feat(instance): add support for enable_default_security

Author: remyleone

docs/data-sources/k8s_cluster.md

@@ -0,0 +1,108 @@
+---
+page_title: "Scaleway: scaleway_k8s_cluster"
+description: |-
+  Gets information about a Kubernetes Cluster.
+---
+
+# scaleway_k8s_cluster
+
+Gets information about a Kubernetes Cluster.
+
+## Example Usage
+
+```hcl
+# Get info by cluster name
+data "scaleway_k8s_cluster" "my_key" {
+  name  = "my-cluster-name"
+}
+
+# Get info by cluster id
+data "scaleway_k8s_cluster" "my_key" {
+  cluster_id = "11111111-1111-1111-1111-111111111111"
+}
+```
+
+## Argument Reference
+
+- `name` - (Optional) The cluster name. Only one of `name` and `cluster_id` should be specified.
+
+- `cluster_id` - (Optional) The cluster ID. Only one of `name` and `cluster_id` should be specified.
+
+- `region` - (Defaults to [provider](../index.md#region) `region`) The [region](../guides/regions_and_zones.md#regions) in which the cluster exists.
+
+## Attributes Reference
+
+In addition to all above arguments, the following attributes are exported:
+
+- `id` - The ID of the cluster.
+
+- `created_at` - The creation date of the cluster.
+
+- `updated_at` - The last update date of the cluster.
+
+- `apiserver_url` - The URL of the Kubernetes API server.
+
+- `wildcard_dns` - The DNS wildcard that points to all ready nodes.
+
+- `kubeconfig`
+
+    - `config_file` - The raw kubeconfig file.
+
+    - `host` - The URL of the Kubernetes API server.
+
+    - `cluster_ca_certificate` - The CA certificate of the Kubernetes API server.
+
+    - `token` - The token to connect to the Kubernetes API server.
+
+- `status` - The status of the Kubernetes cluster.
+
+- `upgrade_available` - True if a newer Kubernetes version is available.
+
+- `description` - A description for the Kubernetes cluster.
+
+- `version` - The version of the Kubernetes cluster.
+
+- `cni` - The Container Network Interface (CNI) for the Kubernetes cluster.
+
+- `enable_dashboard` - True if the [Kubernetes dashboard](https://github.com/kubernetes/dashboard) is enabled for the Kubernetes cluster.
+
+- `ingress` - The [ingress controller](https://kubernetes.io/docs/concepts/services-networking/ingress-controllers/) deployed on the Kubernetes cluster.
+
+- `tags` - The tags associated with the Kubernetes cluster.
+
+- `autoscaler_config` - The configuration options for the [Kubernetes cluster autoscaler](https://github.com/kubernetes/autoscaler/tree/master/cluster-autoscaler).
+
+    - `disable_scale_down` - True if the scale down feature of the autoscaler is disabled.
+
+    - `scale_down_delay_after_add` - The duration after scale up that scale down evaluation resumes.
+
+    - `scale_down_unneeded_time` - The duration a node should be unneeded before it is eligible for scale down.
+
+    - `estimator` - The type of resource estimator used in scale up.
+
+    - `expander` - The type of node group expander be used in scale up.
+
+    - `ignore_daemonsets_utilization` - True if ignoring DaemonSet pods when calculating resource utilization for scaling down is enabled.
+
+    - `balance_similar_node_groups` - True if detecting similar node groups and balance the number of nodes between them is enabled.
+
+    - `expendable_pods_priority_cutoff` - Pods with priority below cutoff will be expendable. They can be killed without any consideration during scale down and they don't cause scale up. Pods with null priority (PodPriority disabled) are non expendable.
+
+- `auto_upgrade` - The auto upgrade configuration.
+
+    - `enable` - True if Kubernetes patch version auto upgrades is enabled.
+
+    - `maintenance_window_start_hour` - The start hour (UTC) of the 2-hour auto upgrade maintenance window (0 to 23).
+
+    - `maintenance_window_day` - The day of the auto upgrade maintenance window (`monday` to `sunday`, or `any`).
+
+- `feature_gates` - The list of [feature gates](https://kubernetes.io/docs/reference/command-line-tools-reference/feature-gates/) enabled on the cluster.
+
+- `admission_plugins` - The list of [admission plugins](https://kubernetes.io/docs/reference/access-authn-authz/admission-controllers/) enabled on the cluster.
+
+- `region` - The [region](../guides/regions_and_zones.md#regions) in which the cluster is.
+
+- `organization_id` - The ID of the organization the cluster is associated with.
+
+- `project_id` - The ID of the project the cluster is associated with.
+

