tencentcloudstack
diff --git a/‎tencentcloud/resource_tc_instance.go‎
Lines changed: 28 additions & 1 deletion b/‎tencentcloud/resource_tc_instance.go‎
Lines changed: 28 additions & 1 deletion
diff --git a/‎tencentcloud/resource_tc_instance_test.go‎
Lines changed: 6 additions & 5 deletions b/‎tencentcloud/resource_tc_instance_test.go‎
Lines changed: 6 additions & 5 deletions
diff --git a/‎tencentcloud/resource_tc_vpn_connection.go‎
Lines changed: 55 additions & 35 deletions b/‎tencentcloud/resource_tc_vpn_connection.go‎
Lines changed: 55 additions & 35 deletions
diff --git a/‎tencentcloud/resource_tc_vpn_customer_gateway.go‎
Lines changed: 1 addition & 1 deletion b/‎tencentcloud/resource_tc_vpn_customer_gateway.go‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎tencentcloud/resource_tc_vpn_gateway.go‎
Lines changed: 21 additions & 33 deletions b/‎tencentcloud/resource_tc_vpn_gateway.go‎
Lines changed: 21 additions & 33 deletions
diff --git a/‎tencentcloud/service_tencentcloud_cvm.go‎
Lines changed: 19 additions & 0 deletions b/‎tencentcloud/service_tencentcloud_cvm.go‎
Lines changed: 19 additions & 0 deletions
@@ -200,7 +200,6 @@ func resourceTencentCloudInstance() *schema.Resource {
 				Type:        schema.TypeInt,
 				Optional:    true,
 				Computed:    true,
-				ForceNew:    true,
 				Description: "Maximum outgoing bandwidth to the public network, measured in Mbps (Mega bit per second). This value does not need to be set when `allocate_public_ip` is false.",
 			},
 			"allocate_public_ip": {
@@ -943,6 +942,34 @@ func resourceTencentCloudInstanceUpdate(d *schema.ResourceData, meta interface{}
 		d.SetPartial("tags")
 	}
 
+	if d.HasChange("internet_max_bandwidth_out") {
+		chargeType := d.Get("internet_charge_type").(string)
+		if chargeType != "TRAFFIC_POSTPAID_BY_HOUR" && chargeType != "BANDWIDTH_POSTPAID_BY_HOUR" && chargeType != "BANDWIDTH_PACKAGE" {
+			return fmt.Errorf("charge type should be one of `TRAFFIC_POSTPAID_BY_HOUR BANDWIDTH_POSTPAID_BY_HOUR BANDWIDTH_PACKAGE` when adjusting internet_max_bandwidth_out")
+		}
+
+		err := cvmService.ModifyInternetMaxBandwidthOut(ctx, instanceId, chargeType, int64(d.Get("internet_max_bandwidth_out").(int)))
+		if err != nil {
+			return err
+		}
+		d.SetPartial("internet_max_bandwidth_out")
+		time.Sleep(1 * time.Second)
+		err = resource.Retry(2*readRetryTimeout, func() *resource.RetryError {
+			instance, errRet := cvmService.DescribeInstanceById(ctx, instanceId)
+			if errRet != nil {
+				return retryError(errRet, InternalError)
+			}
+			if instance != nil && *instance.LatestOperationState == CVM_LATEST_OPERATION_STATE_OPERATING {
+				return resource.RetryableError(fmt.Errorf("cvm instance latest operetion status is %s, retry...", *instance.LatestOperationState))
+			}
+			return nil
+		})
+		if err != nil {
+			return err
+		}
+
+	}
+
 	d.Partial(false)
 
 	return resourceTencentCloudInstanceRead(d, meta)
 
