mirror of
https://github.com/bpg/terraform-provider-proxmox.git
synced 2025-07-01 02:52:58 +00:00
fix(firewall): add VM / container ID validation to firewall rules (#424)
This commit is contained in:
Pavel Boldyrev
GitHub
parent
041c71e4b5
commit
6a3bc03470
@ -20,6 +20,7 @@ import (
|
|||||||
"github.com/bpg/terraform-provider-proxmox/internal/types"
|
"github.com/bpg/terraform-provider-proxmox/internal/types"
|
||||||
"github.com/bpg/terraform-provider-proxmox/proxmox/nodes/containers"
|
"github.com/bpg/terraform-provider-proxmox/proxmox/nodes/containers"
|
||||||
"github.com/bpg/terraform-provider-proxmox/proxmoxtf"
|
"github.com/bpg/terraform-provider-proxmox/proxmoxtf"
|
||||||
|
"github.com/bpg/terraform-provider-proxmox/proxmoxtf/resource/validator"
|
||||||
)
|
)
|
||||||
|
|
||||||
const (
|
const (
|
||||||
@ -149,7 +150,7 @@ func Container() *schema.Resource {
|
|||||||
Description: "The ID of the source container",
|
Description: "The ID of the source container",
|
||||||
Required: true,
|
Required: true,
|
||||||
ForceNew: true,
|
ForceNew: true,
|
||||||
ValidateDiagFunc: getVMIDValidator(),
|
ValidateDiagFunc: validator.VMID(),
|
||||||
},
|
},
|
||||||
},
|
},
|
||||||
},
|
},
|
||||||
@ -636,7 +637,7 @@ func Container() *schema.Resource {
|
|||||||
Optional: true,
|
Optional: true,
|
||||||
ForceNew: true,
|
ForceNew: true,
|
||||||
Default: dvResourceVirtualEnvironmentContainerVMID,
|
Default: dvResourceVirtualEnvironmentContainerVMID,
|
||||||
ValidateDiagFunc: getVMIDValidator(),
|
ValidateDiagFunc: validator.VMID(),
|
||||||
},
|
},
|
||||||
},
|
},
|
||||||
CreateContext: containerCreate,
|
CreateContext: containerCreate,
|
||||||
|
|||||||
@ -14,6 +14,7 @@ import (
|
|||||||
|
|
||||||
"github.com/bpg/terraform-provider-proxmox/proxmox/firewall"
|
"github.com/bpg/terraform-provider-proxmox/proxmox/firewall"
|
||||||
"github.com/bpg/terraform-provider-proxmox/proxmoxtf"
|
"github.com/bpg/terraform-provider-proxmox/proxmoxtf"
|
||||||
|
"github.com/bpg/terraform-provider-proxmox/proxmoxtf/resource/validator"
|
||||||
)
|
)
|
||||||
|
|
||||||
const (
|
const (
|
||||||
@ -34,12 +35,14 @@ func selectorSchema() map[string]*schema.Schema {
|
|||||||
Optional: true,
|
Optional: true,
|
||||||
Description: "The ID of the VM to manage the firewall for.",
|
Description: "The ID of the VM to manage the firewall for.",
|
||||||
RequiredWith: []string{mkSelectorNodeName},
|
RequiredWith: []string{mkSelectorNodeName},
|
||||||
|
ValidateDiagFunc: validator.VMID(),
|
||||||
},
|
},
|
||||||
mkSelectorContainerID: {
|
mkSelectorContainerID: {
|
||||||
Type: schema.TypeInt,
|
Type: schema.TypeInt,
|
||||||
Optional: true,
|
Optional: true,
|
||||||
Description: "The ID of the container to manage the firewall for.",
|
Description: "The ID of the container to manage the firewall for.",
|
||||||
RequiredWith: []string{mkSelectorNodeName},
|
RequiredWith: []string{mkSelectorNodeName},
|
||||||
|
ValidateDiagFunc: validator.VMID(),
|
||||||
},
|
},
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|||||||
@ -400,29 +400,6 @@ func getSCSIHardwareValidator() schema.SchemaValidateDiagFunc {
|
|||||||
}, false))
|
}, false))
|
||||||
}
|
}
|
||||||
|
|
||||||
func getVMIDValidator() schema.SchemaValidateDiagFunc {
|
|
||||||
return validation.ToDiagFunc(func(i interface{}, k string) (ws []string, es []error) {
|
|
||||||
min := 100
|
|
||||||
max := 2147483647
|
|
||||||
|
|
||||||
v, ok := i.(int)
|
|
||||||
|
|
||||||
if !ok {
|
|
||||||
es = append(es, fmt.Errorf("expected type of %s to be int", k))
|
|
||||||
return
|
|
||||||
}
|
|
||||||
|
|
||||||
if v != -1 {
|
|
||||||
if v < min || v > max {
|
|
||||||
es = append(es, fmt.Errorf("expected %s to be in the range (%d - %d), got %d", k, min, max, v))
|
|
||||||
return
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
return
|
|
||||||
})
|
|
||||||
}
|
|
||||||
|
|
||||||
// suppressIfListsAreEqualIgnoringOrder is a customdiff.SuppressionFunc that suppresses
|
// suppressIfListsAreEqualIgnoringOrder is a customdiff.SuppressionFunc that suppresses
|
||||||
// changes to a list if the old and new lists are equal, ignoring the order of the
|
// changes to a list if the old and new lists are equal, ignoring the order of the
|
||||||
// elements.
