add idp settings (#14)

Author: wasaga

example/main.tf

@@ -22,6 +22,10 @@ resource "pomerium_namespace" "test_namespace" {
 
 resource "pomerium_settings" "settings" {
   installation_id = "localhost-dev"
+  identity_provider_okta = {
+    api_key = "key"
+    url     = "http://localhost"
+  }
 }
 
 resource "pomerium_policy" "test_policy" {

go.mod

@@ -4,9 +4,12 @@ go 1.23.0
 
 require (
 	github.com/go-jose/go-jose/v3 v3.0.3
-	github.com/hashicorp/terraform-plugin-framework v1.11.0
-	github.com/hashicorp/terraform-plugin-go v0.23.0
+	github.com/google/go-cmp v0.6.0
+	github.com/hashicorp/terraform-plugin-framework v1.13.0
+	github.com/hashicorp/terraform-plugin-framework-validators v0.16.0
+	github.com/hashicorp/terraform-plugin-go v0.25.0
 	github.com/hashicorp/terraform-plugin-log v0.9.0
+	github.com/iancoleman/strcase v0.3.0
 	github.com/pomerium/enterprise-client-go v0.18.1-0.20241202185750-aab20a674922
 	github.com/pomerium/pomerium v0.28.0
 	github.com/rs/zerolog v1.33.0
@@ -31,7 +34,7 @@ require (
 	github.com/hashicorp/errwrap v1.1.0 // indirect
 	github.com/hashicorp/go-hclog v1.5.0 // indirect
 	github.com/hashicorp/go-multierror v1.1.1 // indirect
-	github.com/hashicorp/go-plugin v1.6.0 // indirect
+	github.com/hashicorp/go-plugin v1.6.2 // indirect
 	github.com/hashicorp/go-set/v3 v3.0.0 // indirect
 	github.com/hashicorp/go-uuid v1.0.3 // indirect
 	github.com/hashicorp/golang-lru/v2 v2.0.7 // indirect

