Google Git
Sign in
third-party-mirror / terraform-provider-google-beta / b9c4dd45f637f009e6ebbee053c562b25e63e4f7 / . / v6.2.0 / google-beta / services / vertexai / iam_vertex_endpoint_test.go
blob: a41d17e8658c3aed2c701d2aacd262b31bc0b889 [file] [log] [blame]
// Copyright (c) HashiCorp, Inc.
// SPDX-License-Identifier: MPL-2.0
package vertexai_test
import (
"fmt"
"testing"
"github.com/hashicorp/terraform-plugin-testing/helper/resource"
"github.com/hashicorp/terraform-provider-google-beta/google-beta/acctest"
"github.com/hashicorp/terraform-provider-google-beta/google-beta/envvar"
)
func TestAccVertexAIEndpointIamBinding(t *testing.T) {
t.Parallel()
context := map[string]interface{}{
"random_suffix": acctest.RandString(t, 10),
"role": "roles/viewer",
}
acctest.VcrTest(t, resource.TestCase{
PreCheck: func() { acctest.AccTestPreCheck(t) },
ProtoV5ProviderFactories: acctest.ProtoV5ProviderFactories(t),
Steps: []resource.TestStep{
{
Config: testAccVertexAIEndpointIamBinding_basic(context),
},
{
ResourceName: "google_vertex_ai_endpoint_iam_binding.foo",
ImportStateId: fmt.Sprintf("projects/%s/locations/%s/endpoints/%s roles/viewer", envvar.GetTestProjectFromEnv(), envvar.GetTestRegionFromEnv(), fmt.Sprintf("tf-test-endpoint-name%s", context["random_suffix"])),
ImportState: true,
ImportStateVerify: true,
},
{
// Test Iam Binding update
Config: testAccVertexAIEndpointIamBinding_update(context),
},
{
ResourceName: "google_vertex_ai_endpoint_iam_binding.foo",
ImportStateId: fmt.Sprintf("projects/%s/locations/%s/endpoints/%s roles/viewer", envvar.GetTestProjectFromEnv(), envvar.GetTestRegionFromEnv(), fmt.Sprintf("tf-test-endpoint-name%s", context["random_suffix"])),
ImportState: true,
ImportStateVerify: true,
},
},
})
}
func TestAccVertexAIEndpointIamMember(t *testing.T) {
t.Parallel()
context := map[string]interface{}{
"random_suffix": acctest.RandString(t, 10),
"role": "roles/viewer",
}
acctest.VcrTest(t, resource.TestCase{
PreCheck: func() { acctest.AccTestPreCheck(t) },
ProtoV5ProviderFactories: acctest.ProtoV5ProviderFactories(t),
Steps: []resource.TestStep{
{
// Test Iam Member creation (no update for member, no need to test)
Config: testAccVertexAIEndpointIamMember_basic(context),
},
{
ResourceName: "google_vertex_ai_endpoint_iam_member.foo",
ImportStateId: fmt.Sprintf("projects/%s/locations/%s/endpoints/%s roles/viewer user:admin@hashicorptest.com", envvar.GetTestProjectFromEnv(), envvar.GetTestRegionFromEnv(), fmt.Sprintf("tf-test-endpoint-name%s", context["random_suffix"])),
ImportState: true,
ImportStateVerify: true,
},
},
})
}
func TestAccVertexAIEndpointIamPolicy(t *testing.T) {
t.Parallel()
context := map[string]interface{}{
"random_suffix": acctest.RandString(t, 10),
"role": "roles/viewer",
}
acctest.VcrTest(t, resource.TestCase{
PreCheck: func() { acctest.AccTestPreCheck(t) },
ProtoV5ProviderFactories: acctest.ProtoV5ProviderFactories(t),
Steps: []resource.TestStep{
{
Config: testAccVertexAIEndpointIamPolicy_basic(context),
Check: resource.TestCheckResourceAttrSet("data.google_vertex_ai_endpoint_iam_policy.foo", "policy_data"),
},
{
ResourceName: "google_vertex_ai_endpoint_iam_policy.foo",
ImportStateId: fmt.Sprintf("projects/%s/locations/%s/endpoints/%s", envvar.GetTestProjectFromEnv(), envvar.GetTestRegionFromEnv(), fmt.Sprintf("tf-test-endpoint-name%s", context["random_suffix"])),
ImportState: true,
ImportStateVerify: true,
},
{
Config: testAccVertexAIEndpointIamPolicy_emptyBinding(context),
},
{
ResourceName: "google_vertex_ai_endpoint_iam_policy.foo",
ImportStateId: fmt.Sprintf("projects/%s/locations/%s/endpoints/%s", envvar.GetTestProjectFromEnv(), envvar.GetTestRegionFromEnv(), fmt.Sprintf("tf-test-endpoint-name%s", context["random_suffix"])),
ImportState: true,
ImportStateVerify: true,
},
},
})
}
func testAccVertexAIEndpointIamMember_basic(context map[string]interface{}) string {
