v6.2.0/google-beta/services/compute/resource_compute_region_ssl_certificate.go - terraform-provider-google-beta - Git at Google

 // Copyright (c) HashiCorp, Inc.
 // SPDX-License-Identifier: MPL-2.0

 // ----------------------------------------------------------------------------
 //
 //     ***     AUTO GENERATED CODE    ***    Type: MMv1     ***
 //
 // ----------------------------------------------------------------------------
 //
 //     This file is automatically generated by Magic Modules and manual
 //     changes will be clobbered when the file is regenerated.
 //
 //     Please read more about how to change this file in
 //     .github/CONTRIBUTING.md.
 //
 // ----------------------------------------------------------------------------

 package compute

 import (
 	"crypto/sha256"
 	"encoding/hex"
 	"fmt"
 	"log"
 	"net/http"
 	"reflect"
 	"time"

 	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/customdiff"
 	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/id"
 	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"

 	"github.com/hashicorp/terraform-provider-google-beta/google-beta/tpgresource"
 	transport_tpg "github.com/hashicorp/terraform-provider-google-beta/google-beta/transport"
 	"github.com/hashicorp/terraform-provider-google-beta/google-beta/verify"
 )

 // sha256DiffSuppress
 // if old is the hex-encoded sha256 sum of new, treat them as equal
 func sha256DiffSuppress(_, old, new string, _ *schema.ResourceData) bool {
 	return hex.EncodeToString(sha256.New().Sum([]byte(old))) == new
 }

 func ResourceComputeRegionSslCertificate() *schema.Resource {
 	return &schema.Resource{
 		Create: resourceComputeRegionSslCertificateCreate,
 		Read:   resourceComputeRegionSslCertificateRead,
 		Delete: resourceComputeRegionSslCertificateDelete,

 		Importer: &schema.ResourceImporter{
 			State: resourceComputeRegionSslCertificateImport,
 		},

 		Timeouts: &schema.ResourceTimeout{
 			Create: schema.DefaultTimeout(20 * time.Minute),
 			Delete: schema.DefaultTimeout(20 * time.Minute),
 		},

 		CustomizeDiff: customdiff.All(
 			tpgresource.DefaultProviderProject,
 		),

 		Schema: map[string]*schema.Schema{
 			"certificate": {
 				Type:     schema.TypeString,
 				Required: true,
 				ForceNew: true,
 				Description: `The certificate in PEM format.
 The certificate chain must be no greater than 5 certs long.
 The chain must include at least one intermediate cert.`,
 				Sensitive: true,
 			},
 			"private_key": {
 				Type:             schema.TypeString,
 				Required:         true,
 				ForceNew:         true,
 				DiffSuppressFunc: sha256DiffSuppress,
 				Description:      `The write-only private key in PEM format.`,
 				Sensitive:        true,
 			},
 			"description": {
 				Type:        schema.TypeString,
 				Optional:    true,
 				ForceNew:    true,
 				Description: `An optional description of this resource.`,
 			},
 			"name": {
 				Type:         schema.TypeString,
 				Computed:     true,
 				Optional:     true,
 				ForceNew:     true,
 				ValidateFunc: verify.ValidateGCEName,
 				Description: `Name of the resource. Provided by the client when the resource is
 created. The name must be 1-63 characters long, and comply with
 RFC1035. Specifically, the name must be 1-63 characters long and match
 the regular expression '[a-z]([-a-z0-9]*[a-z0-9])?' which means the
 first character must be a lowercase letter, and all following
 characters must be a dash, lowercase letter, or digit, except the last
 character, which cannot be a dash.

 These are in the same namespace as the managed SSL certificates.`,
 			},
 			"region": {
 				Type:             schema.TypeString,
 				Computed:         true,
 				Optional:         true,
 				ForceNew:         true,
 				DiffSuppressFunc: tpgresource.CompareSelfLinkOrResourceName,
 				Description: `The Region in which the created regional ssl certificate should reside.
 If it is not provided, the provider region is used.`,
 			},
 			"certificate_id": {
 				Type:        schema.TypeInt,
 				Computed:    true,
 				Description: `The unique identifier for the resource.`,
 			},
 			"creation_timestamp": {
 				Type:        schema.TypeString,
 				Computed:    true,
 				Description: `Creation timestamp in RFC3339 text format.`,
 			},
 			"expire_time": {
 				Type:        schema.TypeString,
 				Computed:    true,
 				Description: `Expire time of the certificate in RFC3339 text format.`,
 			},
 			"name_prefix": {
 				Type:          schema.TypeString,
 				Optional:      true,
 				Computed:      true,
 				ForceNew:      true,
 				ConflictsWith: []string{"name"},
 				Description:   "Creates a unique name beginning with the specified prefix. Conflicts with name.",
 				ValidateFunc: func(v interface{}, k string) (ws []string, errors []error) {
 					// https://cloud.google.com/compute/docs/reference/latest/sslCertificates#resource
 					// uuid is 9 characters, limit the prefix to 54.
 					value := v.(string)
 					if len(value) > 54 {
 						errors = append(errors, fmt.Errorf(
 							"%q cannot be longer than 54 characters, name is limited to 63", k))
 					}
 					return
 				},
 			},
 			"project": {
 				Type:     schema.TypeString,
 				Optional: true,
 				Computed: true,
 				ForceNew: true,
 			},
 			"self_link": {
 				Type:     schema.TypeString,
 				Computed: true,
 			},
 		},
 		UseJSONNumber: true,
 	}
 }

