terraform/builtin/providers/aws/resource_aws_opsworks_permi...

package aws

import (
	"fmt"
	"testing"

	"github.com/hashicorp/terraform/helper/acctest"
	"github.com/hashicorp/terraform/helper/resource"
)

func TestAccAWSOpsworksPermission(t *testing.T) {
	sName := fmt.Sprintf("tf-ops-perm-%d", acctest.RandInt())
	resource.Test(t, resource.TestCase{
		PreCheck:  func() { testAccPreCheck(t) },
		Providers: testAccProviders,
		Steps: []resource.TestStep{
			resource.TestStep{
				Config: testAccAwsOpsworksPermissionCreate(sName, "true", "true", "iam_only"),
				Check: resource.ComposeTestCheckFunc(
					resource.TestCheckResourceAttr(
						"aws_opsworks_permission.tf-acc-perm", "allow_ssh", "true",
					),
					resource.TestCheckResourceAttr(
						"aws_opsworks_permission.tf-acc-perm", "allow_sudo", "true",
					),
					resource.TestCheckResourceAttr(
						"aws_opsworks_permission.tf-acc-perm", "level", "iam_only",
					),
				),
			},
			resource.TestStep{
				Config: testAccAwsOpsworksPermissionCreate(sName, "true", "false", "iam_only"),
				Check: resource.ComposeTestCheckFunc(
					resource.TestCheckResourceAttr(
						"aws_opsworks_permission.tf-acc-perm", "allow_ssh", "true",
					),
					resource.TestCheckResourceAttr(
						"aws_opsworks_permission.tf-acc-perm", "allow_sudo", "false",
					),
					resource.TestCheckResourceAttr(
						"aws_opsworks_permission.tf-acc-perm", "level", "iam_only",
					),
				),
			},
			resource.TestStep{
				Config: testAccAwsOpsworksPermissionCreate(sName, "false", "false", "deny"),
				Check: resource.ComposeTestCheckFunc(
					resource.TestCheckResourceAttr(
						"aws_opsworks_permission.tf-acc-perm", "allow_ssh", "false",
					),
					resource.TestCheckResourceAttr(
						"aws_opsworks_permission.tf-acc-perm", "allow_sudo", "false",
					),
					resource.TestCheckResourceAttr(
						"aws_opsworks_permission.tf-acc-perm", "level", "deny",
					),
				),
			},
			resource.TestStep{
				Config: testAccAwsOpsworksPermissionCreate(sName, "false", "false", "show"),
				Check: resource.ComposeTestCheckFunc(
					resource.TestCheckResourceAttr(
						"aws_opsworks_permission.tf-acc-perm", "allow_ssh", "false",
					),
					resource.TestCheckResourceAttr(
						"aws_opsworks_permission.tf-acc-perm", "allow_sudo", "false",
					),
					resource.TestCheckResourceAttr(
						"aws_opsworks_permission.tf-acc-perm", "level", "show",
					),
				),
			},
		},
	})
}

func testAccAwsOpsworksPermissionCreate(name, ssh, sudo, level string) string {
	return fmt.Sprintf(`
resource "aws_opsworks_permission" "tf-acc-perm" {
  stack_id = "${aws_opsworks_stack.tf-acc.id}"

  allow_ssh = %s
  allow_sudo = %s
  user_arn = "${aws_opsworks_user_profile.user.user_arn}"
  level = "%s"
}

resource "aws_opsworks_user_profile" "user" {
  user_arn = "${aws_iam_user.user.arn}"
  ssh_username = "${aws_iam_user.user.name}"
}

resource "aws_iam_user" "user" {
	name = "%s"
	path = "/"
}
	
%s
`, ssh, sudo, level, name, testAccAwsOpsworksStackConfigVpcCreate(name))
}
providers/aws: Opsworks permission resource (#6304) * add opsworks permission resource * add docs * remove permission from state if the permission object could not be found * remove nil validate function. validation is done in schema.Resource. * add id to the list of exported values * renge over permission to check that we have found got the correct one * removed comment * removed set id * fix unknown region us-east-1c * add user_profile resource * add docs * add default value 2016-07-21 01:29:33 +02:00			`package aws`