return acctest.Nprintf(`
resource "google_vertex_ai_endpoint" "endpoint" {
name = "tf-test-endpoint-name%{random_suffix}"
display_name = "sample-endpoint"
description = "A sample vertex endpoint"
location = "us-central1"
region = "us-central1"
labels = {
label-one = "value-one"
}
network = "projects/${data.google_project.project.number}/global/networks/${google_compute_network.vertex_network.name}"
depends_on = [
google_service_networking_connection.vertex_vpc_connection
]
}
resource "google_service_networking_connection" "vertex_vpc_connection" {
network = google_compute_network.vertex_network.id
service = "servicenetworking.googleapis.com"
reserved_peering_ranges = [google_compute_global_address.vertex_range.name]
}
resource "google_compute_global_address" "vertex_range" {
name = "tf-test-address-name%{random_suffix}"
purpose = "VPC_PEERING"
address_type = "INTERNAL"
prefix_length = 24
network = google_compute_network.vertex_network.id
}
resource "google_compute_network" "vertex_network" {
name = "tf-test-network-name%{random_suffix}"
}
data "google_project" "project" {}
resource "google_vertex_ai_endpoint_iam_member" "foo" {
project = google_vertex_ai_endpoint.endpoint.project
location = google_vertex_ai_endpoint.endpoint.location
endpoint = google_vertex_ai_endpoint.endpoint.name
role = "%{role}"
member = "user:admin@hashicorptest.com"
}
`, context)
}
func testAccVertexAIEndpointIamPolicy_basic(context map[string]interface{}) string {
return acctest.Nprintf(`
resource "google_vertex_ai_endpoint" "endpoint" {
name = "tf-test-endpoint-name%{random_suffix}"
display_name = "sample-endpoint"
description = "A sample vertex endpoint"
location = "us-central1"
region = "us-central1"
labels = {
label-one = "value-one"
}
network = "projects/${data.google_project.project.number}/global/networks/${google_compute_network.vertex_network.name}"
depends_on = [
google_service_networking_connection.vertex_vpc_connection
]
}
resource "google_service_networking_connection" "vertex_vpc_connection" {
network = google_compute_network.vertex_network.id
service = "servicenetworking.googleapis.com"
reserved_peering_ranges = [google_compute_global_address.vertex_range.name]
}
resource "google_compute_global_address" "vertex_range" {
name = "tf-test-address-name%{random_suffix}"
purpose = "VPC_PEERING"
address_type = "INTERNAL"
prefix_length = 24
network = google_compute_network.vertex_network.id
}
resource "google_compute_network" "vertex_network" {
name = "tf-test-network-name%{random_suffix}"
}
data "google_project" "project" {}
data "google_iam_policy" "foo" {
binding {
role = "%{role}"
members = ["user:admin@hashicorptest.com"]
}
}
resource "google_vertex_ai_endpoint_iam_policy" "foo" {
project = google_vertex_ai_endpoint.endpoint.project
location = google_vertex_ai_endpoint.endpoint.location
endpoint = google_vertex_ai_endpoint.endpoint.name
policy_data = data.google_iam_policy.foo.policy_data
}
data "google_vertex_ai_endpoint_iam_policy" "foo" {
project = google_vertex_ai_endpoint.endpoint.project
location = google_vertex_ai_endpoint.endpoint.location
endpoint = google_vertex_ai_endpoint.endpoint.name
depends_on = [
google_vertex_ai_endpoint_iam_policy.foo
]
}
`, context)
}
func testAccVertexAIEndpointIamPolicy_emptyBinding(context map[string]interface{}) string {
return acctest.Nprintf(`
resource "google_vertex_ai_endpoint" "endpoint" {
name = "tf-test-endpoint-name%{random_suffix}"
display_name = "sample-endpoint"
description = "A sample vertex endpoint"
location = "us-central1"
region = "us-central1"
labels = {
label-one = "value-one"
}
network = "projects/${data.google_project.project.number}/global/networks/${google_compute_network.vertex_network.name}"
depends_on = [
google_service_networking_connection.vertex_vpc_connection
]
}
resource "google_service_networking_connection" "vertex_vpc_connection" {