 func resourceComputeRegionSslCertificateCreate(d *schema.ResourceData, meta interface{}) error {
 	config := meta.(*transport_tpg.Config)
 	userAgent, err := tpgresource.GenerateUserAgentString(d, config.UserAgent)
 	if err != nil {
 		return err
 	}

 	obj := make(map[string]interface{})
 	certificateProp, err := expandComputeRegionSslCertificateCertificate(d.Get("certificate"), d, config)
 	if err != nil {
 		return err
 	} else if v, ok := d.GetOkExists("certificate"); !tpgresource.IsEmptyValue(reflect.ValueOf(certificateProp)) && (ok || !reflect.DeepEqual(v, certificateProp)) {
 		obj["certificate"] = certificateProp
 	}
 	descriptionProp, err := expandComputeRegionSslCertificateDescription(d.Get("description"), d, config)
 	if err != nil {
 		return err
 	} else if v, ok := d.GetOkExists("description"); !tpgresource.IsEmptyValue(reflect.ValueOf(descriptionProp)) && (ok || !reflect.DeepEqual(v, descriptionProp)) {
 		obj["description"] = descriptionProp
 	}
 	nameProp, err := expandComputeRegionSslCertificateName(d.Get("name"), d, config)
 	if err != nil {
 		return err
 	} else if v, ok := d.GetOkExists("name"); !tpgresource.IsEmptyValue(reflect.ValueOf(nameProp)) && (ok || !reflect.DeepEqual(v, nameProp)) {
 		obj["name"] = nameProp
 	}
 	privateKeyProp, err := expandComputeRegionSslCertificatePrivateKey(d.Get("private_key"), d, config)
 	if err != nil {
 		return err
 	} else if v, ok := d.GetOkExists("private_key"); !tpgresource.IsEmptyValue(reflect.ValueOf(privateKeyProp)) && (ok || !reflect.DeepEqual(v, privateKeyProp)) {
 		obj["privateKey"] = privateKeyProp
 	}
 	regionProp, err := expandComputeRegionSslCertificateRegion(d.Get("region"), d, config)
 	if err != nil {
 		return err
 	} else if v, ok := d.GetOkExists("region"); !tpgresource.IsEmptyValue(reflect.ValueOf(regionProp)) && (ok || !reflect.DeepEqual(v, regionProp)) {
 		obj["region"] = regionProp
 	}

 	url, err := tpgresource.ReplaceVars(d, config, "{{ComputeBasePath}}projects/{{project}}/regions/{{region}}/sslCertificates")
 	if err != nil {
 		return err
 	}

 	log.Printf("[DEBUG] Creating new RegionSslCertificate: %#v", obj)
 	billingProject := ""

 	project, err := tpgresource.GetProject(d, config)
 	if err != nil {
 		return fmt.Errorf("Error fetching project for RegionSslCertificate: %s", err)
 	}
 	billingProject = project

 	// err == nil indicates that the billing_project value was found
 	if bp, err := tpgresource.GetBillingProject(d, config); err == nil {
 		billingProject = bp
 	}

 	headers := make(http.Header)
 	res, err := transport_tpg.SendRequest(transport_tpg.SendRequestOptions{
 		Config:    config,
 		Method:    "POST",
 		Project:   billingProject,
 		RawURL:    url,
 		UserAgent: userAgent,
 		Body:      obj,
 		Timeout:   d.Timeout(schema.TimeoutCreate),
 		Headers:   headers,
 	})
 	if err != nil {
 		return fmt.Errorf("Error creating RegionSslCertificate: %s", err)
 	}