			`import (`
provider/aws: Decouple and randomize OpsWorks test configs 2016-11-04 15:33:07 +01:00			`"fmt"`
providers/aws: Opsworks permission resource (#6304) * add opsworks permission resource * add docs * remove permission from state if the permission object could not be found * remove nil validate function. validation is done in schema.Resource. * add id to the list of exported values * renge over permission to check that we have found got the correct one * removed comment * removed set id * fix unknown region us-east-1c * add user_profile resource * add docs * add default value 2016-07-21 01:29:33 +02:00			`"testing"`

provider/aws: Decouple and randomize OpsWorks test configs 2016-11-04 15:33:07 +01:00			`"github.com/hashicorp/terraform/helper/acctest"`
providers/aws: Opsworks permission resource (#6304) * add opsworks permission resource * add docs * remove permission from state if the permission object could not be found * remove nil validate function. validation is done in schema.Resource. * add id to the list of exported values * renge over permission to check that we have found got the correct one * removed comment * removed set id * fix unknown region us-east-1c * add user_profile resource * add docs * add default value 2016-07-21 01:29:33 +02:00			`"github.com/hashicorp/terraform/helper/resource"`
			`)`

			`func TestAccAWSOpsworksPermission(t *testing.T) {`
fix #9104 (#10394) 2016-12-02 12:53:06 +01:00			`sName := fmt.Sprintf("tf-ops-perm-%d", acctest.RandInt())`
providers/aws: Opsworks permission resource (#6304) * add opsworks permission resource * add docs * remove permission from state if the permission object could not be found * remove nil validate function. validation is done in schema.Resource. * add id to the list of exported values * renge over permission to check that we have found got the correct one * removed comment * removed set id * fix unknown region us-east-1c * add user_profile resource * add docs * add default value 2016-07-21 01:29:33 +02:00			`resource.Test(t, resource.TestCase{`
			`PreCheck: func() { testAccPreCheck(t) },`
			`Providers: testAccProviders,`
			`Steps: []resource.TestStep{`
			`resource.TestStep{`
fix #9104 (#10394) 2016-12-02 12:53:06 +01:00			`Config: testAccAwsOpsworksPermissionCreate(sName, "true", "true", "iam_only"),`
providers/aws: Opsworks permission resource (#6304) * add opsworks permission resource * add docs * remove permission from state if the permission object could not be found * remove nil validate function. validation is done in schema.Resource. * add id to the list of exported values * renge over permission to check that we have found got the correct one * removed comment * removed set id * fix unknown region us-east-1c * add user_profile resource * add docs * add default value 2016-07-21 01:29:33 +02:00			`Check: resource.ComposeTestCheckFunc(`
			`resource.TestCheckResourceAttr(`
			`"aws_opsworks_permission.tf-acc-perm", "allow_ssh", "true",`
			`),`
			`resource.TestCheckResourceAttr(`
			`"aws_opsworks_permission.tf-acc-perm", "allow_sudo", "true",`
			`),`
			`resource.TestCheckResourceAttr(`
			`"aws_opsworks_permission.tf-acc-perm", "level", "iam_only",`
			`),`
			`),`
			`},`
fix #9104 (#10394) 2016-12-02 12:53:06 +01:00			`resource.TestStep{`
			`Config: testAccAwsOpsworksPermissionCreate(sName, "true", "false", "iam_only"),`
			`Check: resource.ComposeTestCheckFunc(`
			`resource.TestCheckResourceAttr(`
			`"aws_opsworks_permission.tf-acc-perm", "allow_ssh", "true",`
			`),`
			`resource.TestCheckResourceAttr(`
			`"aws_opsworks_permission.tf-acc-perm", "allow_sudo", "false",`
			`),`
			`resource.TestCheckResourceAttr(`
			`"aws_opsworks_permission.tf-acc-perm", "level", "iam_only",`
			`),`
			`),`
			`},`
			`resource.TestStep{`
			`Config: testAccAwsOpsworksPermissionCreate(sName, "false", "false", "deny"),`
			`Check: resource.ComposeTestCheckFunc(`
			`resource.TestCheckResourceAttr(`
			`"aws_opsworks_permission.tf-acc-perm", "allow_ssh", "false",`
			`),`
			`resource.TestCheckResourceAttr(`
			`"aws_opsworks_permission.tf-acc-perm", "allow_sudo", "false",`
			`),`
			`resource.TestCheckResourceAttr(`
			`"aws_opsworks_permission.tf-acc-perm", "level", "deny",`
			`),`
			`),`
			`},`
			`resource.TestStep{`
			`Config: testAccAwsOpsworksPermissionCreate(sName, "false", "false", "show"),`
			`Check: resource.ComposeTestCheckFunc(`
			`resource.TestCheckResourceAttr(`
			`"aws_opsworks_permission.tf-acc-perm", "allow_ssh", "false",`
			`),`
			`resource.TestCheckResourceAttr(`
			`"aws_opsworks_permission.tf-acc-perm", "allow_sudo", "false",`
			`),`
			`resource.TestCheckResourceAttr(`
			`"aws_opsworks_permission.tf-acc-perm", "level", "show",`
			`),`
			`),`
			`},`
providers/aws: Opsworks permission resource (#6304) * add opsworks permission resource * add docs * remove permission from state if the permission object could not be found * remove nil validate function. validation is done in schema.Resource. * add id to the list of exported values * renge over permission to check that we have found got the correct one * removed comment * removed set id * fix unknown region us-east-1c * add user_profile resource * add docs * add default value 2016-07-21 01:29:33 +02:00			`},`
			`})`
			`}`

