feat(#208): Added resource cloudtemple_object_storage_storage_account

Author: pbesret

docs/resources/object_storage_storage_account.md

@@ -0,0 +1,64 @@
+---
+# generated by https://github.com/hashicorp/terraform-plugin-docs
+page_title: "cloudtemple_object_storage_storage_account Resource - terraform-provider-cloudtemple"
+subcategory: ""
+description: |-
+  Create and manage object storage storage accounts.
+  To manage this resource you will need the object-storage_iam_management role.
+---
+
+# cloudtemple_object_storage_storage_account (Resource)
+
+Create and manage object storage storage accounts.
+
+To manage this resource you will need the `object-storage_iam_management` role.
+
+## Example Usage
+
+```terraform
+# Create a storage account
+resource "cloudtemple_object_storage_storage_account" "example" {
+  name = "my-storage-account"
+}
+
+# Output the access credentials
+output "access_key_id" {
+  value = cloudtemple_object_storage_storage_account.example.access_key_id
+}
+
+output "access_secret_key" {
+  value     = cloudtemple_object_storage_storage_account.example.access_secret_key
+  sensitive = true
+}
+
+output "arn" {
+  value = cloudtemple_object_storage_storage_account.example.arn
+}
+```
+
+<!-- schema generated by tfplugindocs -->
+## Schema
+
+### Required
+
+- `name` (String) The name of the storage account.
+
+### Read-Only
+
+- `access_key_id` (String) The access key ID of the storage account.
+- `access_secret_key` (String, Sensitive) The secret access key of the storage account. This is only available during creation.
+- `arn` (String) The ARN of the storage account.
+- `create_date` (String) The creation date of the storage account.
+- `id` (String) The ID of the storage account.
+- `path` (String) The path of the storage account.
+- `tags` (List of Object) The tags associated with the storage account. (see [below for nested schema](#nestedatt--tags))
+
+<a id="nestedatt--tags"></a>
+### Nested Schema for `tags`
+
+Read-Only:
+
+- `key` (String)
+- `value` (String)
+
+

examples/resources/cloudtemple_object_storage_storage_account/resource.tf

@@ -0,0 +1,18 @@
+# Create a storage account
+resource "cloudtemple_object_storage_storage_account" "example" {
+  name = "my-storage-account"
+}
+
+# Output the access credentials
+output "access_key_id" {
+  value = cloudtemple_object_storage_storage_account.example.access_key_id
+}
+
+output "access_secret_key" {
+  value     = cloudtemple_object_storage_storage_account.example.access_secret_key
+  sensitive = true
+}
+
+output "arn" {
+  value = cloudtemple_object_storage_storage_account.example.arn
+}

internal/client/object_storage_storage_account.go

@@ -61,3 +61,37 @@ func (c *StorageAccountClient) Read(ctx context.Context, name string) (*StorageA
 
 	return &out, nil
 }
+
+type CreateStorageAccountRequest struct {
+	Name string `json:"name"`
+}
+
+type CreateStorageAccountResponse struct {
+	AccessKeyID     string `json:"accessKeyId"`
+	SecretAccessKey string `json:"secretAccessKey"`
+}
+
+func (c *StorageAccountClient) Create(ctx context.Context, req *CreateStorageAccountRequest) (*CreateStorageAccountResponse, error) {
+	r := c.c.newRequest("POST", "/object-storage/v1/storage_accounts")
+	r.obj = req
+	resp, err := c.c.doRequest(ctx, r)
+	if err != nil {
+		return nil, err
+	}
+	defer closeResponseBody(resp)
+	if err := requireOK(resp); err != nil {
+		return nil, err
+	}
+
+	var out CreateStorageAccountResponse
+	if err := decodeBody(resp, &out); err != nil {
+		return nil, err
+	}
+
+	return &out, nil
+}
+
+func (c *StorageAccountClient) Delete(ctx context.Context, name string) (string, error) {
+	r := c.c.newRequest("DELETE", "/object-storage/v1/storage_accounts/%s", name)
+	return c.c.doRequestAndReturnActivity(ctx, r)
+}

internal/provider/provider.go

@@ -184,7 +184,8 @@ func New(version string) func() *schema.Provider {
 				"cloudtemple_compute_iaas_opensource_replication_policy": documentResource(resourceOpenIaasReplicationPolicy(), "compute_iaas_opensource_management", "compute_iaas_opensource_read", "activity_read"),
 
 				// Object Storage
-				"cloudtemple_object_storage_bucket": documentResource(resourceBucket(), "object-storage_write", "object-storage_read"),
+				"cloudtemple_object_storage_bucket":          documentResource(resourceBucket(), "object-storage_write", "object-storage_read"),
+				"cloudtemple_object_storage_storage_account": documentResource(resourceStorageAccount(), "object-storage_iam_management"),
 			},
 		}
 