 	// Store the ID now
 	id, err := tpgresource.ReplaceVars(d, config, "projects/{{project}}/regions/{{region}}/sslCertificates/{{name}}")
 	if err != nil {
 		return fmt.Errorf("Error constructing id: %s", err)
 	}
 	d.SetId(id)

 	err = ComputeOperationWaitTime(
 		config, res, project, "Creating RegionSslCertificate", userAgent,
 		d.Timeout(schema.TimeoutCreate))

 	if err != nil {
 		// The resource didn't actually create
 		d.SetId("")
 		return fmt.Errorf("Error waiting to create RegionSslCertificate: %s", err)
 	}

 	log.Printf("[DEBUG] Finished creating RegionSslCertificate %q: %#v", d.Id(), res)

 	return resourceComputeRegionSslCertificateRead(d, meta)
 }

 func resourceComputeRegionSslCertificateRead(d *schema.ResourceData, meta interface{}) error {
 	config := meta.(*transport_tpg.Config)
 	userAgent, err := tpgresource.GenerateUserAgentString(d, config.UserAgent)
 	if err != nil {
 		return err
 	}

 	url, err := tpgresource.ReplaceVars(d, config, "{{ComputeBasePath}}projects/{{project}}/regions/{{region}}/sslCertificates/{{name}}")
 	if err != nil {
 		return err
 	}

 	billingProject := ""

 	project, err := tpgresource.GetProject(d, config)
 	if err != nil {
 		return fmt.Errorf("Error fetching project for RegionSslCertificate: %s", err)
 	}
 	billingProject = project

 	// err == nil indicates that the billing_project value was found
 	if bp, err := tpgresource.GetBillingProject(d, config); err == nil {
 		billingProject = bp
 	}

 	headers := make(http.Header)
 	res, err := transport_tpg.SendRequest(transport_tpg.SendRequestOptions{
 		Config:    config,
 		Method:    "GET",
 		Project:   billingProject,
 		RawURL:    url,
 		UserAgent: userAgent,
 		Headers:   headers,
 	})
 	if err != nil {
 		return transport_tpg.HandleNotFoundError(err, d, fmt.Sprintf("ComputeRegionSslCertificate %q", d.Id()))
 	}

 	if err := d.Set("project", project); err != nil {
 		return fmt.Errorf("Error reading RegionSslCertificate: %s", err)
 	}

 	if err := d.Set("certificate", flattenComputeRegionSslCertificateCertificate(res["certificate"], d, config)); err != nil {
 		return fmt.Errorf("Error reading RegionSslCertificate: %s", err)
 	}
 	if err := d.Set("creation_timestamp", flattenComputeRegionSslCertificateCreationTimestamp(res["creationTimestamp"], d, config)); err != nil {
 		return fmt.Errorf("Error reading RegionSslCertificate: %s", err)
 	}
 	if err := d.Set("description", flattenComputeRegionSslCertificateDescription(res["description"], d, config)); err != nil {
 		return fmt.Errorf("Error reading RegionSslCertificate: %s", err)
 	}
 	if err := d.Set("expire_time", flattenComputeRegionSslCertificateExpireTime(res["expireTime"], d, config)); err != nil {
 		return fmt.Errorf("Error reading RegionSslCertificate: %s", err)
 	}
 	if err := d.Set("certificate_id", flattenComputeRegionSslCertificateCertificateId(res["id"], d, config)); err != nil {
 		return fmt.Errorf("Error reading RegionSslCertificate: %s", err)
 	}
 	if err := d.Set("name", flattenComputeRegionSslCertificateName(res["name"], d, config)); err != nil {
 		return fmt.Errorf("Error reading RegionSslCertificate: %s", err)
 	}
 	if err := d.Set("region", flattenComputeRegionSslCertificateRegion(res["region"], d, config)); err != nil {
 		return fmt.Errorf("Error reading RegionSslCertificate: %s", err)
 	}
 	if err := d.Set("self_link", tpgresource.ConvertSelfLinkToV1(res["selfLink"].(string))); err != nil {
 		return fmt.Errorf("Error reading RegionSslCertificate: %s", err)
 	}

 	return nil
 }

 func resourceComputeRegionSslCertificateDelete(d *schema.ResourceData, meta interface{}) error {
 	config := meta.(*transport_tpg.Config)
 	userAgent, err := tpgresource.GenerateUserAgentString(d, config.UserAgent)
 	if err != nil {
 		return err
 	}

 	billingProject := ""

 	project, err := tpgresource.GetProject(d, config)
 	if err != nil {
 		return fmt.Errorf("Error fetching project for RegionSslCertificate: %s", err)
 	}
 	billingProject = project

 	url, err := tpgresource.ReplaceVars(d, config, "{{ComputeBasePath}}projects/{{project}}/regions/{{region}}/sslCertificates/{{name}}")
 	if err != nil {
 		return err
 	}

 	var obj map[string]interface{}

 	// err == nil indicates that the billing_project value was found
 	if bp, err := tpgresource.GetBillingProject(d, config); err == nil {
 		billingProject = bp
 	}

 	headers := make(http.Header)