go.sum

@@ -122,8 +122,8 @@ github.com/hashicorp/go-hclog v1.5.0 h1:bI2ocEMgcVlz55Oj1xZNBsVi900c7II+fWDyV9o+
 github.com/hashicorp/go-hclog v1.5.0/go.mod h1:W4Qnvbt70Wk/zYJryRzDRU/4r0kIg0PVHBcfoyhpF5M=
 github.com/hashicorp/go-multierror v1.1.1 h1:H5DkEtf6CXdFp0N0Em5UCwQpXMWke8IA0+lD48awMYo=
 github.com/hashicorp/go-multierror v1.1.1/go.mod h1:iw975J/qwKPdAO1clOe2L8331t/9/fmwbPZ6JB6eMoM=
-github.com/hashicorp/go-plugin v1.6.0 h1:wgd4KxHJTVGGqWBq4QPB1i5BZNEx9BR8+OFmHDmTk8A=
-github.com/hashicorp/go-plugin v1.6.0/go.mod h1:lBS5MtSSBZk0SHc66KACcjjlU6WzEVP/8pwz68aMkCI=
+github.com/hashicorp/go-plugin v1.6.2 h1:zdGAEd0V1lCaU0u+MxWQhtSDQmahpkwOun8U8EiRVog=
+github.com/hashicorp/go-plugin v1.6.2/go.mod h1:CkgLQ5CZqNmdL9U9JzM532t8ZiYQ35+pj3b1FD37R0Q=
 github.com/hashicorp/go-set/v3 v3.0.0 h1:CaJBQvQCOWoftrBcDt7Nwgo0kdpmrKxar/x2o6pV9JA=
 github.com/hashicorp/go-set/v3 v3.0.0/go.mod h1:IEghM2MpE5IaNvL+D7X480dfNtxjRXZ6VMpK3C8s2ok=
 github.com/hashicorp/go-uuid v1.0.3 h1:2gKiV6YVmrJ1i2CKKa9obLvRieoRGviZFL26PcT/Co8=
@@ -132,10 +132,12 @@ github.com/hashicorp/golang-lru/v2 v2.0.7 h1:a+bsQ5rvGLjzHuww6tVxozPZFVghXaHOwFs
 github.com/hashicorp/golang-lru/v2 v2.0.7/go.mod h1:QeFd9opnmA6QUJc5vARoKUSoFhyfM2/ZepoAG6RGpeM=
 github.com/hashicorp/hcl v1.0.0 h1:0Anlzjpi4vEasTeNFn2mLJgTSwt0+6sfsiTG8qcWGx4=
 github.com/hashicorp/hcl v1.0.0/go.mod h1:E5yfLk+7swimpb2L/Alb/PJmXilQ/rhwaUYs4T20WEQ=
-github.com/hashicorp/terraform-plugin-framework v1.11.0 h1:M7+9zBArexHFXDx/pKTxjE6n/2UCXY6b8FIq9ZYhwfE=
-github.com/hashicorp/terraform-plugin-framework v1.11.0/go.mod h1:qBXLDn69kM97NNVi/MQ9qgd1uWWsVftGSnygYG1tImM=
-github.com/hashicorp/terraform-plugin-go v0.23.0 h1:AALVuU1gD1kPb48aPQUjug9Ir/125t+AAurhqphJ2Co=
-github.com/hashicorp/terraform-plugin-go v0.23.0/go.mod h1:1E3Cr9h2vMlahWMbsSEcNrOCxovCZhOOIXjFHbjc/lQ=
+github.com/hashicorp/terraform-plugin-framework v1.13.0 h1:8OTG4+oZUfKgnfTdPTJwZ532Bh2BobF4H+yBiYJ/scw=
+github.com/hashicorp/terraform-plugin-framework v1.13.0/go.mod h1:j64rwMGpgM3NYXTKuxrCnyubQb/4VKldEKlcG8cvmjU=
+github.com/hashicorp/terraform-plugin-framework-validators v0.16.0 h1:O9QqGoYDzQT7lwTXUsZEtgabeWW96zUBh47Smn2lkFA=
+github.com/hashicorp/terraform-plugin-framework-validators v0.16.0/go.mod h1:Bh89/hNmqsEWug4/XWKYBwtnw3tbz5BAy1L1OgvbIaY=
+github.com/hashicorp/terraform-plugin-go v0.25.0 h1:oi13cx7xXA6QciMcpcFi/rwA974rdTxjqEhXJjbAyks=
+github.com/hashicorp/terraform-plugin-go v0.25.0/go.mod h1:+SYagMYadJP86Kvn+TGeV+ofr/R3g4/If0O5sO96MVw=
 github.com/hashicorp/terraform-plugin-log v0.9.0 h1:i7hOA+vdAItN1/7UrfBqBwvYPQ9TFvymaRGZED3FCV0=
 github.com/hashicorp/terraform-plugin-log v0.9.0/go.mod h1:rKL8egZQ/eXSyDqzLUuwUYLVdlYeamldAHSxjUFADow=
 github.com/hashicorp/terraform-registry-address v0.2.3 h1:2TAiKJ1A3MAkZlH1YI/aTVcLZRu7JseiXNRHbOAyoTI=
@@ -144,6 +146,8 @@ github.com/hashicorp/terraform-svchost v0.1.1 h1:EZZimZ1GxdqFRinZ1tpJwVxxt49xc/S
 github.com/hashicorp/terraform-svchost v0.1.1/go.mod h1:mNsjQfZyf/Jhz35v6/0LWcv26+X7JPS+buii2c9/ctc=
 github.com/hashicorp/yamux v0.1.1 h1:yrQxtgseBDrq9Y652vSRDvsKCJKOUD+GzTS4Y0Y8pvE=
 github.com/hashicorp/yamux v0.1.1/go.mod h1:CtWFDAQgb7dxtzFs4tWbplKIe2jSi3+5vKbgIO0SLnQ=
+github.com/iancoleman/strcase v0.3.0 h1:nTXanmYxhfFAMjZL34Ov6gkzEsSJZ5DbhxWjvSASxEI=
+github.com/iancoleman/strcase v0.3.0/go.mod h1:iwCmte+B7n89clKwxIoIXy/HfoL7AsD47ZCWhYzw7ho=
 github.com/jackc/pgpassfile v1.0.0 h1:/6Hmqy13Ss2zCq62VdNG8tM1wchn8zjSGOBJ6icpsIM=
 github.com/jackc/pgpassfile v1.0.0/go.mod h1:CEx0iS5ambNFdcRtxPj5JhEz+xB6uRky5eyVu/W2HEg=
 github.com/jackc/pgservicefile v0.0.0-20240606120523-5a60cdf6a761 h1:iCEnooe7UlwOQYpKFhBabPMi4aNAfoODPEFNiAnClxo=

internal/provider/convert.go

@@ -2,13 +2,19 @@ package provider
 
 import (
 	"context"
+	"fmt"
+	"reflect"
 	"time"
 