internal/provider/resource_object_storage_storage_account.go

@@ -0,0 +1,153 @@
+package provider
+
+import (
+	"context"
+
+	"github.com/cloud-temple/terraform-provider-cloudtemple/internal/client"
+	"github.com/cloud-temple/terraform-provider-cloudtemple/internal/provider/helpers"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/diag"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
+)
+
+func resourceStorageAccount() *schema.Resource {
+	return &schema.Resource{
+		Description: "Create and manage object storage storage accounts.",
+
+		CreateContext: objectStorageStorageAccountCreate,
+		ReadContext:   objectStorageStorageAccountRead,
+		DeleteContext: objectStorageStorageAccountDelete,
+		Importer: &schema.ResourceImporter{
+			StateContext: schema.ImportStatePassthroughContext,
+		},
+
+		Schema: map[string]*schema.Schema{
+			// In
+			"name": {
+				Type:        schema.TypeString,
+				Required:    true,
+				ForceNew:    true,
+				Description: "The name of the storage account.",
+			},
+
+			// Out
+			"id": {
+				Type:        schema.TypeString,
+				Computed:    true,
+				Description: "The ID of the storage account.",
+			},
+			"access_key_id": {
+				Type:        schema.TypeString,
+				Computed:    true,
+				Description: "The access key ID of the storage account.",
+			},
+			"access_secret_key": {
+				Type:        schema.TypeString,
+				Computed:    true,
+				Sensitive:   true,
+				Description: "The secret access key of the storage account. This is only available during creation.",
+			},
+			"arn": {
+				Type:        schema.TypeString,
+				Computed:    true,
+				Description: "The ARN of the storage account.",
+			},
+			"create_date": {
+				Type:        schema.TypeString,
+				Computed:    true,
+				Description: "The creation date of the storage account.",
+			},
+			"path": {
+				Type:        schema.TypeString,
+				Computed:    true,
+				Description: "The path of the storage account.",
+			},
+			"tags": {
+				Type:        schema.TypeList,
+				Computed:    true,
+				Description: "The tags associated with the storage account.",
+				Elem: &schema.Resource{
+					Schema: map[string]*schema.Schema{
+						"key": {
+							Type:     schema.TypeString,
+							Computed: true,
+						},
+						"value": {
+							Type:     schema.TypeString,
+							Computed: true,
+						},
+					},
+				},
+			},
+		},
+	}
+}
+
+func objectStorageStorageAccountCreate(ctx context.Context, d *schema.ResourceData, meta any) diag.Diagnostics {
+	c := getClient(meta)
+
+	createResp, err := c.ObjectStorage().StorageAccount().Create(ctx, &client.CreateStorageAccountRequest{
+		Name: d.Get("name").(string),
+	})
+	if err != nil {
+		return diag.Errorf("failed to create storage account: %s", err)
+	}
+
+	// Set ID - the name is the ID
+	d.SetId(d.Get("name").(string))
+
+	// Set the sensitive keys from creation response
+	d.Set("access_key_id", createResp.AccessKeyID)
+	d.Set("access_secret_key", createResp.SecretAccessKey)
+
+	return objectStorageStorageAccountRead(ctx, d, meta)
+}
+
+func objectStorageStorageAccountRead(ctx context.Context, d *schema.ResourceData, meta any) diag.Diagnostics {
+	c := getClient(meta)
+	var diags diag.Diagnostics
+
+	storageAccount, err := c.ObjectStorage().StorageAccount().Read(ctx, d.Id())
+	if err != nil {
+		return diag.Errorf("failed to read storage account: %s", err)
+	}
+	if storageAccount == nil {
+		d.SetId("")
+		return nil
+	}
+
+	// Use helper to flatten the storage account data
+	storageAccountData := helpers.FlattenStorageAccount(storageAccount)
+
+	// Add tags
+	tags := make([]map[string]interface{}, len(storageAccount.Tags))
+	for i, tag := range storageAccount.Tags {
+		tags[i] = map[string]interface{}{
+			"key":   tag.Key,
+			"value": tag.Value,
+		}
+	}
+	storageAccountData["tags"] = tags
+
+	// Set all data in state (except sensitive keys which are only available at creation)
+	for k, v := range storageAccountData {
+		if err := d.Set(k, v); err != nil {
+			return diag.FromErr(err)
+		}
+	}
+
+	return diags
+}
+
+func objectStorageStorageAccountDelete(ctx context.Context, d *schema.ResourceData, meta any) diag.Diagnostics {
+	c := getClient(meta)
+
+	activityId, err := c.ObjectStorage().StorageAccount().Delete(ctx, d.Id())
+	if err != nil {
+		return diag.Errorf("failed to delete storage account: %s", err)
+	}
+	if _, err := c.Activity().WaitForCompletion(ctx, activityId, getWaiterOptions(ctx)); err != nil {
+		return diag.Errorf("failed to delete storage account: %s", err)
+	}
+
+	return nil
+}

internal/provider/tests/resource_object_storage_storage_account_test.go

@@ -0,0 +1,31 @@
+package provider
+
+import (
+	"testing"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/resource"
+)
+
+func TestAccResourceObjectStorageStorageAccount_Basic(t *testing.T) {
+	resource.Test(t, resource.TestCase{
+		PreCheck:          func() { testAccPreCheck(t) },
+		ProviderFactories: providerFactories,
+		Steps: []resource.TestStep{
+			{
+				Config: testAccResourceObjectStorageStorageAccountBasic,
+				Check: resource.ComposeAggregateTestCheckFunc(
+					resource.TestCheckResourceAttr("cloudtemple_object_storage_storage_account.test", "name", "terraform-test-storage-account"),
+					resource.TestCheckResourceAttrSet("cloudtemple_object_storage_storage_account.test", "id"),
+					resource.TestCheckResourceAttrSet("cloudtemple_object_storage_storage_account.test", "access_key_id"),
+					resource.TestCheckResourceAttrSet("cloudtemple_object_storage_storage_account.test", "access_secret_key"),
+				),
+			},
+		},
+	})
+}
+
+const testAccResourceObjectStorageStorageAccountBasic = `
+resource "cloudtemple_object_storage_storage_account" "test" {
+  name = "terraform-test-storage-account"
+}
+`