docs/data-sources/k8s_pool.md

@@ -0,0 +1,78 @@
+---
+page_title: "Scaleway: scaleway_k8s_pool"
+description: |-
+  Gets information about a Kubernetes Cluster's Pool.
+---
+
+# scaleway_k8s_pool
+
+Gets information about a Kubernetes Cluster's Pool.
+
+## Example Usage
+
+```hcl
+# Get info by pokl name (need cluster_id)
+data "scaleway_k8s_pool" "my_key" {
+  name  = "my-pool-name"
+  cluster_id = "11111111-1111-1111-1111-111111111111"
+}
+
+# Get info by pool id
+data "scaleway_k8s_pool" "my_key" {
+  pool_id = "11111111-1111-1111-1111-111111111111"
+}
+```
+
+## Argument Reference
+
+- `name` - The pool name. Only one of `name` and `pool_id` should be specified. `cluster_id` should be specified with `name`.
+
+- `pool_id` - (Optional) The pool's ID. Only one of `name` and `pool_id` should be specified.
+
+- `cluster_id` - (Optional) The cluster ID. Required when `name` is set.
+
+- `region` - (Defaults to [provider](../index.md#region) `region`) The [region](../guides/regions_and_zones.md#regions) in which the pool exists.
+
+## Attributes Reference
+
+In addition to all above arguments, the following attributes are exported:
+
+- `id` - The ID of the pool.
+
+- `status` - The status of the pool.
+
+- `nodes` - (List of) The nodes in the default pool.
+
+    - `name` - The name of the node.
+
+    - `public_ip` - The public IPv4.
+
+    - `public_ip_v6` - The public IPv6.
+
+    - `status` - The status of the node.
+
+- `created_at` - The creation date of the pool.
+
+- `updated_at` - The last update date of the pool.
+
+- `version` - The version of the pool.
+
+- `current_size` - The size of the pool at the time the terraform state was updated.
+
+- `node_type` - The commercial type of the pool instances.
+
+- `size` - The size of the pool.
+
+- `min_size` - The minimum size of the pool, used by the autoscaling feature.
+
+- `max_size` - The maximum size of the pool, used by the autoscaling feature.
+
+- `tags` - The tags associated with the pool.
+
+- `placement_group_id` - [placement group](https://developers.scaleway.com/en/products/instance/api/#placement-groups-d8f653) the nodes of the pool are attached to.
+
+- `autoscaling` - True if the autoscaling feature is enabled for this pool.
+
+- `autohealing` - True if the autohealing feature is enabled for this pool.
+
+- `container_runtime` - The container runtime of the pool.

docs/index.md

@@ -182,7 +182,7 @@ in this priority order.
 