@@ -131,7 +131,7 @@ func TestAccTencentCloudInstanceWithNetwork(t *testing.T) {
 		CheckDestroy:  testAccCheckInstanceDestroy,
 		Steps: []resource.TestStep{
 			{
-				Config: testAccTencentCloudInstanceWithNetwork("false"),
+				Config: testAccTencentCloudInstanceWithNetwork("false", 1),
 				Check: resource.ComposeTestCheckFunc(
 					testAccCheckTencentCloudDataSourceID(id),
 					testAccCheckTencentCloudInstanceExists(id),
@@ -140,10 +140,11 @@ func TestAccTencentCloudInstanceWithNetwork(t *testing.T) {
 				),
 			},
 			{
-				Config: testAccTencentCloudInstanceWithNetwork("true"),
+				Config: testAccTencentCloudInstanceWithNetwork("true", 5),
 				Check: resource.ComposeTestCheckFunc(
 					testAccCheckTencentCloudDataSourceID(id),
 					testAccCheckTencentCloudInstanceExists(id),
+					resource.TestCheckResourceAttr(id, "internet_max_bandwidth_out", "5"),
 					resource.TestCheckResourceAttr(id, "instance_status", "RUNNING"),
 					resource.TestCheckResourceAttrSet(id, "public_ip"),
 				),
@@ -579,7 +580,7 @@ resource "tencentcloud_instance" "foo" {
 }
 `
 
-func testAccTencentCloudInstanceWithNetwork(hasPublicIp string) string {
+func testAccTencentCloudInstanceWithNetwork(hasPublicIp string, maxBandWidthOut int64) string {
 	return fmt.Sprintf(
 		defaultInstanceVariable+`
 resource "tencentcloud_instance" "foo" {
@@ -588,12 +589,12 @@ resource "tencentcloud_instance" "foo" {
   image_id                   = data.tencentcloud_images.default.images.0.image_id
   instance_type              = data.tencentcloud_instance_types.default.instance_types.0.instance_type
   internet_charge_type       = "TRAFFIC_POSTPAID_BY_HOUR"
-  internet_max_bandwidth_out = 1
+  internet_max_bandwidth_out = %d
   allocate_public_ip         = %s
   system_disk_type           = "CLOUD_PREMIUM"
 }
 `,
-		hasPublicIp,
+		maxBandWidthOut, hasPublicIp,
 	)
 }
 
 
@@ -54,6 +54,7 @@ import (
 	"github.com/hashicorp/terraform-plugin-sdk/helper/resource"
 	"github.com/hashicorp/terraform-plugin-sdk/helper/schema"
 	"github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common/errors"
+	sdkErrors "github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/common/errors"
 	vpc "github.com/tencentcloud/tencentcloud-sdk-go/tencentcloud/vpc/v20170312"
 	"github.com/terraform-providers/terraform-provider-tencentcloud/tencentcloud/internal/helper"
 )
@@ -76,11 +77,22 @@ func resourceTencentCloudVpnConnection() *schema.Resource {
 				Description:  "Name of the VPN connection. The length of character is limited to 1-60.",
 			},
 			"vpc_id": {
-				Type:        schema.TypeString,
-				Optional:    true,
-				ForceNew:    true,
+				Type:     schema.TypeString,
+				Optional: true,
+				ForceNew: true,
+				DiffSuppressFunc: func(k, old, new string, d *schema.ResourceData) bool {
+					if v, ok := d.GetOk("is_ccn_type"); ok && v.(bool) {
+						return true
+					}
+					return old == new
+				},
 				Description: "ID of the VPC. Required if vpn gateway is not in `CCN` type, and doesn't make sense for `CCN` vpn gateway.",
 			},
+			"is_ccn_type": {
+				Type:        schema.TypeBool,
+				Computed:    true,
+				Description: "Indicate whether is ccn type. Modification of this field only impacts force new logic of `vpc_id`. If `is_ccn_type` is true, modification of `vpc_id` will be ignored.",
+			},
 			"customer_gateway_id": {
 				Type:        schema.TypeString,
 				Required:    true,
@@ -99,7 +111,7 @@ func resourceTencentCloudVpnConnection() *schema.Resource {
 				Description: "Pre-shared key of the VPN connection.",
 			},
 			"security_group_policy": {
-				Type:        schema.TypeList,
+				Type:        schema.TypeSet,
 				Required:    true,
 				Description: "Security group policy of the VPN connection.",
 				Elem: &schema.Resource{
@@ -274,38 +286,21 @@ func resourceTencentCloudVpnConnection() *schema.Resource {
 func resourceTencentCloudVpnConnectionCreate(d *schema.ResourceData, meta interface{}) error {
 	defer logElapsed("resource.tencentcloud_vpn_connection.create")()
 
-	logId := getLogId(contextNil)
-	ctx := context.WithValue(context.TODO(), logIdKey, logId)
+	var (
+		logId   = getLogId(contextNil)
+		ctx     = context.WithValue(context.TODO(), logIdKey, logId)
+		service = VpcService{client: meta.(*TencentCloudClient).apiV3Conn}
+	)
 
