpdate(d *schema.ResourceData, meta interface{}) return err } // Send the update request - _, err = d9Client.awpAzureOnboarding.UpdateAWPSettings(d.Id(), *newAgentlessAccountSettings) + scanMode := d.Get("scan_mode").(string) + + _, err = d9Client.awpAzureOnboarding.UpdateAWPSettings(d.Id(), scanMode, *newAgentlessAccountSettings) if err != nil { return err } diff --git a/vendor/github.com/dome9/dome9-sdk-go/services/awp/aws_onboarding/aws_onboarding.go b/vendor/github.com/dome9/dome9-sdk-go/services/awp/aws_onboarding/aws_onboarding.go index 2c7c8a5f..00ea46fd 100644 --- a/vendor/github.com/dome9/dome9-sdk-go/services/awp/aws_onboarding/aws_onboarding.go +++ b/vendor/github.com/dome9/dome9-sdk-go/services/awp/aws_onboarding/aws_onboarding.go @@ -55,15 +55,15 @@ func (service *Service) DeleteAWPOnboarding(id string, queryParams awp_onboardin return awp_onboarding.DeleteAWPOnboarding(service.Client, awp_onboarding.ProviderAWS, id, queryParams) } -func (service *Service) UpdateAWPSettings(id string, req awp_onboarding.AgentlessAccountSettings) (*http.Response, error) { +func (service *Service) UpdateAWPSettings(id string, scan_mode string, req awp_onboarding.AgentlessAccountSettings) (*http.Response, error) { pathPostfix := awp_onboarding.UpdatePostfix - if req.ScanMode == awp_onboarding.ScanModeInAccountHub { + if scan_mode == awp_onboarding.ScanModeInAccountHub { pathPostfix = awp_onboarding.UpdateHubPostfix } path := fmt.Sprintf(awp_onboarding.OnboardingResourcePath, awp_onboarding.ProviderAWS, id) - return awp_onboarding.UpdateAWPSettings(service.Client,fmt. Sprintf("%s/%s", path, pathPostfix), req) + return awp_onboarding.UpdateAWPSettings(service.Client, fmt.Sprintf("%s/%s", path, pathPostfix), req) } func (service *Service) GetOnboardingData() (*AgentlessTerraformOnboardingDataResponseAws, *http.Response, error) { diff --git a/vendor/github.com/dome9/dome9-sdk-go/services/awp/azure_onboarding/azure_onboarding.go b/vendor/github.com/dome9/dome9-sdk-go/services/awp/azure_onboarding/azure_onboarding.go index c21ac059..10114258 100644 --- a/vendor/github.com/dome9/dome9-sdk-go/services/awp/azure_onboarding/azure_onboarding.go +++ b/vendor/github.com/dome9/dome9-sdk-go/services/awp/azure_onboarding/azure_onboarding.go @@ -50,8 +50,10 @@ func (service *Service) DeleteAWPOnboarding(id string) (*http.Response, error) { return awp_onboarding.DeleteAWPOnboarding(service.Client, awp_onboarding.ProviderAzure, id, awp_onboarding.DeleteOptions{}) } -func (service *Service) UpdateAWPSettings(id string, req awp_onboarding.AgentlessAccountSettings) (*http.Response, error) { - return awp_onboarding.UpdateAWPSettings(service.Client, awp_onboarding.ProviderAzure, id, req) +func (service *Service) UpdateAWPSettings(id string, scan_mode string, req awp_onboarding.AgentlessAccountSettings) (*http.Response, error) { + pathPostfix := awp_onboarding.UpdatePostfix + path := fmt.Sprintf(awp_onboarding.OnboardingResourcePath, awp_onboarding.ProviderAWS, id) + return awp_onboarding.UpdateAWPSettings(service.Client, fmt.Sprintf("%s/%s", path, pathPostfix), req) } func (service *Service) GetOnboardingData(id string, req GetAWPOnboardingDataRequestAzure) (*AgentlessTerraformOnboardingDataResponseAzure, *http.Response, error) { diff --git a/vendor/github.com/dome9/dome9-sdk-go/services/awp/onboarding_common.go b/vendor/github.com/dome9/dome9-sdk-go/services/awp/onboarding_common.go index ce5bc23e..2c449dbf 100644 --- a/vendor/github.com/dome9/dome9-sdk-go/services/awp/onboarding_common.go +++ b/vendor/github.com/dome9/dome9-sdk-go/services/awp/onboarding_common.go @@ -43,10 +43,6 @@ type AgentlessAccountSettings struct { CustomTags map[string]string `json:"customTags"` } -type AgentlessCentralizedAccountSettings struct { - InAccountScannerVPC string `json:"inAccountScannerVPC"` -} - type AccountIssues struct { Regions map[string]interface{} `json:"regions"` Account *map[string]interface{} `json:"account"` From 0ca64e21dfd9ad220826d09a4f3e12e8a5befe06 Mon Sep 17 00:00:00 2001 From: Dana Date: Wed, 28 Aug 2024 17:28:32 +0300 Subject: [PATCH 10/22] adding missing params --- dome9/common/testing/variable/variable.go | 2 ++ dome9/resource_dome9_awp_aws_onboarding_test.go | 1 + 2 files changed, 3 insertions(+) diff --git a/dome9/common/testing/variable/variable.go b/dome9/common/testing/variable/variable.go index 2f534ca7..a143eaee 100644 --- a/dome9/common/testing/variable/variable.go +++ b/dome9/common/testing/variable/variable.go @@ -269,6 +269,8 @@ const ( ScanMachineIntervalInHoursUpdate = "11" MaxConcurrentScansPerRegion = "4" MaxConcurrentScansPerRegionUpdate = "8" + InAccountScannerVPC = "ManagedByAWP" + InAccountScannerVPCUpdate = "ManagedByCustomer" CustomTags = `{ tag1 = "value1" tag2 = "value2" diff --git a/dome9/resource_dome9_awp_aws_onboarding_test.go b/dome9/resource_dome9_awp_aws_onboarding_test.go index a24e3cff..cbed7e9e 100644 --- a/dome9/resource_dome9_awp_aws_onboarding_test.go +++ b/dome9/resource_dome9_awp_aws_onboarding_test.go @@ -3,6 +3,7 @@ package dome9 import ( "encoding/json" "fmt" + "github.com/dome9/dome9-sdk-go/services/awp" "github.com/hashicorp/terraform-plugin-sdk/terraform" "github.com/terraform-providers/terraform-provider-dome9/dome9/common/testing/environmentvariable" "github.com/terraform-providers/terraform-provider-dome9/dome9/common/testing/variable" From 224881424cfafc2f7699540b4ed99b236127ac23 Mon Sep 17 00:00:00 2001 From: Dana Date: Wed, 28 Aug 2024 17:32:54 +0300 Subject: [PATCH 11/22] fix test --- dome9/resource_dome9_awp_aws_onboarding_test.go | 1 + 1 file changed, 1 insertion(+) diff --git a/dome9/resource_dome9_awp_aws_onboarding_test.go b/dome9/resource_dome9_awp_aws_onboarding_test.go index cbed7e9e..1260efd4 100644 --- a/dome9/resource_dome9_awp_aws_onboarding_test.go +++ b/dome9/resource_dome9_awp_aws_onboarding_test.go @@ -156,6 +156,7 @@ resource "%s" "%s" { disabled_regions = %s scan_machine_interval_in_hours = "%s" max_concurrent_scans_per_region = "%s" + in_account_scanner_vpc = "%s" custom_tags = %s } } From edccb436a45071d1e17db63ab426a26ca97113f9 Mon Sep 17 00:00:00 2001 From: Dana Date: Thu, 29 Aug 2024 09:42:36 +0300 Subject: [PATCH 12/22] adding ref --- dome9/resource_dome9_awp_aws_onboarding.go | 7 ++++++- 1 file changed, 6 insertions(+), 1 deletion(-) diff --git a/dome9/resource_dome9_awp_aws_onboarding.go b/dome9/resource_dome9_awp_aws_onboarding.go index 042699ee..cef8a92e 100644 --- a/dome9/resource_dome9_awp_aws_onboarding.go +++ b/dome9/resource_dome9_awp_aws_onboarding.go @@ -10,7 +10,7 @@ import ( "github.com/dome9/dome9-sdk-go/dome9/client" "github.com/dome9/dome9-sdk-go/services/awp" - "github.com/dome9/dome9-sdk-go/services/awp/aws_onboarding" + "github.com/dome9/dome9-sdk-go/services/awp/aws_onboarding" "github.com/dome9/dome9-sdk-go/services/cloudaccounts" "github.com/hashicorp/terraform-plugin-sdk/helper/schema" "github.com/hashicorp/terraform-plugin-sdk/helper/validation" @@ -81,6 +81,11 @@ func resourceAwpAwsOnboarding() *schema.Resource { Optional: true, Default: 20, }, + "in_account_scanner_vpc": { + Type: schema.TypeString, + Optional: true, + Default: "ManagedByAWP", + }, "custom_tags": { Type: schema.TypeMap, Optional: true, From 69cd5843d0a5f02932f8abf7adf6895c86300c18 Mon Sep 17 00:00:00 2001 From: Dana Date: Thu, 29 Aug 2024 10:59:15 +0300 Subject: [PATCH 13/22] small changes --- dome9/resource_dome9_awp_aws_onboarding.go | 2 +- examples/awp/aws_onboarding/main.tf | 1 + 2 files changed, 2 insertions(+), 1 deletion(-) diff --git a/dome9/resource_dome9_awp_aws_onboarding.go b/dome9/resource_dome9_awp_aws_onboarding.go index cef8a92e..986bd2a1 100644 --- a/dome9/resource_dome9_awp_aws_onboarding.go +++ b/dome9/resource_dome9_awp_aws_onboarding.go @@ -198,7 +198,7 @@ func resourceAWPAWSOnboardingCreate(d *schema.ResourceData, meta interface{}) er func checkCentralized(d *schema.ResourceData, meta interface{}) (string, error) { scanMode := d.Get("scan_mode").(string) - if scanMode == "inAccountHub" || scanMode == "inAccountSub" { + if scanMode == "inAccountSub" { if _, ok := d.GetOk("agentless_account_settings"); ok { agentlessAccountSettingsList := d.Get("agentless_account_settings").([]interface{}) if len(agentlessAccountSettingsList) < 1 { diff --git a/examples/awp/aws_onboarding/main.tf b/examples/awp/aws_onboarding/main.tf index 75e76685..9355ed73 100644 --- a/examples/awp/aws_onboarding/main.tf +++ b/examples/awp/aws_onboarding/main.tf @@ -65,6 +65,7 @@ module "terraform-dome9-awp-aws" { # scan_machine_interval_in_hours = 24 # disabled_regions = ["ap-northeast-1", "ap-northeast-2", ...] # List of regions to disable # max_concurrent_scans_per_region = 20 + # in_account_scanner_vpc = "ManagedByAWP" # custom_tags = { # tag1 = "value1" # tag2 = "value2" From 36b4a892fe1fddf2d169d229ec914c12802bca04 Mon Sep 17 00:00:00 2001 From: Dana Date: Sun, 1 Sep 2024 09:41:17 +0300 Subject: [PATCH 14/22] remove account issues --- dome9/data_source_dome9_awp_aws_onboarding.go | 6 +----- dome9/data_source_dome9_awp_azure_onboarding.go | 6 +----- dome9/resource_dome9_awp_aws_onboarding.go | 15 --------------- dome9/resource_dome9_awp_azure_onboarding.go | 15 --------------- 4 files changed, 2 insertions(+), 40 deletions(-) diff --git a/dome9/data_source_dome9_awp_aws_onboarding.go b/dome9/data_source_dome9_awp_aws_onboarding.go index 2dd2bc0b..38efd999 100644 --- a/dome9/data_source_dome9_awp_aws_onboarding.go +++ b/dome9/data_source_dome9_awp_aws_onboarding.go @@ -133,10 +133,6 @@ func dataSourceAwpAwsOnboardingRead(d *schema.ResourceData, meta interface{}) er return err } } - if resp.AccountIssues != nil { - if err := d.Set("account_issues", flattenAccountIssues(resp.AccountIssues)); err != nil { - return err - } - } + return nil } diff --git a/dome9/data_source_dome9_awp_azure_onboarding.go b/dome9/data_source_dome9_awp_azure_onboarding.go index b8660af4..a70690f7 100644 --- a/dome9/data_source_dome9_awp_azure_onboarding.go +++ b/dome9/data_source_dome9_awp_azure_onboarding.go @@ -132,10 +132,6 @@ func dataSourceAwpAzureOnboardingRead(d *schema.ResourceData, meta interface{}) return err } } - if resp.AccountIssues != nil { - if err := d.Set("account_issues", flattenAccountIssuesAzure(resp.AccountIssues)); err != nil { - return err - } - } + return nil } diff --git a/dome9/resource_dome9_awp_aws_onboarding.go b/dome9/resource_dome9_awp_aws_onboarding.go index ba22c960..991bf8c8 100644 --- a/dome9/resource_dome9_awp_aws_onboarding.go +++ b/dome9/resource_dome9_awp_aws_onboarding.go @@ -248,12 +248,6 @@ func resourceAWPAWSOnboardingRead(d *schema.ResourceData, meta interface{}) erro return err } - if resp.AccountIssues != nil { - if err := d.Set("account_issues", flattenAccountIssues(resp.AccountIssues)); err != nil { - return err - } - } - return nil } @@ -364,15 +358,6 @@ func flattenAgentlessAccountSettings(settings *awp_onboarding.AgentlessAccountSe return []interface{}{m} } -func flattenAccountIssues(accountIssues *awp_onboarding.AccountIssues) []interface{} { - m := map[string]interface{}{ - "regions": accountIssues.Regions, - "account": accountIssues.Account, - } - - return []interface{}{m} -} - func resourceAWPAWSOnboardingUpdate(d *schema.ResourceData, meta interface{}) error { d9Client := meta.