 	"github.com/hashicorp/terraform-plugin-framework/attr"
 	"github.com/hashicorp/terraform-plugin-framework/diag"
+	"github.com/hashicorp/terraform-plugin-framework/path"
 	"github.com/hashicorp/terraform-plugin-framework/types"
+	"github.com/iancoleman/strcase"
 	"github.com/pomerium/enterprise-client-go/pb"
 	"google.golang.org/protobuf/types/known/durationpb"
+
+	"google.golang.org/protobuf/types/known/structpb"
 )
 
 func FromStringSlice(slice []string) types.List {
@@ -104,3 +110,114 @@ func FromDuration(d *durationpb.Duration) types.String {
 	}
 	return types.StringValue(d.AsDuration().String())
 }
+
+// GoStructToPB converts a Go struct to a protobuf Struct.
+// It only supports protobuf types.String field types
+// Field names are converted to snake_case.
+func GoStructToPB(input interface{}) (*structpb.Struct, error) {
+	if input == nil {
+		return nil, nil
+	}
+
+	val := reflect.ValueOf(input)
+	if val.Kind() != reflect.Struct {
+		return nil, fmt.Errorf("input must be a struct, got %v", val.Kind())
+	}
+
+	fields := make(map[string]*structpb.Value)
+	typ := val.Type()
+
+	typeString := reflect.TypeOf(types.String{})
+	for i := 0; i < typ.NumField(); i++ {
+		field := typ.Field(i)
+		fieldValue := val.Field(i)
+		fieldName := strcase.ToSnake(field.Name)
+
+		if fieldValue.Type() != typeString {
+			return nil, fmt.Errorf("unsupported field type %s for field %s", fieldValue.Type(), fieldName)
+		}
+		protoValue, ok := fieldValue.Interface().(types.String)
+		if !ok {
+			return nil, fmt.Errorf("unexpected type assertion for field %s", fieldName)
+		}
+		if !protoValue.IsNull() {
+			fields[fieldName] = structpb.NewStringValue(protoValue.ValueString())
+		}
+	}
+
+	return &structpb.Struct{Fields: fields}, nil
+}
+
+// PBStructToTF converts a protobuf Struct to a types.Object,
+// by enumerating the `tfsdk` tags on the struct fields.
+// only supports string fields
+func PBStructToTF[T any](
+	dst *types.Object,
+	src *structpb.Struct,
+	diags *diag.Diagnostics,
+) {
+	attrTypes, err := GetTFObjectTypes[T]()
+	if err != nil {
+		diags.AddError("failed to get object types", err.Error())
+		return
+	}
+
+	if src == nil {
+		*dst = types.ObjectNull(attrTypes)
+		return
+	}
+
+	attrs := make(map[string]attr.Value)
+	for k, v := range src.Fields {
+		_, ok := attrTypes[k]
+		if !ok {
+			diags.AddAttributeWarning(
+				path.Root(k),
+				"unexpected field",
+				fmt.Sprintf("unexpected field %s", k),
+			)
+			continue
+		}
+		str, ok := v.GetKind().(*structpb.Value_StringValue)
+		if !ok {
+			diags.AddAttributeError(
+				path.Root(k),
+				"unsupported field type",
+				fmt.Sprintf("%T for field %s", v, k))
+			return
+		}
+		attrs[k] = types.StringValue(str.StringValue)
+	}
+
+	for k := range attrTypes {
+		if _, ok := src.Fields[k]; ok {
+			continue
+		}
+		attrs[k] = types.StringNull()
+	}
+
+	v, d := types.ObjectValue(attrTypes, attrs)
+	diags.Append(d...)
+	if !diags.HasError() {
+		*dst = v
+	}
+}
+
+func GetTFObjectTypes[T any]() (map[string]attr.Type, error) {
+	tm := make(map[string]attr.Type)
+	var v T
+	typ := reflect.TypeOf(v)
+	typeString := reflect.TypeOf(types.String{})
+	for i := 0; i < typ.NumField(); i++ {
+		field := typ.Field(i)
+		if field.Type != typeString {
+			return nil, fmt.Errorf("unsupported field type %s for field %s", field.Type, field.Name)
+		}
+		tfsdkTag := field.Tag.Get("tfsdk")
+		if tfsdkTag == "" {
+			return nil, fmt.Errorf("missing tfsdk tag for field %s", field.Name)
+		}
+		tm[tfsdkTag] = types.StringType
+	}
+	return tm, nil
+}