 	log.Printf("[DEBUG] Deleting RegionSslCertificate %q", d.Id())
 	res, err := transport_tpg.SendRequest(transport_tpg.SendRequestOptions{
 		Config:    config,
 		Method:    "DELETE",
 		Project:   billingProject,
 		RawURL:    url,
 		UserAgent: userAgent,
 		Body:      obj,
 		Timeout:   d.Timeout(schema.TimeoutDelete),
 		Headers:   headers,
 	})
 	if err != nil {
 		return transport_tpg.HandleNotFoundError(err, d, "RegionSslCertificate")
 	}

 	err = ComputeOperationWaitTime(
 		config, res, project, "Deleting RegionSslCertificate", userAgent,
 		d.Timeout(schema.TimeoutDelete))

 	if err != nil {
 		return err
 	}

 	log.Printf("[DEBUG] Finished deleting RegionSslCertificate %q: %#v", d.Id(), res)
 	return nil
 }

 func resourceComputeRegionSslCertificateImport(d *schema.ResourceData, meta interface{}) ([]*schema.ResourceData, error) {
 	config := meta.(*transport_tpg.Config)
 	if err := tpgresource.ParseImportId([]string{
 		"^projects/(?P<project>[^/]+)/regions/(?P<region>[^/]+)/sslCertificates/(?P<name>[^/]+)$",
 		"^(?P<project>[^/]+)/(?P<region>[^/]+)/(?P<name>[^/]+)$",
 		"^(?P<region>[^/]+)/(?P<name>[^/]+)$",
 		"^(?P<name>[^/]+)$",
 	}, d, config); err != nil {
 		return nil, err
 	}

 	// Replace import id for the resource id
 	id, err := tpgresource.ReplaceVars(d, config, "projects/{{project}}/regions/{{region}}/sslCertificates/{{name}}")
 	if err != nil {
 		return nil, fmt.Errorf("Error constructing id: %s", err)
 	}
 	d.SetId(id)

 	return []*schema.ResourceData{d}, nil
 }

 func flattenComputeRegionSslCertificateCertificate(v interface{}, d *schema.ResourceData, config *transport_tpg.Config) interface{} {
 	return v
 }

 func flattenComputeRegionSslCertificateCreationTimestamp(v interface{}, d *schema.ResourceData, config *transport_tpg.Config) interface{} {
 	return v
 }

 func flattenComputeRegionSslCertificateDescription(v interface{}, d *schema.ResourceData, config *transport_tpg.Config) interface{} {
 	return v
 }

 func flattenComputeRegionSslCertificateExpireTime(v interface{}, d *schema.ResourceData, config *transport_tpg.Config) interface{} {
 	return v
 }

 func flattenComputeRegionSslCertificateCertificateId(v interface{}, d *schema.ResourceData, config *transport_tpg.Config) interface{} {
 	// Handles the string fixed64 format
 	if strVal, ok := v.(string); ok {
 		if intVal, err := tpgresource.StringToFixed64(strVal); err == nil {
 			return intVal
 		}
 	}

 	// number values are represented as float64
 	if floatVal, ok := v.(float64); ok {
 		intVal := int(floatVal)
 		return intVal
 	}

 	return v // let terraform core handle it otherwise
 }

 func flattenComputeRegionSslCertificateName(v interface{}, d *schema.ResourceData, config *transport_tpg.Config) interface{} {
 	return v
 }

 func flattenComputeRegionSslCertificateRegion(v interface{}, d *schema.ResourceData, config *transport_tpg.Config) interface{} {
 	if v == nil {
 		return v
 	}
 	return tpgresource.NameFromSelfLinkStateFunc(v)
 }

 func expandComputeRegionSslCertificateCertificate(v interface{}, d tpgresource.TerraformResourceData, config *transport_tpg.Config) (interface{}, error) {
 	return v, nil
 }

 func expandComputeRegionSslCertificateDescription(v interface{}, d tpgresource.TerraformResourceData, config *transport_tpg.Config) (interface{}, error) {
 	return v, nil
 }

 func expandComputeRegionSslCertificateName(v interface{}, d tpgresource.TerraformResourceData, config *transport_tpg.Config) (interface{}, error) {
 	var certName string
 	if v, ok := d.GetOk("name"); ok {
 		certName = v.(string)
 	} else if v, ok := d.GetOk("name_prefix"); ok {
 		prefix := v.(string)
 		if len(prefix) > 37 {
 			certName = tpgresource.ReducedPrefixedUniqueId(prefix)
 		} else {
 			certName = id.PrefixedUniqueId(prefix)
 		}
 	} else {
 		certName = id.UniqueId()
 	}

