fix: Fixed repository resource churn #2501
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -320,6 +320,7 @@ func resourceGithubRepository() *schema.Resource { | |
| "vulnerability_alerts": { | ||
| Type: schema.TypeBool, | ||
| Optional: true, | ||
| Computed: true, | ||
| Description: "Set to 'true' to enable security alerts for vulnerable dependencies. Enabling requires alerts to be enabled on the owner level. (Note for importing: GitHub enables the alerts on public repos but disables them on private repos by default). Note that vulnerability alerts have not been successfully tested on any GitHub Enterprise instance and may be unavailable in those settings.", | ||
| }, | ||
| "ignore_vulnerability_alerts_during_read": { | ||
|
|
@@ -412,7 +413,6 @@ func resourceGithubRepository() *schema.Resource { | |
| } | ||
|
|
||
| func calculateVisibility(d *schema.ResourceData) string { | ||
| if value, ok := d.GetOk("visibility"); ok { | ||
| return value.(string) | ||
| } | ||
|
|
@@ -619,6 +619,11 @@ func resourceGithubRepositoryCreate(d *schema.ResourceData, meta interface{}) er | |
| } | ||
| } | ||
|
|
||
| err := updateVulnerabilityAlerts(d, client, ctx, owner, repoName) | ||
|
There was a problem hiding this comment. This seems wrong, the There was a problem hiding this comment. This part of the TF provider is a bit of a mess, AFAIK 3 months later this is required. |
||
| if err != nil { | ||
| return err | ||
| } | ||
|
|
||
| return resourceGithubRepositoryUpdate(d, meta) | ||
| } | ||
|
|
||
|
|
@@ -817,12 +822,7 @@ func resourceGithubRepositoryUpdate(d *schema.ResourceData, meta interface{}) er | |
| } | ||
|
|
||
| if d.HasChange("vulnerability_alerts") { | ||
| err = updateVulnerabilityAlerts(d, client, ctx, owner, repoName) | ||
| if err != nil { | ||
| return err | ||
| } | ||
|
|
@@ -957,13 +957,19 @@ func flattenPages(pages *github.Pages) []interface{} { | |
| return []interface{}{} | ||
| } | ||
|
|
||
| pagesMap := make(map[string]interface{}) | ||
| buildType := pages.GetBuildType() | ||
| pagesMap["build_type"] = buildType | ||
|
|
||
| if buildType == "legacy" { | ||
| sourceMap := make(map[string]interface{}) | ||
| sourceMap["branch"] = pages.GetSource().GetBranch() | ||
| sourceMap["path"] = pages.GetSource().GetPath() | ||
| pagesMap["source"] = []interface{}{sourceMap} | ||
| } else { | ||
| pagesMap["source"] = nil | ||
| } | ||
|
|
||
| pagesMap["url"] = pages.GetURL() | ||
| pagesMap["status"] = pages.GetStatus() | ||
| pagesMap["cname"] = pages.GetCNAME() | ||
|
|
@@ -1038,7 +1044,8 @@ func flattenSecurityAndAnalysis(securityAndAnalysis *github.SecurityAndAnalysis) | |
| // resourceGithubParseFullName will return "myorg", "myrepo", true when full_name is "myorg/myrepo". | ||
| func resourceGithubParseFullName(resourceDataLike interface { | ||
| GetOk(string) (interface{}, bool) | ||
| }, | ||
| ) (string, string, bool) { | ||
| x, ok := resourceDataLike.GetOk("full_name") | ||
| if !ok { | ||
| return "", "", false | ||
|
|
@@ -1062,3 +1069,13 @@ func customDiffFunction(_ context.Context, diff *schema.ResourceDiff, v interfac | |
| } | ||
| return nil | ||
| } | ||
|
|
||
| func updateVulnerabilityAlerts(d *schema.ResourceData, client *github.Client, ctx context.Context, owner, repoName string) error { | ||
| updateVulnerabilityAlerts := client.Repositories.DisableVulnerabilityAlerts | ||
| if vulnerabilityAlerts, ok := d.GetOk("vulnerability_alerts"); ok && vulnerabilityAlerts.(bool) { | ||
|
There was a problem hiding this comment. Not new behavior, but this treats the absense of That is not true when a global org-level policy enables vulnerability alerts by default. Is this desirable behavior? There was a problem hiding this comment. @Lekensteyn this is a pattern used throughout the provider, the |
||
| updateVulnerabilityAlerts = client.Repositories.EnableVulnerabilityAlerts | ||
| } | ||
|
|
||
| _, err := updateVulnerabilityAlerts(ctx, owner, repoName) | ||
| return err | ||
| } | ||
Oops, something went wrong.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
According to the documentation, "
Computedis often used to represent values that are not user configurable or can not be known at time ofterraform planorapply, such as date of creation or a service specific UUID."I suppose that
Computedis appropriate here since it could be enabled by default at the org level.There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
It is also required in combination with
optionalif an optional value will be persisted even if it's not been explicitly set.