 ## Scaleway S3-compatible
 
-[Scaleway object storage](https://www.scaleway.com/object-storage/) can be used to store your Terraform state.
+[Scaleway object storage](https://www.scaleway.com/en/object-storage/) can be used to store your Terraform state.
 Configure your backend as:
 
 ```

docs/resources/instance_security_group.md

@@ -120,6 +120,7 @@ The following arguments are supported:
 
 - `project_id` - (Defaults to [provider](../index.md#project_id) `project_id`) The ID of the project the security group is associated with.
 
+- `enable_defaul_security` - Whether to block SMTP on IPv4/IPv6 (Port 25, 465, 587). Set to false will unblock SMTP if your account is authorized to. If your organization is not yet authorized to send SMTP traffic, [open a support ticket](https://console.scaleway.com/support/tickets).
 
 The `inbound_rule` and `outbound_rule` block supports:
 

go.mod

@@ -7,7 +7,7 @@ require (
 	github.com/google/go-cmp v0.5.2
 	github.com/hashicorp/go-retryablehttp v0.6.7
 	github.com/hashicorp/terraform-plugin-sdk/v2 v2.2.0
-	github.com/scaleway/scaleway-sdk-go v1.0.0-beta.7.0.20201113152841-1153aa56e20e
+	github.com/scaleway/scaleway-sdk-go v1.0.0-beta.7.0.20201210153359-29e11ec95efd
 	github.com/stretchr/testify v1.6.1
 	golang.org/x/crypto v0.0.0-20200820211705-5c72a883971a // indirect
 	golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1

go.sum

@@ -299,8 +299,8 @@ github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZN
 github.com/posener/complete v1.1.1/go.mod h1:em0nMJCgc9GFtwrmVmEMR/ZL6WyhyjMBndrE9hABlRI=
 github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/rogpeppe/go-internal v1.3.0/go.mod h1:M8bDsm7K2OlrFYOpmOWEs/qY81heoFRclV5y23lUDJ4=
-github.com/scaleway/scaleway-sdk-go v1.0.0-beta.7.0.20201113152841-1153aa56e20e h1:KW5n7q2CMM/MsFNAwdZWB0UioVa3E3XQSrKRZcjmaGo=
-github.com/scaleway/scaleway-sdk-go v1.0.0-beta.7.0.20201113152841-1153aa56e20e/go.mod h1:CJJ5VAbozOl0yEw7nHB9+7BXTJbIn6h7W+f6Gau5IP8=
+github.com/scaleway/scaleway-sdk-go v1.0.0-beta.7.0.20201210153359-29e11ec95efd h1:CjD+yEroS8fNyXwWNdGHb1fr3DE6As6dZoBhNIHZtHk=
+github.com/scaleway/scaleway-sdk-go v1.0.0-beta.7.0.20201210153359-29e11ec95efd/go.mod h1:CJJ5VAbozOl0yEw7nHB9+7BXTJbIn6h7W+f6Gau5IP8=
 github.com/sergi/go-diff v1.0.0 h1:Kpca3qRNrduNnOQeazBd0ysaKrUJiIuISHxogkT9RPQ=
 github.com/sergi/go-diff v1.0.0/go.mod h1:0CfEIISq7TuYL3j771MWULgwwjU+GofnZX9QAmXWZgo=
 github.com/sergi/go-diff v1.1.0 h1:we8PVUC3FE2uYfodKH/nBHMSetSfHDR6scGdBi+erh0=

scaleway/data_source_k8s_cluster.go

@@ -0,0 +1,71 @@
+package scaleway
+
+import (
+	"context"
+	"fmt"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/diag"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
+	k8s "github.com/scaleway/scaleway-sdk-go/api/k8s/v1"
+	"github.com/scaleway/scaleway-sdk-go/scw"
+)
+
+func dataSourceScalewayK8SCluster() *schema.Resource {
+	// Generate datasource schema from resource
+	dsSchema := datasourceSchemaFromResourceSchema(resourceScalewayK8SCluster().Schema)
+
+	// Set 'Optional' schema elements
+	addOptionalFieldsToSchema(dsSchema, "name", "region")
+	delete(dsSchema, "delete_additional_resources")
+
+	dsSchema["name"].ConflictsWith = []string{"cluster_id"}
+	dsSchema["cluster_id"] = &schema.Schema{