 	// pre check vpn gateway id
-	requestVpngw := vpc.NewDescribeVpnGatewaysRequest()
-	requestVpngw.VpnGatewayIds = []*string{helper.String(d.Get("vpn_gateway_id").(string))}
-	var responseVpngw *vpc.DescribeVpnGatewaysResponse
-	err := resource.Retry(readRetryTimeout, func() *resource.RetryError {
-		result, e := meta.(*TencentCloudClient).apiV3Conn.UseVpcClient().DescribeVpnGateways(requestVpngw)
-		if e != nil {
-			ee, ok := e.(*errors.TencentCloudSDKError)
-			if !ok {
-				return retryError(e)
-			}
-			if ee.Code == VPCNotFound {
-				return nil
-			} else {
-				return retryError(e)
-			}
-		}
-		responseVpngw = result
-		return nil
-	})
+	has, gateway, err := service.DescribeVpngwById(ctx, d.Get("vpn_gateway_id").(string))
 	if err != nil {
 		return err
 	}
-	if len(responseVpngw.Response.VpnGatewaySet) < 1 {
+	if !has {
 		return fmt.Errorf("[CRITAL] vpn_gateway_id %s doesn't exist", d.Get("vpn_gateway_id").(string))
 	}
 
-	gateway := responseVpngw.Response.VpnGatewaySet[0]
-
 	// create vpn connection
 	request := vpc.NewCreateVpnConnectionRequest()
 	request.VpnConnectionName = helper.String(d.Get("name").(string))
@@ -315,6 +310,9 @@ func resourceTencentCloudVpnConnectionCreate(d *schema.ResourceData, meta interf
 		}
 		request.VpcId = helper.String(d.Get("vpc_id").(string))
 	} else {
+		if _, ok := d.GetOk("vpc_id"); ok {
+			return fmt.Errorf("[CRITAL] vpc_id doesn't make sense when vpn gateway is in CCN type")
+		}
 		request.VpcId = helper.String("")
 	}
 	request.VpnGatewayId = helper.String(d.Get("vpn_gateway_id").(string))
@@ -323,7 +321,7 @@ func resourceTencentCloudVpnConnectionCreate(d *schema.ResourceData, meta interf
 
 	//set up  SecurityPolicyDatabases
 
-	sgps := d.Get("security_group_policy").([]interface{})
+	sgps := d.Get("security_group_policy").(*schema.Set).List()
 	if len(sgps) < 1 {
 		return fmt.Errorf("Para `security_group_policy` should be set at least one.")
 	}
@@ -516,8 +514,11 @@ func resourceTencentCloudVpnConnectionRead(d *schema.ResourceData, meta interfac
 	defer logElapsed("resource.tencentcloud_vpn_connection.read")()
 	defer inconsistentCheck(d, meta)()
 
-	logId := getLogId(contextNil)
-	ctx := context.WithValue(context.TODO(), logIdKey, logId)
+	var (
+		logId   = getLogId(contextNil)
+		ctx     = context.WithValue(context.TODO(), logIdKey, logId)
+		service = VpcService{client: meta.(*TencentCloudClient).apiV3Conn}
+	)
 
 	connectionId := d.Id()
 	request := vpc.NewDescribeVpnConnectionsRequest()
@@ -528,6 +529,10 @@ func resourceTencentCloudVpnConnectionRead(d *schema.ResourceData, meta interfac
 		if e != nil {
 			log.Printf("[CRITAL]%s api[%s] fail, request body [%s], reason[%s]\n",
 				logId, request.GetAction(), request.ToJsonString(), e.Error())
+			ee, ok := e.(*sdkErrors.TencentCloudSDKError)
+			if ok && ee.Code == VPCNotFound {
+				return nil
+			}
 			return retryError(e)
 		}
 