(*Client) log.Println("An update occurred") diff --git a/dome9/resource_dome9_awp_azure_onboarding.go b/dome9/resource_dome9_awp_azure_onboarding.go index 1d7663a1..81302f57 100644 --- a/dome9/resource_dome9_awp_azure_onboarding.go +++ b/dome9/resource_dome9_awp_azure_onboarding.go @@ -242,12 +242,6 @@ func resourceAWPAzureOnboardingRead(d *schema.ResourceData, meta interface{}) er return err } - if resp.AccountIssues != nil { - if err := d.Set("account_issues", flattenAccountIssuesAzure(resp.AccountIssues)); err != nil { - return err - } - } - return nil } @@ -358,15 +352,6 @@ func flattenAgentlessAccountSettingsAzure(settings *awp_onboarding.AgentlessAcco return []interface{}{m} } -func flattenAccountIssuesAzure(accountIssues *awp_onboarding.AccountIssues) []interface{} { - m := map[string]interface{}{ - "regions": accountIssues.Regions, - "account": accountIssues.Account, - } - - return []interface{}{m} -} - func resourceAWPAzureOnboardingUpdate(d *schema.ResourceData, meta interface{}) error { d9Client := meta.(*Client) log.Println("An update occurred") From e0fb1c0ca87e4c0f28f756de3b1cc03cf94bc9d1 Mon Sep 17 00:00:00 2001 From: Dana Date: Sun, 1 Sep 2024 10:43:39 +0300 Subject: [PATCH 15/22] remove account issues --- dome9/data_source_dome9_awp_aws_onboarding.go | 24 --------- .../data_source_dome9_awp_azure_onboarding.go | 24 --------- dome9/resource_dome9_awp_aws_onboarding.go | 24 --------- dome9/resource_dome9_awp_azure_onboarding.go | 49 +++++-------------- .../docs/d/awp_aws_onboarding.html.markdown | 1 - .../docs/d/awp_azure_onboarding.html.markdown | 1 - .../docs/r/awp_aws_onboarding.html.markdown | 1 - .../docs/r/awp_azure_onboarding.html.markdown | 1 - 8 files changed, 12 insertions(+), 113 deletions(-) diff --git a/dome9/data_source_dome9_awp_aws_onboarding.go b/dome9/data_source_dome9_awp_aws_onboarding.go index 38efd999..ed3eb898 100644 --- a/dome9/data_source_dome9_awp_aws_onboarding.go +++ b/dome9/data_source_dome9_awp_aws_onboarding.go @@ -54,30 +54,6 @@ func dataSourceAwpAwsOnboarding() *schema.Resource { Computed: true, Elem: &schema.Schema{Type: schema.TypeString}, }, - "account_issues": { - Type: schema.TypeList, - Computed: true, - Elem: &schema.Resource{ - Schema: map[string]*schema.Schema{ - "regions": { - Type: schema.TypeMap, - Optional: true, - }, - "account": { - Type: schema.TypeMap, - Optional: true, - Elem: &schema.Resource{ - Schema: map[string]*schema.Schema{ - "issue_type": { - Type: schema.TypeString, - Optional: true, - }, - }, - }, - }, - }, - }, - }, "cloud_account_id": { Type: schema.TypeString, Computed: true, diff --git a/dome9/data_source_dome9_awp_azure_onboarding.go b/dome9/data_source_dome9_awp_azure_onboarding.go index a70690f7..05790629 100644 --- a/dome9/data_source_dome9_awp_azure_onboarding.go +++ b/dome9/data_source_dome9_awp_azure_onboarding.go @@ -58,30 +58,6 @@ func dataSourceAwpAzureOnboarding() *schema.Resource { Computed: true, Elem: &schema.Schema{Type: schema.TypeString}, }, - "account_issues": { - Type: schema.TypeList, - Computed: true, - Elem: &schema.Resource{ - Schema: map[string]*schema.Schema{ - "regions": { - Type: schema.TypeMap, - Optional: true, - }, - "account": { - Type: schema.TypeMap, - Optional: true, - Elem: &schema.Resource{ - Schema: map[string]*schema.Schema{ - "issue_type": { - Type: schema.TypeString, - Optional: true, - }, - }, - }, - }, - }, - }, - }, "cloud_account_id": { Type: schema.TypeString, Computed: true, diff --git a/dome9/resource_dome9_awp_aws_onboarding.go b/dome9/resource_dome9_awp_aws_onboarding.go index 991bf8c8..84fafe1c 100644 --- a/dome9/resource_dome9_awp_aws_onboarding.go +++ b/dome9/resource_dome9_awp_aws_onboarding.go @@ -96,30 +96,6 @@ func resourceAwpAwsOnboarding() *schema.Resource { Computed: true, Elem: &schema.Schema{Type: schema.TypeString}, }, - "account_issues": { - Type: schema.TypeList, - Computed: true, - Elem: &schema.Resource{ - Schema: map[string]*schema.Schema{ - "regions": { - Type: schema.TypeMap, - Optional: true, - }, - "account": { - Type: schema.TypeMap, - Optional: true, - Elem: &schema.Resource{ - Schema: map[string]*schema.Schema{ - "issue_type": { - Type: schema.TypeString, - Optional: true, - }, - }, - }, - }, - }, - }, - }, "cloud_account_id": { Type: schema.TypeString, Computed: true, diff --git a/dome9/resource_dome9_awp_azure_onboarding.go b/dome9/resource_dome9_awp_azure_onboarding.go index 81302f57..4d3a9df6 100644 --- a/dome9/resource_dome9_awp_azure_onboarding.go +++ b/dome9/resource_dome9_awp_azure_onboarding.go @@ -8,12 +8,12 @@ import ( "strings" "github.com/dome9/dome9-sdk-go/dome9/client" - "github.com/dome9/dome9-sdk-go/services/awp/azure_onboarding" "github.com/dome9/dome9-sdk-go/services/awp" + "github.com/dome9/dome9-sdk-go/services/awp/azure_onboarding" + "github.com/dome9/dome9-sdk-go/services/cloudaccounts" "github.com/hashicorp/terraform-plugin-sdk/helper/schema" "github.com/hashicorp/terraform-plugin-sdk/helper/validation" "github.com/terraform-providers/terraform-provider-dome9/dome9/common/providerconst" - "github.com/dome9/dome9-sdk-go/services/cloudaccounts" ) func resourceAwpAzureOnboarding() *schema.Resource { @@ -45,12 +45,12 @@ func