feat(hss): support hss_container_network_cluster_sync resource (#8403)

Author: jinyangyang222

docs/resources/hss_container_network_cluster_sync.md

@@ -0,0 +1,40 @@
+---
+subcategory: "Host Security Service (HSS)"
+layout: "huaweicloud"
+page_title: "HuaweiCloud: huaweicloud_hss_container_network_cluster_sync"
+description: |-
+  Manages an HSS container network cluster sync resource within HuaweiCloud.
+---
+
+# huaweicloud_hss_container_network_cluster_sync
+
+Manages an HSS container network cluster sync resource within HuaweiCloud.
+
+-> This resource is a one-time action resource using to sync HSS container network cluster. Deleting this resource will
+  not clear the corresponding request record, but will only remove the resource information from the tf state file.
+
+## Example Usage
+
+```hcl
+resource "huaweicloud_hss_container_network_cluster_sync" "test" {}
+```
+
+## Argument Reference
+
+The following arguments are supported:
+
+* `region` - (Optional, String, ForceNew) Specifies the region in which to create the resource.
+  If omitted, the provider-level region will be used. Changing this parameter will create a new resource.
+
+* `enterprise_project_id` - (Optional, String, NonUpdatable) Specifies the enterprise project ID.  
+  This parameter is valid only when the enterprise project is enabled.
+  The default value is **0**, indicating the default enterprise project.
+  If it is necessary to operate the asset under all enterprise projects, the value is **all_granted_eps**.
+  If you only have permissions for a specific enterprise project, you need set the enterprise project ID. Otherwise,
+  the operation may fail due to insufficient permissions.
+
+## Attributes Reference
+
+In addition to all arguments above, the following attributes are exported:
+
+* `id` - The resource ID in UUID format.

huaweicloud/provider.go

@@ -3080,6 +3080,7 @@ func Provider() *schema.Provider {
 			"huaweicloud_hss_container_kubernetes_cluster_daemonset":         hss.ResourceContainerKubernetesClusterDaemonset(),
 			"huaweicloud_hss_container_kubernetes_cluster_protection_enable": hss.ResourceContainerKubernetesClusterProtectionEnable(),
 			"huaweicloud_hss_container_network_policy_sync":                  hss.ResourceContainerNetworkPolicySync(),
+			"huaweicloud_hss_container_network_cluster_sync":                 hss.ResourceContainerNetworkClusterSync(),
 			"huaweicloud_hss_cluster_protect_switch_mode":                    hss.ResourceClusterProtectSwitchMode(),
 			"huaweicloud_hss_cicd_configuration":                             hss.ResourceCiCdConfiguration(),
 			"huaweicloud_hss_honeypot_port_policy":                           hss.ResourceHoneypotPortPolicy(),

huaweicloud/services/acceptance/hss/resource_huaweicloud_hss_container_network_cluster_sync_test.go

@@ -0,0 +1,32 @@
+package hss
+
+import (
+	"testing"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/resource"
+
+	"github.com/huaweicloud/terraform-provider-huaweicloud/huaweicloud/services/acceptance"
+)
+
+func TestAccContainerNetworkClusterSync_basic(t *testing.T) {
+	// lintignore:AT001
+	resource.ParallelTest(t, resource.TestCase{
+		PreCheck: func() {
+			acceptance.TestAccPreCheck(t)
+		},
+		ProviderFactories: acceptance.TestAccProviderFactories,
+		Steps: []resource.TestStep{
+			{
+				Config: testContainerNetworkClusterSync_basic(),
+			},
+		},
+	})
+}
+
+func testContainerNetworkClusterSync_basic() string {
+	return `
+resource "huaweicloud_hss_container_network_cluster_sync" "test" {
+  enterprise_project_id = "0"
+}
+`
+}

huaweicloud/services/hss/resource_huaweicloud_hss_container_network_cluster_sync.go