@@ -538,16 +543,31 @@ func resourceTencentCloudVpnConnectionRead(d *schema.ResourceData, meta interfac
 		log.Printf("[CRITAL]%s read VPN connection failed, reason:%s\n", logId, err.Error())
 		return err
 	}
-	if len(response.Response.VpnConnectionSet) < 1 {
+	if response == nil || response.Response == nil || len(response.Response.VpnConnectionSet) < 1 {
 		d.SetId("")
 		return nil
 	}
 
 	connection := response.Response.VpnConnectionSet[0]
 	_ = d.Set("name", *connection.VpnConnectionName)
-	_ = d.Set("vpc_id", *connection.VpcId)
 	_ = d.Set("create_time", *connection.CreatedTime)
 	_ = d.Set("vpn_gateway_id", *connection.VpnGatewayId)
+
+	// get vpngw type
+	has, gateway, err := service.DescribeVpngwById(ctx, d.Get("vpn_gateway_id").(string))
+	if err != nil {
+		log.Printf("[CRITAL]%s read vpn_geteway failed, reason:%s\n", logId, err.Error())
+		return err
+	}
+	if !has {
+		return fmt.Errorf("[CRITAL] vpn_gateway_id %s doesn't exist", d.Get("vpn_gateway_id").(string))
+	}
+
+	if *gateway.Type != "CCN" {
+		_ = d.Set("vpc_id", *connection.VpcId)
+	}
+
+	_ = d.Set("is_ccn_type", *gateway.Type == "CCN")
 	_ = d.Set("customer_gateway_id", *connection.CustomerGatewayId)
 	_ = d.Set("pre_share_key", *connection.PreShareKey)
 	//set up SPD
@@ -624,13 +644,13 @@ func resourceTencentCloudVpnConnectionUpdate(d *schema.ResourceData, meta interf
 
 	//set up  SecurityPolicyDatabases
 	if d.HasChange("security_group_policy") {
-		sgps := d.Get("security_group_policy").([]interface{})
+		sgps := d.Get("security_group_policy").(*schema.Set).List()
 		if len(sgps) < 1 {
 			return fmt.Errorf("Para `security_group_policy` should be set at least one.")
 		}
+		request.SecurityPolicyDatabases = make([]*vpc.SecurityPolicyDatabase, 0, len(sgps))
 		for _, v := range sgps {
 			m := v.(map[string]interface{})
-			request.SecurityPolicyDatabases = make([]*vpc.SecurityPolicyDatabase, 0, len(sgps))
 			var sgp vpc.SecurityPolicyDatabase
 			local := m["local_cidr_block"].(string)
 			sgp.LocalCidrBlock = &local
 
@@ -177,7 +177,7 @@ func resourceTencentCloudVpnCustomerGatewayRead(d *schema.ResourceData, meta int
 		log.Printf("[CRITAL]%s read VPN customer gateway failed, reason:%s\n", logId, err.Error())
 		return err
 	}
-	if len(response.Response.CustomerGatewaySet) < 1 {
+	if response == nil || response.Response == nil || len(response.Response.CustomerGatewaySet) < 1 {
 		d.SetId("")
 		return nil
 	}
 
@@ -76,10 +76,16 @@ func resourceTencentCloudVpnGateway() *schema.Resource {
 				Description:  "Name of the VPN gateway. The length of character is limited to 1-60.",
 			},
 			"vpc_id": {
-				Type:        schema.TypeString,
-				Optional:    true,
-				ForceNew:    true,
-				Description: "ID of the VPC. Required if vpn gateway is not in `CCN` type, and doesn't make sense if vpn gateway is in `CCN` type.",
+				Type:     schema.TypeString,
+				Optional: true,
+				ForceNew: true,
+				DiffSuppressFunc: func(k, old, new string, d *schema.ResourceData) bool {
+					if v, ok := d.GetOk("type"); ok && v.(string) == "CCN" {
+						return true
+					}
+					return old == new
+				},
+				Description: "ID of the VPC. Required if vpn gateway is not in `CCN` type, and doesn't make sense for `CCN` vpn gateway.",
 			},
 			"bandwidth": {
 				Type:        schema.TypeInt,
@@ -191,6 +197,9 @@ func resourceTencentCloudVpnGatewayCreate(d *schema.ResourceData, meta interface
 			}
 			request.VpcId = helper.String(d.Get("vpc_id").(string))
 		} else {
+			if _, ok := d.GetOk("vpc_id"); ok {
+				return fmt.Errorf("[CRITAL] vpc_id doesn't make sense when vpn gateway is in CCN type")
+			}
 			request.VpcId = helper.String("")
 		}
 	} else {
@@ -267,44 +276,23 @@ func resourceTencentCloudVpnGatewayRead(d *schema.ResourceData, meta interface{}
 	defer logElapsed("resource.tencentcloud_vpn_gateway.read")()
 	defer inconsistentCheck(d, meta)()
 