resourceAwpAzureOnboarding() *schema.Resource { "centralized_cloud_account_id": { Type: schema.TypeString, Optional: true, - Default: nil, + Default: nil, }, - "management_group_id":{ + "management_group_id": { Type: schema.TypeString, Optional: true, - Default: nil, + Default: nil, }, "agentless_account_settings": { Type: schema.TypeList, @@ -69,7 +69,6 @@ func resourceAwpAzureOnboarding() *schema.Resource { Type: schema.TypeBool, Optional: true, Default: false, - }, "scan_machine_interval_in_hours": { Type: schema.TypeInt, @@ -96,30 +95,6 @@ func resourceAwpAzureOnboarding() *schema.Resource { Computed: true, Elem: &schema.Schema{Type: schema.TypeString}, }, - "account_issues": { - Type: schema.TypeList, - Computed: true, - Elem: &schema.Resource{ - Schema: map[string]*schema.Schema{ - "regions": { - Type: schema.TypeMap, - Optional: true, - }, - "account": { - Type: schema.TypeMap, - Optional: true, - Elem: &schema.Resource{ - Schema: map[string]*schema.Schema{ - "issue_type": { - Type: schema.TypeString, - Optional: true, - }, - }, - }, - }, - }, - }, - }, "cloud_account_id": { Type: schema.TypeString, Computed: true, @@ -177,17 +152,17 @@ func expandAWPOnboardingRequestAzure(d *schema.ResourceData, meta interface{}) ( return awp_azure_onboarding.CreateAWPOnboardingRequestAzure{}, err } return awp_azure_onboarding.CreateAWPOnboardingRequestAzure{ - ScanMode: d.Get("scan_mode").(string), - IsTerraform: true, - ManagementGroupId: d.Get("management_group_id").(string), - AgentlessAccountSettings: agentlessAccountSettings, - CentralizedCloudAccountId: cloudGuardHubAccountID, + ScanMode: d.Get("scan_mode").(string), + IsTerraform: true, + ManagementGroupId: d.Get("management_group_id").(string), + AgentlessAccountSettings: agentlessAccountSettings, + CentralizedCloudAccountId: cloudGuardHubAccountID, }, nil } func checkCentralizedAzure(d *schema.ResourceData, meta interface{}) (string, error) { scanMode := d.Get("scan_mode").(string) - if scanMode == "inAccountHub"{ + if scanMode == "inAccountHub" { if _, ok := d.GetOk("agentless_account_settings"); ok { agentlessAccountSettingsList := d.Get("agentless_account_settings").([]interface{}) if len(agentlessAccountSettingsList) < 1 { @@ -203,7 +178,7 @@ func checkCentralizedAzure(d *schema.ResourceData, meta interface{}) (string, er errorMsg := fmt.Sprintf("centralized_cloud_account_id is required when scan_mode is inAccountSub, got '%s'", hubExternalAccountId) return "", errors.New(errorMsg) } - + getCloudAccountQueryParams := cloudaccounts.QueryParameters{ID: hubExternalAccountId} cloudAccountresp, _, err := d9client.cloudaccountAzure.Get(&getCloudAccountQueryParams) if err != nil { diff --git a/website/docs/d/awp_aws_onboarding.html.markdown b/website/docs/d/awp_aws_onboarding.html.markdown index eb99329b..90c99db1 100644 --- a/website/docs/d/awp_aws_onboarding.html.markdown +++ b/website/docs/d/awp_aws_onboarding.html.markdown @@ -33,7 +33,6 @@ In addition to all arguments above, the following attributes exported: * `scan_mode` - The scan mode of the onboarding process * `agentless_account_settings` - The settings for the agentless account that the awp scanner will be configured with. * `missing_awp_private_network_regions` - The regions missing AWP private network. -* `account_issues` - The issues related to the awp account. * `cloud_account_id` - The CloudGuard account ID. * `agentless_protection_enabled` - Whether agentless protection is enabled or not. * `cloud_provider` - The cloud provider for the onboarding process. diff --git a/website/docs/d/awp_azure_onboarding.html.markdown b/website/docs/d/awp_azure_onboarding.html.markdown index 08836e3a..5f549613 100644 --- a/website/docs/d/awp_azure_onboarding.html.markdown +++ b/website/docs/d/awp_azure_onboarding.html.markdown @@ -33,7 +33,6 @@ In addition to all arguments above, the following attributes exported: * `scan_mode` - The scan mode of the onboarding process * `agentless_account_settings` - The settings for the agentless account that the awp scanner will be configured with. * `missing_awp_private_network_regions` - The regions missing AWP private network. -* `account_issues` - The issues related to the awp account. * `cloud_account_id` - The CloudGuard account ID. * `agentless_protection_enabled` - Whether agentless protection is enabled or not. * `cloud_provider` - The cloud provider for the onboarding process. diff --git a/website/docs/r/awp_aws_onboarding.html.markdown b/website/docs/r/awp_aws_onboarding.html.markdown index ef58436e..982efd5f 100644 --- a/website/docs/r/awp_aws_onboarding.html.markdown +++ b/website/docs/r/awp_aws_onboarding.html.markdown @@ -116,7 +116,6 @@ The following arguments are supported: ## Attributes Reference * `missing_awp_private_network_regions` - The missing AWP private network regions. -* `account_issues` - The account issues. * `cloud_account_id` - The cloud guard account id. * `agentless_protection_enabled` - Whether agentless protection is enabled. * `cloud_provider` - The cloud provider. diff --git a/website/docs/r/awp_azure_onboarding.html.markdown b/website/docs/r/awp_azure_onboarding.html.markdown index 71623a21..6b4d789b 100644 --- a/website/docs/r/awp_azure_onboarding.html.markdown +++ b/website/docs/r/awp_azure_onboarding.html.markdown @@ -110,7 +110,6 @@ The following arguments are supported: ## Attributes Reference * `missing_awp_private_network_regions` - The missing AWP private network regions. -* `account_issues` - The account issues. * `cloud_account_id` - The