@@ -0,0 +1,117 @@
+package hss
+
+import (
+	"context"
+	"fmt"
+	"strings"
+
+	"github.com/hashicorp/go-uuid"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/diag"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/validation"
+
+	"github.com/chnsz/golangsdk"
+
+	"github.com/huaweicloud/terraform-provider-huaweicloud/huaweicloud/config"
+	"github.com/huaweicloud/terraform-provider-huaweicloud/huaweicloud/utils"
+)
+
+var containerNetworkClusterSyncNonUpdatableParams = []string{
+	"enterprise_project_id",
+}
+
+// @API HSS GET /v5/{project_id}/container-network/cluster/sync
+func ResourceContainerNetworkClusterSync() *schema.Resource {
+	return &schema.Resource{
+		CreateContext: resourceContainerNetworkClusterSyncCreate,
+		ReadContext:   resourceContainerNetworkClusterSyncRead,
+		UpdateContext: resourceContainerNetworkClusterSyncUpdate,
+		DeleteContext: resourceContainerNetworkClusterSyncDelete,
+
+		CustomizeDiff: config.FlexibleForceNew(containerNetworkClusterSyncNonUpdatableParams),
+
+		Schema: map[string]*schema.Schema{
+			"region": {
+				Type:     schema.TypeString,
+				Optional: true,
+				Computed: true,
+				ForceNew: true,
+			},
+			"enterprise_project_id": {
+				Type:     schema.TypeString,
+				Optional: true,
+			},
+			"enable_force_new": {
+				Type:         schema.TypeString,
+				Optional:     true,
+				ValidateFunc: validation.StringInSlice([]string{"true", "false"}, false),
+				Description:  utils.SchemaDesc("", utils.SchemaDescInput{Internal: true}),
+			},
+		},
+	}
+}
+
+func buildContainerNetworkClusterSyncQueryParams(epsId string) string {
+	if epsId != "" {
+		return fmt.Sprintf("?enterprise_project_id=%v", epsId)
+	}
+
+	return ""
+}
+
+func resourceContainerNetworkClusterSyncCreate(ctx context.Context, d *schema.ResourceData, meta interface{}) diag.Diagnostics {
+	var (
+		cfg     = meta.(*config.Config)
+		region  = cfg.GetRegion(d)
+		product = "hss"
+		epsId   = cfg.GetEnterpriseProjectID(d)
+	)
+
+	client, err := cfg.NewServiceClient(product, region)
+	if err != nil {
+		return diag.Errorf("error creating HSS client: %s", err)
+	}
+
+	requestPath := client.Endpoint + "v5/{project_id}/container-network/cluster/sync"
+	requestPath = strings.ReplaceAll(requestPath, "{project_id}", client.ProjectID)
+	requestPath += buildContainerNetworkClusterSyncQueryParams(epsId)
+	requestOpt := golangsdk.RequestOpts{
+		KeepResponseBody: true,
+	}
+
+	_, err = client.Request("GET", requestPath, &requestOpt)
+	if err != nil {
+		return diag.Errorf("error syncing HSS container network cluster: %s", err)
+	}
+
+	generateUUID, err := uuid.GenerateUUID()
+	if err != nil {
+		return diag.Errorf("unable to generate ID: %s", err)
+	}
+
+	d.SetId(generateUUID)
+
+	return resourceContainerNetworkClusterSyncRead(ctx, d, meta)
+}
+
+func resourceContainerNetworkClusterSyncRead(_ context.Context, _ *schema.ResourceData, _ interface{}) diag.Diagnostics {
+	// No processing is performed in the 'Read()' method because the resource is a one-time action resource.
+	return nil
+}
+
+func resourceContainerNetworkClusterSyncUpdate(_ context.Context, _ *schema.ResourceData, _ interface{}) diag.Diagnostics {
+	// No processing is performed in the 'Update()' method because the resource is a one-time action resource.
+	return nil
+}
+
+func resourceContainerNetworkClusterSyncDelete(_ context.Context, _ *schema.ResourceData, _ interface{}) diag.Diagnostics {
+	errorMsg := `This resource is a one-time action resource used to sync HSS container network cluster. Deleting this
+    resource will not clear the corresponding request record, but will only remove the resource information from the
+    tf state file.`
+	return diag.Diagnostics{
+		diag.Diagnostic{
+			Severity: diag.Warning,
+			Summary:  errorMsg,
+		},
+	}
+}