Skip to content

Commit

Permalink
Add support for body_scanning to cloudflare_teams_account
Browse files Browse the repository at this point in the history
  • Loading branch information
webbgeorge committed Oct 26, 2023
1 parent efa3f48 commit 04ebb2e
Show file tree
Hide file tree
Showing 7 changed files with 66 additions and 3 deletions.
3 changes: 3 additions & 0 deletions .changelog/2887.txt
Original file line number Diff line number Diff line change
@@ -0,0 +1,3 @@
```release-note:enhancement
resource/cloudflare_teams_account: add support for `body_scanning` config
```
4 changes: 4 additions & 0 deletions docs/resources/teams_account.md
Original file line number Diff line number Diff line change
Expand Up @@ -26,6 +26,10 @@ resource "cloudflare_teams_account" "example" {
background_color = "#000000"
}
body_scanning {
inspection_mode = "deep"
}
antivirus {
enabled_download_phase = true
enabled_upload_phase = false
Expand Down
4 changes: 4 additions & 0 deletions examples/resources/cloudflare_teams_account/resource.tf
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,10 @@ resource "cloudflare_teams_account" "example" {
background_color = "#000000"
}

body_scanning {
inspection_mode = "deep"
}

antivirus {
enabled_download_phase = true
enabled_upload_phase = false
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -993,6 +993,9 @@ func testAccessPolicyIsolationRequiredConfig(resourceID, zone, accountID string)
mailto_subject = "hello"
mailto_address = "test@cloudflare.com"
}
body_scanning {
inspection_mode = "deep"
}
fips {
tls = true
}
Expand Down
32 changes: 29 additions & 3 deletions internal/sdkv2provider/resource_cloudflare_teams_accounts.go
Original file line number Diff line number Diff line change
Expand Up @@ -52,6 +52,12 @@ func resourceCloudflareTeamsAccountRead(ctx context.Context, d *schema.ResourceD
}
}

if configuration.Settings.BodyScanning != nil {
if err := d.Set("body_scanning", flattenBodyScanningConfig(configuration.Settings.BodyScanning)); err != nil {
return diag.FromErr(fmt.Errorf("error parsing account body scanning config: %w", err))
}
}

if configuration.Settings.Antivirus != nil {
if err := d.Set("antivirus", flattenAntivirusConfig(configuration.Settings.Antivirus)); err != nil {
return diag.FromErr(fmt.Errorf("error parsing account antivirus config: %w", err))
Expand Down Expand Up @@ -140,6 +146,7 @@ func resourceCloudflareTeamsAccountUpdate(ctx context.Context, d *schema.Resourc
client := meta.(*cloudflare.API)
accountID := d.Get(consts.AccountIDSchemaKey).(string)
blockPageConfig := inflateBlockPageConfig(d.Get("block_page"))
bodyScanningConfig := inflateBodyScanningConfig(d.Get("body_scanning"))
fipsConfig := inflateFIPSConfig(d.Get("fips"))
antivirusConfig := inflateAntivirusConfig(d.Get("antivirus"))
loggingConfig := inflateLoggingSettings(d.Get("logging"))
Expand All @@ -148,9 +155,10 @@ func resourceCloudflareTeamsAccountUpdate(ctx context.Context, d *schema.Resourc
sshSessionLogSettings := inflateSSHSessionLogSettings(d.Get("ssh_session_log"))
updatedTeamsAccount := cloudflare.TeamsConfiguration{
Settings: cloudflare.TeamsAccountSettings{
Antivirus: antivirusConfig,
BlockPage: blockPageConfig,
FIPS: fipsConfig,
Antivirus: antivirusConfig,
BlockPage: blockPageConfig,
FIPS: fipsConfig,
BodyScanning: bodyScanningConfig,
},
}

Expand Down Expand Up @@ -275,6 +283,24 @@ func inflateBlockPageConfig(blockPage interface{}) *cloudflare.TeamsBlockPage {
}
}

func flattenBodyScanningConfig(bodyScanningConfig *cloudflare.TeamsBodyScanning) []interface{} {
return []interface{}{map[string]interface{}{
"inspection_mode": bodyScanningConfig.InspectionMode,
}}
}

func inflateBodyScanningConfig(bodyScanning interface{}) *cloudflare.TeamsBodyScanning {
bodyScanningList := bodyScanning.([]interface{})
if len(bodyScanningList) != 1 {
return nil
}

bodyScanningMap := bodyScanningList[0].(map[string]interface{})
return &cloudflare.TeamsBodyScanning{
InspectionMode: bodyScanningMap["inspection_mode"].(string),
}
}

func flattenAntivirusConfig(antivirusConfig *cloudflare.TeamsAntivirus) []interface{} {
return []interface{}{map[string]interface{}{
"enabled_download_phase": antivirusConfig.EnabledDownloadPhase,
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -42,6 +42,7 @@ func TestAccCloudflareTeamsAccounts_ConfigurationBasic(t *testing.T) {
resource.TestCheckResourceAttr(name, "block_page.0.mailto_address", "test@cloudflare.com"),
resource.TestCheckResourceAttr(name, "block_page.0.background_color", "#000000"),
resource.TestCheckResourceAttr(name, "block_page.0.logo_path", "https://example.com"),
resource.TestCheckResourceAttr(name, "body_scanning.0.inspection_mode", "deep"),
resource.TestCheckResourceAttr(name, "logging.0.redact_pii", "true"),
resource.TestCheckResourceAttr(name, "logging.0.settings_by_rule_type.0.dns.0.log_all", "false"),
resource.TestCheckResourceAttr(name, "logging.0.settings_by_rule_type.0.dns.0.log_blocks", "true"),
Expand Down Expand Up @@ -80,6 +81,9 @@ resource "cloudflare_teams_account" "%[1]s" {
mailto_subject = "hello"
mailto_address = "test@cloudflare.com"
}
body_scanning {
inspection_mode = "deep"
}
fips {
tls = true
}
Expand Down
19 changes: 19 additions & 0 deletions internal/sdkv2provider/schema_cloudflare_teams_accounts.go
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,7 @@ package sdkv2provider
import (
"github.com/cloudflare/terraform-provider-cloudflare/internal/consts"
"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
"github.com/hashicorp/terraform-plugin-sdk/v2/helper/validation"
)

func resourceCloudflareTeamsAccountSchema() map[string]*schema.Schema {
Expand All @@ -21,6 +22,15 @@ func resourceCloudflareTeamsAccountSchema() map[string]*schema.Schema {
Schema: blockPageSchema,
},
},
"body_scanning": {
Type: schema.TypeList,
MaxItems: 1,
Optional: true,
Description: "Configuration for body scanning.",
Elem: &schema.Resource{
Schema: bodyScanningSchema,
},
},
"fips": {
Type: schema.TypeList,
MaxItems: 1,
Expand Down Expand Up @@ -155,6 +165,15 @@ var blockPageSchema = map[string]*schema.Schema{
},
}

var bodyScanningSchema = map[string]*schema.Schema{
"inspection_mode": {
Type: schema.TypeString,
Required: true,
ValidateFunc: validation.StringInSlice([]string{"deep", "shallow"}, false),
Description: "Body scanning inspection mode.",
},
}

var antivirusSchema = map[string]*schema.Schema{
"enabled_download_phase": {
Type: schema.TypeBool,
Expand Down

0 comments on commit 04ebb2e

Please sign in to comment.