cloud guard account id. * `agentless_protection_enabled` - Whether agentless protection is enabled. * `cloud_provider` - The cloud provider. From 88f633a7db201139d462cf46f0ae07e18855e035 Mon Sep 17 00:00:00 2001 From: Dana Date: Sun, 1 Sep 2024 10:58:33 +0300 Subject: [PATCH 16/22] small change --- .../dome9/dome9-sdk-go/services/awp/onboarding_common.go | 6 ------ 1 file changed, 6 deletions(-) diff --git a/vendor/github.com/dome9/dome9-sdk-go/services/awp/onboarding_common.go b/vendor/github.com/dome9/dome9-sdk-go/services/awp/onboarding_common.go index 9053b0d6..7f2a547e 100644 --- a/vendor/github.com/dome9/dome9-sdk-go/services/awp/onboarding_common.go +++ b/vendor/github.com/dome9/dome9-sdk-go/services/awp/onboarding_common.go @@ -40,15 +40,9 @@ type AgentlessAccountSettings struct { CustomTags map[string]string `json:"customTags"` } -type AccountIssues struct { - Regions map[string]interface{} `json:"regions"` - Account *map[string]interface{} `json:"account"` -} - type GetAWPOnboardingResponse struct { AgentlessAccountSettings *AgentlessAccountSettings `json:"agentlessAccountSettings"` MissingAwpPrivateNetworkRegions *[]string `json:"missingAwpPrivateNetworkRegions"` - AccountIssues *AccountIssues `json:"accountIssues"` CloudAccountId string `json:"cloudAccountId"` AgentlessProtectionEnabled bool `json:"agentlessProtectionEnabled"` ScanMode string `json:"scanMode"` From 4fc7a8b04aed8eed55a4b031dd48fbf494647620 Mon Sep 17 00:00:00 2001 From: Dana Date: Sun, 1 Sep 2024 11:48:32 +0300 Subject: [PATCH 17/22] small change --- .../dome9/dome9-sdk-go/services/awp/onboarding_common.go | 6 ------ 1 file changed, 6 deletions(-) diff --git a/vendor/github.com/dome9/dome9-sdk-go/services/awp/onboarding_common.go b/vendor/github.com/dome9/dome9-sdk-go/services/awp/onboarding_common.go index 2c449dbf..4f5fe689 100644 --- a/vendor/github.com/dome9/dome9-sdk-go/services/awp/onboarding_common.go +++ b/vendor/github.com/dome9/dome9-sdk-go/services/awp/onboarding_common.go @@ -43,15 +43,9 @@ type AgentlessAccountSettings struct { CustomTags map[string]string `json:"customTags"` } -type AccountIssues struct { - Regions map[string]interface{} `json:"regions"` - Account *map[string]interface{} `json:"account"` -} - type GetAWPOnboardingResponse struct { AgentlessAccountSettings *AgentlessAccountSettings `json:"agentlessAccountSettings"` MissingAwpPrivateNetworkRegions *[]string `json:"missingAwpPrivateNetworkRegions"` - AccountIssues *AccountIssues `json:"accountIssues"` CloudAccountId string `json:"cloudAccountId"` AgentlessProtectionEnabled bool `json:"agentlessProtectionEnabled"` ScanMode string `json:"scanMode"` From 23d78bfe0f66c8f779ad328e30c88530acb4baed Mon Sep 17 00:00:00 2001 From: Dana Date: Mon, 2 Sep 2024 11:08:25 +0300 Subject: [PATCH 18/22] upgrade sdk version --- go.mod | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/go.mod b/go.mod index de47bcca..f0c3fce7 100644 --- a/go.mod +++ b/go.mod @@ -3,7 +3,7 @@ module github.com/terraform-providers/terraform-provider-dome9 go 1.19 require ( - github.com/dome9/dome9-sdk-go v1.23.6 + github.com/dome9/dome9-sdk-go v1.23.7 github.com/google/uuid v1.1.2 github.com/hashicorp/terraform-plugin-sdk v1.17.2 ) From 6c8bdef81efe63230b87bea23aecaead6c47ad56 Mon Sep 17 00:00:00 2001 From: Dana Date: Mon, 2 Sep 2024 14:54:29 +0300 Subject: [PATCH 19/22] adding support for azure custom vpc --- .../data_source_dome9_awp_azure_onboarding.go | 5 +++ dome9/resource_dome9_awp_aws_onboarding.go | 1 + dome9/resource_dome9_awp_azure_onboarding.go | 43 ++++++++++--------- ...esource_dome9_awp_azure_onboarding_test.go | 2 + examples/awp/azure_onboarding/main.tf | 1 + .../awp/azure_onboarding/azure_onboarding.go | 2 +- 6 files changed, 32 insertions(+), 22 deletions(-) diff --git a/dome9/data_source_dome9_awp_azure_onboarding.go b/dome9/data_source_dome9_awp_azure_onboarding.go index a70690f7..68bf58d7 100644 --- a/dome9/data_source_dome9_awp_azure_onboarding.go +++ b/dome9/data_source_dome9_awp_azure_onboarding.go @@ -43,6 +43,11 @@ func dataSourceAwpAzureOnboarding() *schema.Resource { Type: schema.TypeInt, Computed: true, }, + "in_account_scanner_vpc": { + Type: schema.TypeString, + Optional: true, + Default: "ManagedByAWP", + }, "custom_tags": { Type: schema.TypeMap, Computed: true, diff --git a/dome9/resource_dome9_awp_aws_onboarding.go b/dome9/resource_dome9_awp_aws_onboarding.go index fea56706..9cb34e8c 100644 --- a/dome9/resource_dome9_awp_aws_onboarding.go +++ b/dome9/resource_dome9_awp_aws_onboarding.go @@ -363,6 +363,7 @@ func flattenAgentlessAccountSettings(settings *awp_onboarding.AgentlessAccountSe "disabled_regions": settings.DisabledRegions, "scan_machine_interval_in_hours": settings.ScanMachineIntervalInHours, "max_concurrent_scans_per_region": settings.MaxConcurrenceScansPerRegion, + "in_account_scanner_vpc": settings.InAccountScannerVPC, "custom_tags": settings.CustomTags, } return []interface{}{m} diff --git a/dome9/resource_dome9_awp_azure_onboarding.go b/dome9/resource_dome9_awp_azure_onboarding.go index 95aca093..069df94e 100644 --- a/dome9/resource_dome9_awp_azure_onboarding.go +++ b/dome9/resource_dome9_awp_azure_onboarding.go @@ -8,12 +8,12 @@ import ( "strings" "github.com/dome9/dome9-sdk-go/dome9/client" - "github.com/dome9/dome9-sdk-go/services/awp/azure_onboarding" "github.com/dome9/dome9-sdk-go/services/awp" + "github.com/dome9/dome9-sdk-go/services/awp/azure_onboarding" + "github.com/dome9/dome9-sdk-go/services/cloudaccounts" "github.com/hashicorp/terraform-plugin-sdk/helper/schema" "github.com/hashicorp/terraform-plugin-sdk/helper/validation" "github.com/terraform-providers/terraform-provider-dome9/dome9/common/providerconst" - "github.com/dome9/dome9-sdk-go/services/cloudaccounts" ) func resourceAwpAzureOnboarding() *schema.Resource { @@ -45,12 +45,12 @@ func resourceAwpAzureOnboarding() *schema.Resource { "centralized_cloud_account_id": { Type: schema.TypeString, Optional: true, - Default: nil, + Default: nil, }, - "management_group_id":{ + "management_group_id": { Type: schema.TypeString, Optional: true, - Default: nil, + Default: nil, }, "agentless_account_settings": { Type: schema.TypeList, @@ -69,7 +69,6 @@ func resourceAwpAzureOnboarding() *schema.Resource { Type: schema.TypeBool, Optional: true, Default: false, - }, "scan_machine_interval_in_hours": { Type: schema.TypeInt, @@ -81,6 +80,11 @@ func resourceAwpAzureOnboarding() *schema.Resource { Optional: true, Default: 20, }, + "in_account_scanner_vpc": { + Type: schema.TypeString, + Optional: true, + Default: "ManagedByAWP", + }, "custom_tags": { Type: schema.TypeMap, Optional: true, @@ -177,25 +181,16 @@ func expandAWPOnboardingRequestAzure(d *schema.ResourceData, meta interface{}) ( return awp_azure_onboarding.CreateAWPOnboardingRequestAzure{}, err } return awp_azure_onboarding.CreateAWPOnboardingRequestAzure{ - ScanMode: d.Get("scan_mode").(string), - IsTerraform: true, - ManagementGroupId: d.Get("management_group_id").(string), - AgentlessAccountSettings: agentlessAccountSettings, - CentralizedCloudAccountId: cloudGuardHubAccountID, + ScanMode: d.Get("scan_mode").(string), + IsTerraform: true, + ManagementGroupId: d.Get("management_group_id").(string), + AgentlessAccountSettings: agentlessAccountSettings, + CentralizedCloudAccountId: cloudGuardHubAccountID, }, nil } func checkCentralizedAzure(d *schema.ResourceData, meta interface{}) (string, error) { scanMode := d.Get("scan_mode").(string) - if scanMode == "inAccountHub"{ - if _, ok := d.GetOk("agentless_account_settings"); ok { - agentlessAccountSettingsList := d.Get("agentless_account_settings").([]interface{}) - if len(agentlessAccountSettingsList) < 1 { - errorMsg := fmt.Sprintf("currently account settings not supported for centralized onboarding (%s)", scanMode) - return "", errors.New(errorMsg) - } - } - } if scanMode == "inAccountSub" { d9client := meta.(*Client) hubExternalAccountId, exist := d.Get("centralized_cloud_account_id").(string) @@ -203,7 +198,7 @@ func checkCentralizedAzure(d *schema.ResourceData, meta interface{}) (string, er errorMsg := fmt.Sprintf("centralized_cloud_account_id is required when scan_mode is inAccountSub, got '%s'", hubExternalAccountId) return "", errors.New(errorMsg) } - + getCloudAccountQueryParams := cloudaccounts.QueryParameters{ID: hubExternalAccountId} cloudAccountresp, _, err := d9client.cloudaccountAzure.Get(&getCloudAccountQueryParams) if err != nil { @@ -278,6 +273,7 @@ func expandAgentlessAccountSettingsAzure(d *schema.ResourceData) (*awp_onboardin SkipFunctionAppsScan: false, CustomTags: make(map[string]string), ScanMachineIntervalInHours: scanMachineIntervalInHours, + InAccountScannerVPC: providerconst.DefaultInAccountScannerVPCMode, MaxConcurrenceScansPerRegion: providerconst.DefaultMaxConcurrentScansPerRegion, } @@ -310,6 +306,10 @@ func expandAgentlessAccountSettingsAzure(d *schema.ResourceData) (*awp_onboardin agentlessAccountSettings.MaxConcurrenceScansPerRegion = maxConcurrentScans } + if inAccountScannerVPC, ok := agentlessAccountSettingsMap["in_account_scanner_vpc"].(string); ok { + agentlessAccountSettings.InAccountScannerVPC = inAccountScannerVPC + } + if customTagsInterface, ok := agentlessAccountSettingsMap["custom_tags"].(map[string]interface{}); ok { customTags := make(map[string]string) for k, v := range customTagsInterface { @@ -347,6 +347,7 @@ func flattenAgentlessAccountSettingsAzure(settings *awp_onboarding.AgentlessAcco "skip_function_apps_scan": settings.SkipFunctionAppsScan, "scan_machine_interval_in_hours": settings.ScanMachineIntervalInHours, "max_concurrent_scans_per_region": settings.MaxConcurrenceScansPerRegion, + "in_account_scanner_vpc": settings.InAccountScannerVPC, "custom_tags": settings.CustomTags, } return []interface{}{m} diff --git a/dome9/resource_dome9_awp_azure_onboarding_test.go b/dome9/resource_dome9_awp_azure_onboarding_test.go index cd725ed2..263b719b 100644 --- a/dome9/resource_dome9_awp_azure_onboarding_test.go +++ b/dome9/resource_dome9_awp_azure_onboarding_test.go @@ -41,6 +41,7 @@ func TestAccResourceAWPAzureOnboardingBasic(t *testing.T) { resource.TestCheckResourceAttr(resourceTypeAndName, "agentless_account_settings.0.disabled_regions.1", disabledRegion2), resource.TestCheckResourceAttr(resourceTypeAndName, "agentless_account_settings.0.scan_machine_interval_in_hours", variable.ScanMachineIntervalInHours), resource.TestCheckResourceAttr(resourceTypeAndName, "agentless_account_settings.0.max_concurrent_scans_per_region", variable.MaxConcurrentScansPerRegion), + resource.TestCheckResourceAttr(resourceTypeAndName, "agentless_account_settings.0.in_account_scanner_vpc", variable.InAccountScannerVPC), resource.TestCheckResourceAttr(resourceTypeAndName, "agentless_account_settings.0.custom_tags.