fix #9104 (#10394) 2016-12-02 12:53:06 +01:00			`func testAccAwsOpsworksPermissionCreate(name, ssh, sudo, level string) string {`
provider/aws: Decouple and randomize OpsWorks test configs 2016-11-04 15:33:07 +01:00			return fmt.Sprintf(`
providers/aws: Opsworks permission resource (#6304) * add opsworks permission resource * add docs * remove permission from state if the permission object could not be found * remove nil validate function. validation is done in schema.Resource. * add id to the list of exported values * renge over permission to check that we have found got the correct one * removed comment * removed set id * fix unknown region us-east-1c * add user_profile resource * add docs * add default value 2016-07-21 01:29:33 +02:00			`resource "aws_opsworks_permission" "tf-acc-perm" {`
			`stack_id = "${aws_opsworks_stack.tf-acc.id}"`

fix #9104 (#10394) 2016-12-02 12:53:06 +01:00			`allow_ssh = %s`
			`allow_sudo = %s`
providers/aws: Opsworks permission resource (#6304) * add opsworks permission resource * add docs * remove permission from state if the permission object could not be found * remove nil validate function. validation is done in schema.Resource. * add id to the list of exported values * renge over permission to check that we have found got the correct one * removed comment * removed set id * fix unknown region us-east-1c * add user_profile resource * add docs * add default value 2016-07-21 01:29:33 +02:00			`user_arn = "${aws_opsworks_user_profile.user.user_arn}"`
fix #9104 (#10394) 2016-12-02 12:53:06 +01:00			`level = "%s"`
providers/aws: Opsworks permission resource (#6304) * add opsworks permission resource * add docs * remove permission from state if the permission object could not be found * remove nil validate function. validation is done in schema.Resource. * add id to the list of exported values * renge over permission to check that we have found got the correct one * removed comment * removed set id * fix unknown region us-east-1c * add user_profile resource * add docs * add default value 2016-07-21 01:29:33 +02:00			`}`
provider/aws: Decouple and randomize OpsWorks test configs 2016-11-04 15:33:07 +01:00
			`resource "aws_opsworks_user_profile" "user" {`
			`user_arn = "${aws_iam_user.user.arn}"`
			`ssh_username = "${aws_iam_user.user.name}"`
			`}`

			`resource "aws_iam_user" "user" {`
			`name = "%s"`
			`path = "/"`
			`}`

			`%s`
fix #9104 (#10394) 2016-12-02 12:53:06 +01:00			`, ssh, sudo, level, name, testAccAwsOpsworksStackConfigVpcCreate(name))
provider/aws: Decouple and randomize OpsWorks test configs 2016-11-04 15:33:07 +01:00			`}`