 	// We need to get the {{name}} into schema to set the ID using tpgresource.ReplaceVars
 	if err := d.Set("name", certName); err != nil {
 		return nil, fmt.Errorf("Error setting name: %s", err)
 	}

 	return certName, nil
 }

 func expandComputeRegionSslCertificatePrivateKey(v interface{}, d tpgresource.TerraformResourceData, config *transport_tpg.Config) (interface{}, error) {
 	return v, nil
 }

 func expandComputeRegionSslCertificateRegion(v interface{}, d tpgresource.TerraformResourceData, config *transport_tpg.Config) (interface{}, error) {
 	f, err := tpgresource.ParseGlobalFieldValue("regions", v.(string), "project", d, config, true)
 	if err != nil {
 		return nil, fmt.Errorf("Invalid value for region: %s", err)
 	}
 	return f.RelativeLink(), nil
 }
	// Copyright (c) HashiCorp, Inc.
	// SPDX-License-Identifier: MPL-2.0

	// ----------------------------------------------------------------------------
	//
	// * AUTO GENERATED CODE * Type: MMv1 ***
	//
	// ----------------------------------------------------------------------------
	//
	// This file is automatically generated by Magic Modules and manual
	// changes will be clobbered when the file is regenerated.
	//
	// Please read more about how to change this file in
	// .github/CONTRIBUTING.md.
	//
	// ----------------------------------------------------------------------------

	package compute

	import (
	"crypto/sha256"
	"encoding/hex"
	"fmt"
	"log"
	"net/http"
	"reflect"
	"time"

	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/customdiff"
	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/id"
	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"

	"github.com/hashicorp/terraform-provider-google-beta/google-beta/tpgresource"
	transport_tpg "github.com/hashicorp/terraform-provider-google-beta/google-beta/transport"
	"github.com/hashicorp/terraform-provider-google-beta/google-beta/verify"
	)

	// sha256DiffSuppress
	// if old is the hex-encoded sha256 sum of new, treat them as equal
	func sha256DiffSuppress(_, old, new string, _ *schema.ResourceData) bool {
	return hex.EncodeToString(sha256.New().Sum([]byte(old))) == new
	}

	func ResourceComputeRegionSslCertificate() *schema.Resource {
	return &schema.Resource{
	Create: resourceComputeRegionSslCertificateCreate,
	Read: resourceComputeRegionSslCertificateRead,
	Delete: resourceComputeRegionSslCertificateDelete,

	Importer: &schema.ResourceImporter{
	State: resourceComputeRegionSslCertificateImport,
	},

	Timeouts: &schema.ResourceTimeout{
	Create: schema.DefaultTimeout(20 * time.Minute),
	Delete: schema.DefaultTimeout(20 * time.Minute),
	},

	CustomizeDiff: customdiff.All(
	tpgresource.DefaultProviderProject,
	),

	Schema: map[string]*schema.Schema{
	"certificate": {
	Type: schema.TypeString,
	Required: true,
	ForceNew: true,
	Description: `The certificate in PEM format.
	The certificate chain must be no greater than 5 certs long.
	The chain must include at least one intermediate cert.`,
	Sensitive: true,
	},
	"private_key": {
	Type: schema.TypeString,
	Required: true,
	ForceNew: true,
	DiffSuppressFunc: sha256DiffSuppress,
	Description: `The write-only private key in PEM format.`,
	Sensitive: true,
	},
	"description": {
	Type: schema.TypeString,
	Optional: true,
	ForceNew: true,
	Description: `An optional description of this resource.`,
	},
	"name": {
	Type: schema.TypeString,
	Computed: true,
	Optional: true,
	ForceNew: true,
	ValidateFunc: verify.ValidateGCEName,
	Description: `Name of the resource. Provided by the client when the resource is
	created. The name must be 1-63 characters long, and comply with
	RFC1035. Specifically, the name must be 1-63 characters long and match
	the regular expression '[a-z]([-a-z0-9]*[a-z0-9])?' which means the
	first character must be a lowercase letter, and all following
	characters must be a dash, lowercase letter, or digit, except the last
	character, which cannot be a dash.

	These are in the same namespace as the managed SSL certificates.`,
	},
	"region": {
	Type: schema.TypeString,
	Computed: true,
	Optional: true,
	ForceNew: true,
	DiffSuppressFunc: tpgresource.CompareSelfLinkOrResourceName,
	Description: `The Region in which the created regional ssl certificate should reside.
	If it is not provided, the provider region is used.`,
	},
	"certificate_id": {
	Type: schema.TypeInt,
	Computed: true,
	Description: `The unique identifier for the resource.`,
	},
	"creation_timestamp": {
	Type: schema.TypeString,
	Computed: true,
	Description: `Creation timestamp in RFC3339 text format.`,
	},
	"expire_time": {
	Type: schema.TypeString,
	Computed: true,
	Description: `Expire time of the certificate in RFC3339 text format.`,
	},
	"name_prefix": {
	Type: schema.TypeString,
	Optional: true,
	Computed: true,
	ForceNew: true,
	ConflictsWith: []string{"name"},
	Description: "Creates a unique name beginning with the specified prefix. Conflicts with name.",
	ValidateFunc: func(v interface{}, k string) (ws []string, errors []error) {
	// https://cloud.google.com/compute/docs/reference/latest/sslCertificates#resource
	// uuid is 9 characters, limit the prefix to 54.
	value := v.(string)
	if len(value) > 54 {
	errors = append(errors, fmt.Errorf(
	"%q cannot be longer than 54 characters, name is limited to 63", k))
	}
	return
	},
	},
	"project": {
	Type: schema.TypeString,
	Optional: true,
	Computed: true,
	ForceNew: true,
	},
	"self_link": {
	Type: schema.TypeString,
	Computed: true,
	},
	},
	UseJSONNumber: true,
	}
	}