%", "2"), resource.TestCheckResourceAttrSet(resourceTypeAndName, "id"), resource.TestCheckResourceAttr(resourceTypeAndName, "cloud_provider", "azure"), @@ -59,6 +60,7 @@ func TestAccResourceAWPAzureOnboardingBasic(t *testing.T) { resource.TestCheckResourceAttr(resourceTypeAndName, "agentless_account_settings.0.disabled_regions.3", disabledRegionUpdate4), resource.TestCheckResourceAttr(resourceTypeAndName, "agentless_account_settings.0.scan_machine_interval_in_hours", variable.ScanMachineIntervalInHoursUpdate), resource.TestCheckResourceAttr(resourceTypeAndName, "agentless_account_settings.0.max_concurrent_scans_per_region", variable.MaxConcurrentScansPerRegionUpdate), + resource.TestCheckResourceAttr(resourceTypeAndName, "agentless_account_settings.0.in_account_scanner_vpc", variable.InAccountScannerVPCUpdate), resource.TestCheckResourceAttr(resourceTypeAndName, "agentless_account_settings.0.custom_tags.%", "3"), resource.TestCheckResourceAttrSet(resourceTypeAndName, "id"), resource.TestCheckResourceAttr(resourceTypeAndName, "cloud_provider", "azure"), diff --git a/examples/awp/azure_onboarding/main.tf b/examples/awp/azure_onboarding/main.tf index 23d7d474..5beb91e2 100644 --- a/examples/awp/azure_onboarding/main.tf +++ b/examples/awp/azure_onboarding/main.tf @@ -45,6 +45,7 @@ module "terraform-dome9-awp-azure" { # skip_function_apps_scan = false # disabled_regions = ["eastus", "westus", ...] # List of regions to disable # max_concurrent_scans_per_region = 20 + # in_account_scanner_vpc = "ManagedByAWP" # custom_tags = { # tag1 = "value1" # tag2 = "value2" diff --git a/vendor/github.com/dome9/dome9-sdk-go/services/awp/azure_onboarding/azure_onboarding.go b/vendor/github.com/dome9/dome9-sdk-go/services/awp/azure_onboarding/azure_onboarding.go index 10114258..0ef8280f 100644 --- a/vendor/github.com/dome9/dome9-sdk-go/services/awp/azure_onboarding/azure_onboarding.go +++ b/vendor/github.com/dome9/dome9-sdk-go/services/awp/azure_onboarding/azure_onboarding.go @@ -52,7 +52,7 @@ func (service *Service) DeleteAWPOnboarding(id string) (*http.Response, error) { func (service *Service) UpdateAWPSettings(id string, scan_mode string, req awp_onboarding.AgentlessAccountSettings) (*http.Response, error) { pathPostfix := awp_onboarding.UpdatePostfix - path := fmt.Sprintf(awp_onboarding.OnboardingResourcePath, awp_onboarding.ProviderAWS, id) + path := fmt.Sprintf(awp_onboarding.OnboardingResourcePath, awp_onboarding.ProviderAzure, id) return awp_onboarding.UpdateAWPSettings(service.Client, fmt.Sprintf("%s/%s", path, pathPostfix), req) } From 9f1891908931a1660d9bb58e3d4898873690b7bb Mon Sep 17 00:00:00 2001 From: Dana Date: Tue, 3 Sep 2024 11:10:57 +0300 Subject: [PATCH 20/22] adding documentation --- .../services/awp/azure_onboarding/azure_onboarding.go | 5 +++++ website/docs/r/awp_aws_onboarding.html.markdown | 3 +++ website/docs/r/awp_azure_onboarding.html.markdown | 4 ++++ 3 files changed, 12 insertions(+) diff --git a/vendor/github.com/dome9/dome9-sdk-go/services/awp/azure_onboarding/azure_onboarding.go b/vendor/github.com/dome9/dome9-sdk-go/services/awp/azure_onboarding/azure_onboarding.go index 0ef8280f..78a38332 100644 --- a/vendor/github.com/dome9/dome9-sdk-go/services/awp/azure_onboarding/azure_onboarding.go +++ b/vendor/github.com/dome9/dome9-sdk-go/services/awp/azure_onboarding/azure_onboarding.go @@ -52,7 +52,12 @@ func (service *Service) DeleteAWPOnboarding(id string) (*http.Response, error) { func (service *Service) UpdateAWPSettings(id string, scan_mode string, req awp_onboarding.AgentlessAccountSettings) (*http.Response, error) { pathPostfix := awp_onboarding.UpdatePostfix + if scan_mode == awp_onboarding.ScanModeInAccountHub { + pathPostfix = awp_onboarding.UpdateHubPostfix + } + path := fmt.Sprintf(awp_onboarding.OnboardingResourcePath, awp_onboarding.ProviderAzure, id) + return awp_onboarding.UpdateAWPSettings(service.Client, fmt.Sprintf("%s/%s", path, pathPostfix), req) } diff --git a/website/docs/r/awp_aws_onboarding.html.markdown b/website/docs/r/awp_aws_onboarding.html.markdown index 2f3a882d..3601b5b4 100644 --- a/website/docs/r/awp_aws_onboarding.html.markdown +++ b/website/docs/r/awp_aws_onboarding.html.markdown @@ -50,6 +50,7 @@ module "terraform-dome9-awp-aws" { # scan_machine_interval_in_hours = 24 # disabled_regions = ["ap-northeast-1", "ap-northeast-2", ...] # List of regions to disable # max_concurrent_scans_per_region = 20 + # in_account_scanner_vpc = "ManagedByAWP" # custom_tags = { # tag1 = "value1" # tag2 = "value2" @@ -69,6 +70,7 @@ module "terraform-dome9-awp-aws" { # The disabled_regions attribute is used to specify the disabled regions of the agentless account settings of the Dome9 AWP AWS Onboarding. # The scan_machine_interval_in_hours attribute is used to specify the scan machine interval in hours of the agentless account settings of the Dome9 AWP AWS Onboarding. # The max_concurrent_scans_per_region attribute is used to specify the max concurrent scans per region of the agentless account settings of the Dome9 AWP AWS Onboarding. +# The in_account_scanner_vpc attribute is used to specify the scanner VPC mode of the agentless account settings of the Dome9 AWP AWS Onboarding. # The custom_tags attribute is used to specify the custom tags of the agentless account settings of the Dome9 AWP AWS Onboarding. resource "dome9_awp_aws_onboarding" "awp_aws_onboarding_test" { cloudguard_account_id = "dome9_cloudaccount_aws.aws_onboarding_account_test.id | | " @@ -83,6 +85,7 @@ resource "dome9_awp_aws_onboarding" "awp_aws_onboarding_test" { disabled_regions = ["us-east-1", "us-west-1", "ap-northeast-1", "ap-southeast-2"] scan_machine_interval_in_hours = 24 