|
// elements.
|
||||||
|
|||||||
41
proxmoxtf/resource/validator/vm.go
Normal file
41
proxmoxtf/resource/validator/vm.go
Normal file
@ -0,0 +1,41 @@
|
|||||||
|
/*
|
||||||
|
* This Source Code Form is subject to the terms of the Mozilla Public
|
||||||
|
* License, v. 2.0. If a copy of the MPL was not distributed with this
|
||||||
|
* file, You can obtain one at https://mozilla.org/MPL/2.0/.
|
||||||
|
*/
|
||||||
|
|
||||||
|
package validator
|
||||||
|
|
||||||
|
import (
|
||||||
|
"fmt"
|
||||||
|
|
||||||
|
"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
|
||||||
|
"github.com/hashicorp/terraform-plugin-sdk/v2/helper/validation"
|
||||||
|
)
|
||||||
|
|
||||||
|
// VMID returns a schema validation function for a VM ID.
|
||||||
|
func VMID() schema.SchemaValidateDiagFunc {
|
||||||
|
return validation.ToDiagFunc(func(i interface{}, k string) ([]string, []error) {
|
||||||
|
min := 100
|
||||||
|
max := 2147483647
|
||||||
|
|
||||||
|
var ws []string
|
||||||
|
var es []error
|
||||||
|
|
||||||
|
v, ok := i.(int)
|
||||||
|
|
||||||
|
if !ok {
|
||||||
|
es = append(es, fmt.Errorf("expected type of %s to be int", k))
|
||||||
|
return ws, es
|
||||||
|
}
|
||||||
|
|
||||||
|
if v != -1 {
|
||||||
|
if v < min || v > max {
|
||||||
|
es = append(es, fmt.Errorf("expected %s to be in the range (%d - %d), got %d", k, min, max, v))
|
||||||
|
return ws, es
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
return ws, es
|
||||||
|
})
|
||||||
|
}
|
||||||
@ -24,6 +24,7 @@ import (
|
|||||||
"github.com/bpg/terraform-provider-proxmox/proxmox/cluster"
|
"github.com/bpg/terraform-provider-proxmox/proxmox/cluster"
|
||||||
"github.com/bpg/terraform-provider-proxmox/proxmox/nodes/vms"
|
"github.com/bpg/terraform-provider-proxmox/proxmox/nodes/vms"
|
||||||
"github.com/bpg/terraform-provider-proxmox/proxmoxtf"
|
"github.com/bpg/terraform-provider-proxmox/proxmoxtf"
|
||||||
|
"github.com/bpg/terraform-provider-proxmox/proxmoxtf/resource/validator"
|
||||||
)
|
)
|
||||||
|
|
||||||
const (
|
const (
|
||||||
@ -436,7 +437,7 @@ func VM() *schema.Resource {
|
|||||||
Description: "The ID of the source VM",
|
Description: "The ID of the source VM",
|
||||||
Required: true,
|
Required: true,
|
||||||
ForceNew: true,
|
ForceNew: true,
|
||||||
ValidateDiagFunc: getVMIDValidator(),
|
ValidateDiagFunc: validator.VMID(),
|
||||||
},
|
},
|
||||||
mkResourceVirtualEnvironmentVMCloneFull: {
|
mkResourceVirtualEnvironmentVMCloneFull: {
|
||||||
Type: schema.TypeBool,
|
Type: schema.TypeBool,
|
||||||
@ -1297,7 +1298,7 @@ func VM() *schema.Resource {
|
|||||||
Computed: true,
|
Computed: true,
|
||||||
// "ForceNew: true" handled in CustomizeDiff, making sure VMs with legacy configs with vm_id = -1
|
// "ForceNew: true" handled in CustomizeDiff, making sure VMs with legacy configs with vm_id = -1
|
||||||
// do not require re-creation.
|
// do not require re-creation.
|
||||||
ValidateDiagFunc: getVMIDValidator(),
|
ValidateDiagFunc: validator.VMID(),
|
||||||
},
|
},
|
||||||
mkResourceVirtualEnvironmentVMSCSIHardware: {
|
mkResourceVirtualEnvironmentVMSCSIHardware: {
|
||||||
Type: schema.TypeString,
|
Type: schema.TypeString,
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user