-	logId := getLogId(contextNil)
-	ctx := context.WithValue(context.TODO(), logIdKey, logId)
+	var (
+		logId     = getLogId(contextNil)
+		ctx       = context.WithValue(context.TODO(), logIdKey, logId)
+		service   = VpcService{client: meta.(*TencentCloudClient).apiV3Conn}
+		gatewayId = d.Id()
+	)
 
-	gatewayId := d.Id()
-	request := vpc.NewDescribeVpnGatewaysRequest()
-	request.VpnGatewayIds = []*string{&gatewayId}
-	var response *vpc.DescribeVpnGatewaysResponse
-	err := resource.Retry(readRetryTimeout, func() *resource.RetryError {
-		result, e := meta.(*TencentCloudClient).apiV3Conn.UseVpcClient().DescribeVpnGateways(request)
-		if e != nil {
-			ee, ok := e.(*errors.TencentCloudSDKError)
-			if !ok {
-				return retryError(e)
-			}
-			if ee.Code == VPCNotFound {
-				log.Printf("[CRITAL]%s api[%s] success, request body [%s], reason[%s]\n",
-					logId, request.GetAction(), request.ToJsonString(), e.Error())
-				return nil
-			} else {
-				log.Printf("[CRITAL]%s api[%s] fail, request body [%s], reason[%s]\n",
-					logId, request.GetAction(), request.ToJsonString(), e.Error())
-				return retryError(e)
-			}
-		}
-		response = result
-		return nil
-	})
+	has, gateway, err := service.DescribeVpngwById(ctx, gatewayId)
 	if err != nil {
 		log.Printf("[CRITAL]%s read VPN gateway failed, reason:%s\n", logId, err.Error())
 		return err
 	}
-	if len(response.Response.VpnGatewaySet) < 1 {
+	if !has {
 		d.SetId("")
 		return nil
 	}
 
-	gateway := response.Response.VpnGatewaySet[0]
-
 	_ = d.Set("name", gateway.VpnGatewayName)
 	_ = d.Set("public_ip_address", gateway.PublicIpAddress)
 	_ = d.Set("bandwidth", int(*gateway.InternetMaxBandwidthOut))
 
@@ -179,6 +179,25 @@ func (me *CvmService) ModifyPassword(ctx context.Context, instanceId, password s
 	return nil
 }
 
+func (me *CvmService) ModifyInternetMaxBandwidthOut(ctx context.Context, instanceId, internetChargeType string, internetMaxBandWidthOut int64) error {
+	logId := getLogId(ctx)
+	request := cvm.NewResetInstancesInternetMaxBandwidthRequest()
+	request.InstanceIds = []*string{&instanceId}
+	request.InternetAccessible = &cvm.InternetAccessible{
+		InternetChargeType:      &internetChargeType,
+		InternetMaxBandwidthOut: &internetMaxBandWidthOut,
+	}
+
+	ratelimit.Check(request.GetAction())
+	_, err := me.client.UseCvmClient().ResetInstancesInternetMaxBandwidth(request)
+	if err != nil {
+		log.Printf("[CRITAL]%s api[%s] fail, request body [%s], reason[%s]\n",
+			logId, request.GetAction(), request.ToJsonString(), err.Error())
+		return err
+	}
+	return nil
+}
+
 func (me *CvmService) ModifyVpc(ctx context.Context, instanceId, vpcId, subnetId, privateIp string) error {
 	logId := getLogId(ctx)
 	request := cvm.NewModifyInstancesVpcAttributeRequest()
Original file line number	Diff line number	Diff line change
`@@ -177,7 +177,7 @@ func resourceTencentCloudVpnCustomerGatewayRead(d *schema.ResourceData, meta int`
`177`	`177`	`log.Printf("[CRITAL]%s read VPN customer gateway failed, reason:%s\n", logId, err.Error())`
`178`	`178`	`return err`
`179`	`179`	`}`
`180`		`- if len(response.Response.CustomerGatewaySet) < 1 {`
	`180`	`+ if response == nil \|\| response.Response == nil \|\| len(response.Response.CustomerGatewaySet) < 1 {`
`181`	`181`	`d.SetId("")`
`182`	`182`	`return nil`
`183`	`183`	`}`