feat:update tke addon config for tcr (#1770)

lyu571 · web-flow · commit 66214b8772fb · 2023-05-15T16:54:33.000+08:00
* feat:update tke addon config for tcr

* add changelog and update doc

* rm cluster id from exapmle
diff --git a/.changelog/1770.txt b/.changelog/1770.txt
@@ -0,0 +1,3 @@
+```release-note:enhancement
+resource/tencentcloud_kubernetes_addon_attachment: adjust the example for installing tcr addon
+```
diff --git a/tencentcloud/internal/helper/helper.go b/tencentcloud/internal/helper/helper.go
@@ -189,6 +189,17 @@ func ConvertInterfacesHeadToMap(v interface{}) (result map[string]interface{}, o
 	return
 }
 
+// CovertInterfaceMapToStrPtr returns [string:string] map from a [string:interface] map
+func CovertInterfaceMapToStrPtr(m map[string]interface{}) map[string]*string {
+	result := make(map[string]*string)
+	for k, v := range m {
+		if s, ok := v.(string); ok {
+			result[k] = &s
+		}
+	}
+	return result
+}
+
 func SetMapInterfaces(d *schema.ResourceData, key string, values ...map[string]interface{}) error {
 	val := make([]interface{}, 0, len(values))
 	for i := range values {
diff --git a/tencentcloud/resource_tc_kubernetes_addon_attachment.go b/tencentcloud/resource_tc_kubernetes_addon_attachment.go
@@ -5,6 +5,8 @@ Provide a resource to configure kubernetes cluster app addons.
 
 Example Usage
 
+Install cbs addon by passing values
+
 ```hcl
 
 resource "tencentcloud_kubernetes_addon_attachment" "addon_cbs" {
@@ -15,33 +17,82 @@ resource "tencentcloud_kubernetes_addon_attachment" "addon_cbs" {
     "rootdir=/var/lib/kubelet"
   ]
 }
+```
+
+Install tcr addon by passing values
 
+```hcl
 resource "tencentcloud_kubernetes_addon_attachment" "addon_tcr" {
-  cluster_id = "cls-xxxxxxxx"
-  name = "tcr"
-  # version = "1.0.0"
+  cluster_id = "cls-xxxxxxxx" #specify your tke cluster id
+  name       = "tcr"
+  version    = "1.0.0"
   values = [
     # imagePullSecretsCrs is an array which can configure image pull
-    "global.imagePullSecretsCrs[0].name=unique-sample-vpc",
-    "global.imagePullSecretsCrs[0].namespaces=tcr-assistant-system",
-    "global.imagePullSecretsCrs[0].serviceAccounts=*",
-    "global.imagePullSecretsCrs[0].type=docker",
-    "global.imagePullSecretsCrs[0].dockerUsername=100012345678",
-    "global.imagePullSecretsCrs[0].dockerPassword=a.b.tcr-token",
-    "global.imagePullSecretsCrs[0].dockerServer=xxxx.tencentcloudcr.com",
-    "global.imagePullSecretsCrs[1].name=sample-public",
-    "global.imagePullSecretsCrs[1].namespaces=*",
+    "global.imagePullSecretsCrs[0].name=${local.tcr_id}-vpc",                              #specify a unique name, invalid format as: `${tcrId}-vpc`
+    "global.imagePullSecretsCrs[0].namespaces=${local.ns_name}",                           #input the specified namespaces of the cluster, or input `*` for all.
+    "global.imagePullSecretsCrs[0].serviceAccounts=*",                                     #input the specified service account of the cluster, or input `*` for all.
+    "global.imagePullSecretsCrs[0].type=docker",                                           #only support docker now
+    "global.imagePullSecretsCrs[0].dockerUsername=${local.user_name}",                     #input the access username, or you can create it from data source `tencentcloud_tcr_tokens`
+    "global.imagePullSecretsCrs[0].dockerPassword=${local.token}",                         #input the access token, or you can create it from data source `tencentcloud_tcr_tokens`
+    "global.imagePullSecretsCrs[0].dockerServer=${local.tcr_name}-vpc.tencentcloudcr.com", #invalid format as: `${tcr_name}-vpc.tencentcloudcr.com`
+    "global.imagePullSecretsCrs[1].name=${local.tcr_id}-public",                           #specify a unique name, invalid format as: `${tcr_id}-public`
+    "global.imagePullSecretsCrs[1].namespaces=${local.ns_name}",
     "global.imagePullSecretsCrs[1].serviceAccounts=*",
     "global.imagePullSecretsCrs[1].type=docker",
-    "global.imagePullSecretsCrs[1].dockerUsername=100012345678",
-    "global.imagePullSecretsCrs[1].dockerPassword=a.b.tcr-token",
-    "global.imagePullSecretsCrs[1].dockerServer=sample",
-    # Specify global hosts
-	"global.hosts[0].domain=sample-vpc.tencentcloudcr.com",
-	"global.hosts[0].ip=10.16.0.49",
-	"global.hosts[0].disabled=false",
+    "global.imagePullSecretsCrs[1].dockerUsername=${local.user_name}",                 #refer to previous description
+    "global.imagePullSecretsCrs[1].dockerPassword=${local.token}",                     #refer to previous description
+    "global.imagePullSecretsCrs[1].dockerServer=${local.tcr_name}-tencentcloudcr.com", #invalid format as: `${tcr_name}.tencentcloudcr.com`
+    "global.cluster.region=gz",
+    "global.cluster.longregion=ap-guangzhou",
+    # Specify global hosts(optional), the numbers of hosts must be matched with the numbers of imagePullSecretsCrs
+    "global.hosts[0].domain=${local.tcr_name}-vpc.tencentcloudcr.com",                 #Corresponds to the dockerServer in the imagePullSecretsCrs above
+    "global.hosts[0].ip=${local.end_point}",                                           #input InternalEndpoint of tcr instance, you can get it from data source `tencentcloud_tcr_instances`
+    "global.hosts[0].disabled=false",                                                  #disabled this host config or not
+    "global.hosts[1].domain=${local.tcr_name}-tencentcloudcr.com",
+    "global.hosts[1].ip=${local.end_point}",
+    "global.hosts[1].disabled=false",
   ]
 }
+
+locals {
+  tcr_id   = tencentcloud_tcr_instance.mytcr.id
+  tcr_name = tencentcloud_tcr_instance.mytcr.name
+  ns_name   = tencentcloud_tcr_namespace.my_ns.name
+  user_name = tencentcloud_tcr_token.my_token.user_name
+  token     = tencentcloud_tcr_token.my_token.token
+  end_point = data.tencentcloud_tcr_instances.my_ins.instance_list.0.internal_end_point
+}
+
+resource "tencentcloud_tcr_token" "my_token" {
+  instance_id = local.tcr_id
+  description = "tcr token"
+}
+
+data "tencentcloud_tcr_instances" "my_ins" {
+  instance_id = local.tcr_id
+}
+
+resource "tencentcloud_tcr_instance" "mytcr" {
+  name          = "tf-test-tcr-addon"
+  instance_type = "basic"
+  delete_bucket = true
+
+  tags = {
+    test = "test"
+  }
+}
+
+resource "tencentcloud_tcr_namespace" "my_ns" {
+  instance_id    = local.tcr_id
+  name           = "tf_test_tcr_ns_addon"
+  is_public      = true
+  is_auto_scan   = true
+  is_prevent_vul = true
+  severity       = "medium"
+  cve_whitelist_items {
+    cve_id = "cve-xxxxx"
+  }
+}
 ```
 