	func resourceComputeRegionSslCertificateCreate(d *schema.ResourceData, meta interface{}) error {
	config := meta.(*transport_tpg.Config)
	userAgent, err := tpgresource.GenerateUserAgentString(d, config.UserAgent)
	if err != nil {
	return err
	}

	obj := make(map[string]interface{})
	certificateProp, err := expandComputeRegionSslCertificateCertificate(d.Get("certificate"), d, config)
	if err != nil {
	return err
	} else if v, ok := d.GetOkExists("certificate"); !tpgresource.IsEmptyValue(reflect.ValueOf(certificateProp)) && (ok \|\| !reflect.DeepEqual(v, certificateProp)) {
	obj["certificate"] = certificateProp
	}
	descriptionProp, err := expandComputeRegionSslCertificateDescription(d.Get("description"), d, config)
	if err != nil {
	return err
	} else if v, ok := d.GetOkExists("description"); !tpgresource.IsEmptyValue(reflect.ValueOf(descriptionProp)) && (ok \|\| !reflect.DeepEqual(v, descriptionProp)) {
	obj["description"] = descriptionProp
	}
	nameProp, err := expandComputeRegionSslCertificateName(d.Get("name"), d, config)
	if err != nil {
	return err
	} else if v, ok := d.GetOkExists("name"); !tpgresource.IsEmptyValue(reflect.ValueOf(nameProp)) && (ok \|\| !reflect.DeepEqual(v, nameProp)) {
	obj["name"] = nameProp
	}
	privateKeyProp, err := expandComputeRegionSslCertificatePrivateKey(d.Get("private_key"), d, config)
	if err != nil {
	return err
	} else if v, ok := d.GetOkExists("private_key"); !tpgresource.IsEmptyValue(reflect.ValueOf(privateKeyProp)) && (ok \|\| !reflect.DeepEqual(v, privateKeyProp)) {
	obj["privateKey"] = privateKeyProp
	}
	regionProp, err := expandComputeRegionSslCertificateRegion(d.Get("region"), d, config)
	if err != nil {
	return err
	} else if v, ok := d.GetOkExists("region"); !tpgresource.IsEmptyValue(reflect.ValueOf(regionProp)) && (ok \|\| !reflect.DeepEqual(v, regionProp)) {
	obj["region"] = regionProp
	}

	url, err := tpgresource.ReplaceVars(d, config, "{{ComputeBasePath}}projects/{{project}}/regions/{{region}}/sslCertificates")
	if err != nil {
	return err
	}

	log.Printf("[DEBUG] Creating new RegionSslCertificate: %#v", obj)
	billingProject := ""

	project, err := tpgresource.GetProject(d, config)
	if err != nil {
	return fmt.Errorf("Error fetching project for RegionSslCertificate: %s", err)
	}
	billingProject = project

	// err == nil indicates that the billing_project value was found
	if bp, err := tpgresource.GetBillingProject(d, config); err == nil {
	billingProject = bp
	}

	headers := make(http.Header)
	res, err := transport_tpg.SendRequest(transport_tpg.SendRequestOptions{
	Config: config,
	Method: "POST",
	Project: billingProject,
	RawURL: url,
	UserAgent: userAgent,
	Body: obj,
	Timeout: d.Timeout(schema.TimeoutCreate),
	Headers: headers,
	})
	if err != nil {
	return fmt.Errorf("Error creating RegionSslCertificate: %s", err)
	}