network = google_compute_network.vertex_network.id
service = "servicenetworking.googleapis.com"
reserved_peering_ranges = [google_compute_global_address.vertex_range.name]
}
resource "google_compute_global_address" "vertex_range" {
name = "tf-test-address-name%{random_suffix}"
purpose = "VPC_PEERING"
address_type = "INTERNAL"
prefix_length = 24
network = google_compute_network.vertex_network.id
}
resource "google_compute_network" "vertex_network" {
name = "tf-test-network-name%{random_suffix}"
}
data "google_project" "project" {}
data "google_iam_policy" "foo" {
}
resource "google_vertex_ai_endpoint_iam_policy" "foo" {
project = google_vertex_ai_endpoint.endpoint.project
location = google_vertex_ai_endpoint.endpoint.location
endpoint = google_vertex_ai_endpoint.endpoint.name
policy_data = data.google_iam_policy.foo.policy_data
}
`, context)
}
func testAccVertexAIEndpointIamBinding_basic(context map[string]interface{}) string {
return acctest.Nprintf(`
resource "google_vertex_ai_endpoint" "endpoint" {
name = "tf-test-endpoint-name%{random_suffix}"
display_name = "sample-endpoint"
description = "A sample vertex endpoint"
location = "us-central1"
region = "us-central1"
labels = {
label-one = "value-one"
}
network = "projects/${data.google_project.project.number}/global/networks/${google_compute_network.vertex_network.name}"
depends_on = [
google_service_networking_connection.vertex_vpc_connection
]
}
resource "google_service_networking_connection" "vertex_vpc_connection" {
network = google_compute_network.vertex_network.id
service = "servicenetworking.googleapis.com"
reserved_peering_ranges = [google_compute_global_address.vertex_range.name]
}
resource "google_compute_global_address" "vertex_range" {
name = "tf-test-address-name%{random_suffix}"
purpose = "VPC_PEERING"
address_type = "INTERNAL"
prefix_length = 24
network = google_compute_network.vertex_network.id
}
resource "google_compute_network" "vertex_network" {
name = "tf-test-network-name%{random_suffix}"
}
data "google_project" "project" {}
resource "google_vertex_ai_endpoint_iam_binding" "foo" {
project = google_vertex_ai_endpoint.endpoint.project
location = google_vertex_ai_endpoint.endpoint.location
endpoint = google_vertex_ai_endpoint.endpoint.name
role = "%{role}"
members = ["user:admin@hashicorptest.com"]
}
`, context)
}
func testAccVertexAIEndpointIamBinding_update(context map[string]interface{}) string {
return acctest.Nprintf(`
resource "google_vertex_ai_endpoint" "endpoint" {
name = "tf-test-endpoint-name%{random_suffix}"
display_name = "sample-endpoint"
description = "A sample vertex endpoint"
location = "us-central1"
region = "us-central1"
labels = {
label-one = "value-one"
}
network = "projects/${data.google_project.project.number}/global/networks/${google_compute_network.vertex_network.name}"
depends_on = [
google_service_networking_connection.vertex_vpc_connection
]
}
resource "google_service_networking_connection" "vertex_vpc_connection" {
network = google_compute_network.vertex_network.id
service = "servicenetworking.googleapis.com"
reserved_peering_ranges = [google_compute_global_address.vertex_range.name]
}
resource "google_compute_global_address" "vertex_range" {
name = "tf-test-address-name%{random_suffix}"
purpose = "VPC_PEERING"
address_type = "INTERNAL"
prefix_length = 24
network = google_compute_network.vertex_network.id
}
resource "google_compute_network" "vertex_network" {
name = "tf-test-network-name%{random_suffix}"
}
data "google_project" "project" {}
resource "google_vertex_ai_endpoint_iam_binding" "foo" {
project = google_vertex_ai_endpoint.endpoint.project
location = google_vertex_ai_endpoint.endpoint.location
endpoint = google_vertex_ai_endpoint.endpoint.name
role = "%{role}"
members = ["user:admin@hashicorptest.com", "user:gterraformtest1@gmail.com"]
}
`, context)
}