max_concurrent_scans_per_region = 20 + in_account_scanner_vpc = "ManagedByAWP" custom_tags = { tag1 = "value1" tag2 = "value2" diff --git a/website/docs/r/awp_azure_onboarding.html.markdown b/website/docs/r/awp_azure_onboarding.html.markdown index 6b4d789b..0169fb1b 100644 --- a/website/docs/r/awp_azure_onboarding.html.markdown +++ b/website/docs/r/awp_azure_onboarding.html.markdown @@ -45,6 +45,7 @@ module "terraform-dome9-awp-azure" { # skip_function_apps_scan = false # disabled_regions = ["eastus", "westus", ...] # List of regions to disable # max_concurrent_scans_per_region = 20 + # in_account_scanner_vpc = "ManagedByAWP" # custom_tags = { # tag1 = "value1" # tag2 = "value2" @@ -64,6 +65,7 @@ module "terraform-dome9-awp-azure" { # The skip_function_apps_scan attribute is used to specify if skip Azure Function Apps scan in the agentless account settings of the Dome9 AWP Azure Onboarding. # The scan_machine_interval_in_hours attribute is used to specify the scan machine interval in hours of the agentless account settings of the Dome9 AWP Azure Onboarding. # The max_concurrent_scans_per_region attribute is used to specify the max concurrent scans per region of the agentless account settings of the Dome9 AWP Azure Onboarding. +# The in_account_scanner_vpc attribute is used to specify the scanner VPC mode of the agentless account settings of the Dome9 AWP AWS Onboarding. # The custom_tags attribute is used to specify the custom tags of the agentless account settings of the Dome9 AWP Azure Onboarding. resource "dome9_awp_azure_onboarding" "awp_azure_onboarding_test" { cloudguard_account_id = "dome9_cloudaccount_azure.azure_onboarding_account_test.id | | " @@ -77,6 +79,7 @@ resource "dome9_awp_azure_onboarding" "awp_azure_onboarding_test" { skip_function_apps_scan = false scan_machine_interval_in_hours = 24 max_concurrent_scans_per_region = 20 + in_account_scanner_vpc = "ManagedByAWP" custom_tags = { tag1 = "value1" tag2 = "value2" @@ -104,6 +107,7 @@ The following arguments are supported: * `scan_machine_interval_in_hours` - (Optional) The scan machine interval in hours * `skip_function_apps_scan` - (Optional) Skip Azure Function Apps scan (supported for inAccount and inAccountSub scan modes) * `max_concurrent_scans_per_region` - (Optional) The max concurrent scans per region + * `in_account_scanner_vpc` = optional(string) # The VPC Mode. Valid values: "ManagedByAWP", "ManagedByCustomer" (supported for inAccount and inAccountHub scan modes) * `custom_tags` - (Optional) The custom tags. * `should_create_policy` - (Optional) Whether to create a policy. Default is true. From af3bb5da57c49584620cc6c10d907a0d105ea9e0 Mon Sep 17 00:00:00 2001 From: Dana Date: Tue, 3 Sep 2024 13:17:18 +0300 Subject: [PATCH 21/22] adjusting SDK version --- go.sum | 4 ++-- vendor/modules.txt | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/go.sum b/go.sum index dbbc0a37..1f626e30 100644 --- a/go.sum +++ b/go.sum @@ -83,8 +83,8 @@ github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ3 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38= github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c= github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38= -github.com/dome9/dome9-sdk-go v1.23.6 h1:DT8bCfvSeKs19a9hDfoeMdAxqOvLKReOux8fvIK2CfI= -github.com/dome9/dome9-sdk-go v1.23.6/go.mod h1:mfA4+mIM0SmqGGBfbQSOhOi/KW0uV5WW7ozIHug4NKQ= +github.com/dome9/dome9-sdk-go v1.23.7 h1:omD6vUmLGvuq41a9gtimKRQVjSw2jXhmhPVtl/nd4nE= +github.com/dome9/dome9-sdk-go v1.23.7/go.mod h1:mfA4+mIM0SmqGGBfbQSOhOi/KW0uV5WW7ozIHug4NKQ= github.com/emirpasic/gods v1.12.0 h1:QAUIPSaCu4G+POclxeqb3F+WPpdKqFGlw36+yOzGlrg= github.com/emirpasic/gods v1.12.0/go.mod h1:YfzfFFoVP/catgzJb4IKIqXjX78Ha8FMSDh3ymbK86o= github.com/envoyproxy/go-control-plane v0.9.0/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4= diff --git a/vendor/modules.txt b/vendor/modules.txt index af19afed..7f2f7ae0 100644 --- a/vendor/modules.txt +++ b/vendor/modules.txt @@ -94,7 +94,7 @@ github.com/bgentry/speakeasy # github.com/davecgh/go-spew v1.1.1 ## explicit github.com/davecgh/go-spew/spew -# github.com/dome9/dome9-sdk-go v1.23.6 +# github.com/dome9/dome9-sdk-go v1.23.7 ## explicit; go 1.19 github.com/dome9/dome9-sdk-go/dome9 github.com/dome9/dome9-sdk-go/dome9/client From 10436938d62dea16ba22e7513184cead86e20d12 Mon Sep 17 00:00:00 2001 From: Dana Date: Tue, 3 Sep 2024 14:20:33 +0300 Subject: [PATCH 22/22] adjusting test --- dome9/resource_dome9_awp_azure_onboarding_test.go | 2 ++ 1 file changed, 2 insertions(+) diff --git a/dome9/resource_dome9_awp_azure_onboarding_test.go b/dome9/resource_dome9_awp_azure_onboarding_test.go index 263b719b..6eb451cb 100644 --- a/dome9/resource_dome9_awp_azure_onboarding_test.go +++ b/dome9/resource_dome9_awp_azure_onboarding_test.go @@ -121,6 +121,7 @@ resource "%s" "%s" { disabled_regions = %s scan_machine_interval_in_hours = "%s" max_concurrent_scans_per_region = "%s" + in_account_scanner_vpc = "%s" custom_tags = %s } } @@ -132,6 +133,7 @@ resource "%s" "%s" { IfThenElse(updateAction, variable.AzureDisabledRegionsUpdate, variable.AzureDisabledRegions), IfThenElse(updateAction, variable.ScanMachineIntervalInHoursUpdate, variable.ScanMachineIntervalInHours), IfThenElse(updateAction, variable.MaxConcurrentScansPerRegionUpdate, variable.MaxConcurrentScansPerRegion), + IfThenElse(updateAction, variable.InAccountScannerVPCUpdate, variable.InAccountScannerVPC), IfThenElse(updateAction, variable.CustomTagsUpdate, variable.CustomTags), ) }