	// Store the ID now
	id, err := tpgresource.ReplaceVars(d, config, "projects/{{project}}/regions/{{region}}/sslCertificates/{{name}}")
	if err != nil {
	return fmt.Errorf("Error constructing id: %s", err)
	}
	d.SetId(id)

	err = ComputeOperationWaitTime(
	config, res, project, "Creating RegionSslCertificate", userAgent,
	d.Timeout(schema.TimeoutCreate))

	if err != nil {
	// The resource didn't actually create
	d.SetId("")
	return fmt.Errorf("Error waiting to create RegionSslCertificate: %s", err)
	}

	log.Printf("[DEBUG] Finished creating RegionSslCertificate %q: %#v", d.Id(), res)

	return resourceComputeRegionSslCertificateRead(d, meta)
	}

	func resourceComputeRegionSslCertificateRead(d *schema.ResourceData, meta interface{}) error {
	config := meta.(*transport_tpg.Config)
	userAgent, err := tpgresource.GenerateUserAgentString(d, config.UserAgent)
	if err != nil {
	return err
	}

	url, err := tpgresource.ReplaceVars(d, config, "{{ComputeBasePath}}projects/{{project}}/regions/{{region}}/sslCertificates/{{name}}")
	if err != nil {
	return err
	}

	billingProject := ""

	project, err := tpgresource.GetProject(d, config)
	if err != nil {
	return fmt.Errorf("Error fetching project for RegionSslCertificate: %s", err)
	}
	billingProject = project

	// err == nil indicates that the billing_project value was found
	if bp, err := tpgresource.GetBillingProject(d, config); err == nil {
	billingProject = bp
	}

	headers := make(http.Header)
	res, err := transport_tpg.SendRequest(transport_tpg.SendRequestOptions{
	Config: config,
	Method: "GET",
	Project: billingProject,
	RawURL: url,
	UserAgent: userAgent,
	Headers: headers,
	})
	if err != nil {
	return transport_tpg.HandleNotFoundError(err, d, fmt.Sprintf("ComputeRegionSslCertificate %q", d.Id()))
	}

	if err := d.Set("project", project); err != nil {
	return fmt.Errorf("Error reading RegionSslCertificate: %s", err)
	}

	if err := d.Set("certificate", flattenComputeRegionSslCertificateCertificate(res["certificate"], d, config)); err != nil {
	return fmt.Errorf("Error reading RegionSslCertificate: %s", err)
	}
	if err := d.Set("creation_timestamp", flattenComputeRegionSslCertificateCreationTimestamp(res["creationTimestamp"], d, config)); err != nil {
	return fmt.Errorf("Error reading RegionSslCertificate: %s", err)
	}
	if err := d.Set("description", flattenComputeRegionSslCertificateDescription(res["description"], d, config)); err != nil {
	return fmt.Errorf("Error reading RegionSslCertificate: %s", err)
	}
	if err := d.Set("expire_time", flattenComputeRegionSslCertificateExpireTime(res["expireTime"], d, config)); err != nil {
	return fmt.Errorf("Error reading RegionSslCertificate: %s", err)
	}
	if err := d.Set("certificate_id", flattenComputeRegionSslCertificateCertificateId(res["id"], d, config)); err != nil {
	return fmt.Errorf("Error reading RegionSslCertificate: %s", err)
	}
	if err := d.Set("name", flattenComputeRegionSslCertificateName(res["name"], d, config)); err != nil {
	return fmt.Errorf("Error reading RegionSslCertificate: %s", err)
	}
	if err := d.Set("region", flattenComputeRegionSslCertificateRegion(res["region"], d, config)); err != nil {
	return fmt.Errorf("Error reading RegionSslCertificate: %s", err)
	}
	if err := d.Set("self_link", tpgresource.ConvertSelfLinkToV1(res["selfLink"].(string))); err != nil {
	return fmt.Errorf("Error reading RegionSslCertificate: %s", err)
	}

	return nil
	}

	func resourceComputeRegionSslCertificateDelete(d *schema.ResourceData, meta interface{}) error {
	config := meta.(*transport_tpg.Config)
	userAgent, err := tpgresource.GenerateUserAgentString(d, config.UserAgent)
	if err != nil {
	return err
	}

	billingProject := ""

	project, err := tpgresource.GetProject(d, config)
	if err != nil {
	return fmt.Errorf("Error fetching project for RegionSslCertificate: %s", err)
	}
	billingProject = project

	url, err := tpgresource.ReplaceVars(d, config, "{{ComputeBasePath}}projects/{{project}}/regions/{{region}}/sslCertificates/{{name}}")
	if err != nil {
	return err
	}

	var obj map[string]interface{}

	// err == nil indicates that the billing_project value was found
	if bp, err := tpgresource.GetBillingProject(d, config); err == nil {
	billingProject = bp
	}

	headers := make(http.Header)

	log.Printf("[DEBUG] Deleting RegionSslCertificate %q", d.Id())
	res, err := transport_tpg.SendRequest(transport_tpg.SendRequestOptions{
	Config: config,
	Method: "DELETE",
	Project: billingProject,
	RawURL: url,
	UserAgent: userAgent,
	Body: obj,
	Timeout: d.Timeout(schema.TimeoutDelete),
	Headers: headers,
	})
	if err != nil {
	return transport_tpg.HandleNotFoundError(err, d, "RegionSslCertificate")
	}