+		Type:          schema.TypeString,
+		Optional:      true,
+		Description:   "The ID of the cluster",
+		ValidateFunc:  validationUUIDorUUIDWithLocality(),
+		ConflictsWith: []string{"name"},
+	}
+
+	return &schema.Resource{
+		ReadContext: dataSourceScalewayK8SClusterRead,
+
+		Schema: dsSchema,
+	}
+}
+
+func dataSourceScalewayK8SClusterRead(ctx context.Context, d *schema.ResourceData, m interface{}) diag.Diagnostics {
+	meta := m.(*Meta)
+	k8sAPI, region, err := k8sAPIWithRegion(d, meta)
+	if err != nil {
+		return diag.FromErr(err)
+	}
+
+	clusterID, ok := d.GetOk("cluster_id")
+	if !ok {
+		res, err := k8sAPI.ListClusters(&k8s.ListClustersRequest{
+			Region:    region,
+			Name:      expandStringPtr(d.Get("name")),
+			ProjectID: expandStringPtr(d.Get("project_id")),
+		}, scw.WithContext(ctx))
+		if err != nil {
+			return diag.FromErr(err)
+		}
+		for _, cluster := range res.Clusters {
+			if cluster.Name == d.Get("name").(string) {
+				if clusterID != "" {
+					return diag.FromErr(fmt.Errorf("more than 1 cluster found with the same name %s", d.Get("name")))
+				}
+				clusterID = cluster.ID
+			}
+		}
+		if clusterID == "" {
+			return diag.FromErr(fmt.Errorf("no cluster found with the name %s", d.Get("name")))
+		}
+	}
+
+	regionalizedID := datasourceNewRegionalizedID(clusterID, region)
+	d.SetId(regionalizedID)
+	_ = d.Set("cluster_id", regionalizedID)
+	return resourceScalewayK8SClusterRead(ctx, d, m)
+}

scaleway/data_source_k8s_cluster_test.go

@@ -0,0 +1,54 @@
+package scaleway
+
+import (
+	"fmt"
+	"testing"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/resource"
+)
+
+func TestAccScalewayDataSourceK8SCluster_Basic(t *testing.T) {
+	tt := NewTestTools(t)
+	defer tt.Cleanup()
+	clusterName := "tf-cluster"
+	version := testAccScalewayK8SClusterGetLatestK8SVersion(tt)
+	resource.ParallelTest(t, resource.TestCase{
+		PreCheck:          func() { testAccPreCheck(t) },
+		ProviderFactories: tt.ProviderFactories,
+		CheckDestroy:      testAccCheckScalewayK8SClusterDestroy(tt),
+		Steps: []resource.TestStep{
+			{
+				Config: fmt.Sprintf(`
+					resource "scaleway_k8s_cluster" "main" {
+					  	name 	= "%s"
+						version = "%s"
+						cni     = "cilium"
+					  	tags    = [ "terraform-test", "data_scaleway_k8s_cluster", "basic" ]
+					}`, clusterName, version),
+			},
+			{
+				Config: fmt.Sprintf(`
+					resource "scaleway_k8s_cluster" "main" {
+					  	name 	= "%s"
+						version = "%s"
+						cni     = "cilium"
+					  	tags    = [ "terraform-test", "data_scaleway_k8s_cluster", "basic" ]
+					}
+					
+					data "scaleway_k8s_cluster" "prod" {
+					  	name = "${scaleway_k8s_cluster.main.name}"
+					}
+					
+					data "scaleway_k8s_cluster" "stg" {
+					  	cluster_id = "${scaleway_k8s_cluster.main.id}"
+					}`, clusterName, version),
+				Check: resource.ComposeTestCheckFunc(
+					testAccCheckScalewayK8SClusterExists(tt, "data.scaleway_k8s_cluster.prod"),
+					resource.TestCheckResourceAttr("data.scaleway_k8s_cluster.prod", "name", clusterName),
+					testAccCheckScalewayK8SClusterExists(tt, "data.scaleway_k8s_cluster.stg"),
+					resource.TestCheckResourceAttr("data.scaleway_k8s_cluster.stg", "name", clusterName),
+				),
+			},
+		},
+	})
+}