 Install new addon by passing spec json to req_body directly
@@ -235,7 +286,6 @@ func resourceTencentCloudTkeAddonAttachmentRead(d *schema.ResourceData, meta int
 		err               error
 		response          string
 		addonResponseData = &AddonResponseData{}
-		status            = make(map[string]*string)
 	)
 
 	_, has, err = service.PollingAddonsPhase(ctx, clusterId, addonName, addonResponseData)
@@ -255,6 +305,7 @@ func resourceTencentCloudTkeAddonAttachmentRead(d *schema.ResourceData, meta int
 	_ = d.Set("response_body", response)
 
 	spec := addonResponseData.Spec
+	statuses := addonResponseData.Status
 
 	if spec != nil {
 		_ = d.Set("cluster_id", clusterId)
@@ -268,8 +319,9 @@ func resourceTencentCloudTkeAddonAttachmentRead(d *schema.ResourceData, meta int
 		}
 	}
 
-	if status != nil {
-		err := d.Set("status", status)
+	if statuses != nil || len(statuses) == 0 {
+		strMap := helper.CovertInterfaceMapToStrPtr(statuses)
+		err := d.Set("status", strMap)
 		if err != nil {
 			return err
 		}
diff --git a/website/docs/r/kubernetes_addon_attachment.html.markdown b/website/docs/r/kubernetes_addon_attachment.html.markdown
@@ -15,6 +15,8 @@ Provide a resource to configure kubernetes cluster app addons.
 