	err = ComputeOperationWaitTime(
	config, res, project, "Deleting RegionSslCertificate", userAgent,
	d.Timeout(schema.TimeoutDelete))

	if err != nil {
	return err
	}

	log.Printf("[DEBUG] Finished deleting RegionSslCertificate %q: %#v", d.Id(), res)
	return nil
	}

	func resourceComputeRegionSslCertificateImport(d schema.ResourceData, meta interface{}) ([]schema.ResourceData, error) {
	config := meta.(*transport_tpg.Config)
	if err := tpgresource.ParseImportId([]string{
	"^projects/(?P<project>[^/]+)/regions/(?P<region>[^/]+)/sslCertificates/(?P<name>[^/]+)$",
	"^(?P<project>[^/]+)/(?P<region>[^/]+)/(?P<name>[^/]+)$",
	"^(?P<region>[^/]+)/(?P<name>[^/]+)$",
	"^(?P<name>[^/]+)$",
	}, d, config); err != nil {
	return nil, err
	}

	// Replace import id for the resource id
	id, err := tpgresource.ReplaceVars(d, config, "projects/{{project}}/regions/{{region}}/sslCertificates/{{name}}")
	if err != nil {
	return nil, fmt.Errorf("Error constructing id: %s", err)
	}
	d.SetId(id)

	return []*schema.ResourceData{d}, nil
	}

	func flattenComputeRegionSslCertificateCertificate(v interface{}, d schema.ResourceData, config transport_tpg.Config) interface{} {
	return v
	}

	func flattenComputeRegionSslCertificateCreationTimestamp(v interface{}, d schema.ResourceData, config transport_tpg.Config) interface{} {
	return v
	}

	func flattenComputeRegionSslCertificateDescription(v interface{}, d schema.ResourceData, config transport_tpg.Config) interface{} {
	return v
	}

	func flattenComputeRegionSslCertificateExpireTime(v interface{}, d schema.ResourceData, config transport_tpg.Config) interface{} {
	return v
	}

	func flattenComputeRegionSslCertificateCertificateId(v interface{}, d schema.ResourceData, config transport_tpg.Config) interface{} {
	// Handles the string fixed64 format
	if strVal, ok := v.(string); ok {
	if intVal, err := tpgresource.StringToFixed64(strVal); err == nil {
	return intVal
	}
	}

	// number values are represented as float64
	if floatVal, ok := v.(float64); ok {
	intVal := int(floatVal)
	return intVal
	}

	return v // let terraform core handle it otherwise
	}

	func flattenComputeRegionSslCertificateName(v interface{}, d schema.ResourceData, config transport_tpg.Config) interface{} {
	return v
	}

	func flattenComputeRegionSslCertificateRegion(v interface{}, d schema.ResourceData, config transport_tpg.Config) interface{} {
	if v == nil {
	return v
	}
	return tpgresource.NameFromSelfLinkStateFunc(v)
	}

	func expandComputeRegionSslCertificateCertificate(v interface{}, d tpgresource.TerraformResourceData, config *transport_tpg.Config) (interface{}, error) {
	return v, nil
	}

	func expandComputeRegionSslCertificateDescription(v interface{}, d tpgresource.TerraformResourceData, config *transport_tpg.Config) (interface{}, error) {
	return v, nil
	}

	func expandComputeRegionSslCertificateName(v interface{}, d tpgresource.TerraformResourceData, config *transport_tpg.Config) (interface{}, error) {
	var certName string
	if v, ok := d.GetOk("name"); ok {
	certName = v.(string)
	} else if v, ok := d.GetOk("name_prefix"); ok {
	prefix := v.(string)
	if len(prefix) > 37 {
	certName = tpgresource.ReducedPrefixedUniqueId(prefix)
	} else {
	certName = id.PrefixedUniqueId(prefix)
	}
	} else {
	certName = id.UniqueId()
	}

	// We need to get the {{name}} into schema to set the ID using tpgresource.ReplaceVars
	if err := d.Set("name", certName); err != nil {
	return nil, fmt.Errorf("Error setting name: %s", err)
	}

	return certName, nil
	}

	func expandComputeRegionSslCertificatePrivateKey(v interface{}, d tpgresource.TerraformResourceData, config *transport_tpg.Config) (interface{}, error) {
	return v, nil
	}

	func expandComputeRegionSslCertificateRegion(v interface{}, d tpgresource.TerraformResourceData, config *transport_tpg.Config) (interface{}, error) {
	f, err := tpgresource.ParseGlobalFieldValue("regions", v.(string), "project", d, config, true)
	if err != nil {
	return nil, fmt.Errorf("Invalid value for region: %s", err)
	}
	return f.RelativeLink(), nil
	}