 ## Example Usage
 
+Install cbs addon by passing values
+
 ```hcl
 resource "tencentcloud_kubernetes_addon_attachment" "addon_cbs" {
   cluster_id = "cls-xxxxxxxx"
@@ -24,33 +26,82 @@ resource "tencentcloud_kubernetes_addon_attachment" "addon_cbs" {
     "rootdir=/var/lib/kubelet"
   ]
 }
+```
+
+Install tcr addon by passing values
 
+```hcl
 resource "tencentcloud_kubernetes_addon_attachment" "addon_tcr" {
-  cluster_id = "cls-xxxxxxxx"
+  cluster_id = "cls-xxxxxxxx" #specify your tke cluster id
   name       = "tcr"
-  # version = "1.0.0"
+  version    = "1.0.0"
   values = [
     # imagePullSecretsCrs is an array which can configure image pull
-    "global.imagePullSecretsCrs[0].name=unique-sample-vpc",
-    "global.imagePullSecretsCrs[0].namespaces=tcr-assistant-system",
-    "global.imagePullSecretsCrs[0].serviceAccounts=*",
-    "global.imagePullSecretsCrs[0].type=docker",
-    "global.imagePullSecretsCrs[0].dockerUsername=100012345678",
-    "global.imagePullSecretsCrs[0].dockerPassword=a.b.tcr-token",
-    "global.imagePullSecretsCrs[0].dockerServer=xxxx.tencentcloudcr.com",
-    "global.imagePullSecretsCrs[1].name=sample-public",
-    "global.imagePullSecretsCrs[1].namespaces=*",
+    "global.imagePullSecretsCrs[0].name=${local.tcr_id}-vpc",                              #specify a unique name, invalid format as: `${tcrId}-vpc`
+    "global.imagePullSecretsCrs[0].namespaces=${local.ns_name}",                           #input the specified namespaces of the cluster, or input `*` for all.
+    "global.imagePullSecretsCrs[0].serviceAccounts=*",                                     #input the specified service account of the cluster, or input `*` for all.
+    "global.imagePullSecretsCrs[0].type=docker",                                           #only support docker now
+    "global.imagePullSecretsCrs[0].dockerUsername=${local.user_name}",                     #input the access username, or you can create it from data source `tencentcloud_tcr_tokens`
+    "global.imagePullSecretsCrs[0].dockerPassword=${local.token}",                         #input the access token, or you can create it from data source `tencentcloud_tcr_tokens`
+    "global.imagePullSecretsCrs[0].dockerServer=${local.tcr_name}-vpc.tencentcloudcr.com", #invalid format as: `${tcr_name}-vpc.tencentcloudcr.com`
+    "global.imagePullSecretsCrs[1].name=${local.tcr_id}-public",                           #specify a unique name, invalid format as: `${tcr_id}-public`
+    "global.imagePullSecretsCrs[1].namespaces=${local.ns_name}",
     "global.imagePullSecretsCrs[1].serviceAccounts=*",
     "global.imagePullSecretsCrs[1].type=docker",
-    "global.imagePullSecretsCrs[1].dockerUsername=100012345678",
-    "global.imagePullSecretsCrs[1].dockerPassword=a.b.tcr-token",
-    "global.imagePullSecretsCrs[1].dockerServer=sample",
-    # Specify global hosts
-    "global.hosts[0].domain=sample-vpc.tencentcloudcr.com",
-    "global.hosts[0].ip=10.16.0.49",
-    "global.hosts[0].disabled=false",
+    "global.imagePullSecretsCrs[1].dockerUsername=${local.user_name}",                 #refer to previous description
+    "global.imagePullSecretsCrs[1].dockerPassword=${local.token}",                     #refer to previous description
+    "global.imagePullSecretsCrs[1].dockerServer=${local.tcr_name}-tencentcloudcr.com", #invalid format as: `${tcr_name}.tencentcloudcr.com`
+    "global.cluster.region=gz",
+    "global.cluster.longregion=ap-guangzhou",
+    # Specify global hosts(optional), the numbers of hosts must be matched with the numbers of imagePullSecretsCrs
+    "global.hosts[0].domain=${local.tcr_name}-vpc.tencentcloudcr.com", #Corresponds to the dockerServer in the imagePullSecretsCrs above
+    "global.hosts[0].ip=${local.end_point}",                           #input InternalEndpoint of tcr instance, you can get it from data source `tencentcloud_tcr_instances`
+    "global.hosts[0].disabled=false",                                  #disabled this host config or not
+    "global.hosts[1].domain=${local.tcr_name}-tencentcloudcr.com",
+    "global.hosts[1].ip=${local.end_point}",
+    "global.hosts[1].disabled=false",
   ]
 }
+
+locals {
+  tcr_id    = tencentcloud_tcr_instance.mytcr.id
+  tcr_name  = tencentcloud_tcr_instance.mytcr.name
+  ns_name   = tencentcloud_tcr_namespace.my_ns.name
+  user_name = tencentcloud_tcr_token.my_token.user_name
+  token     = tencentcloud_tcr_token.my_token.token
+  end_point = data.tencentcloud_tcr_instances.my_ins.instance_list.0.internal_end_point
+}
+
+resource "tencentcloud_tcr_token" "my_token" {
+  instance_id = local.tcr_id
+  description = "tcr token"
+}
+
+data "tencentcloud_tcr_instances" "my_ins" {
+  instance_id = local.tcr_id
+}
+
+resource "tencentcloud_tcr_instance" "mytcr" {
+  name          = "tf-test-tcr-addon"
+  instance_type = "basic"
+  delete_bucket = true
+
+  tags = {
+    test = "test"
+  }
+}
+
+resource "tencentcloud_tcr_namespace" "my_ns" {
+  instance_id    = local.tcr_id
+  name           = "tf_test_tcr_ns_addon"
+  is_public      = true
+  is_auto_scan   = true
+  is_prevent_vul = true
+  severity       = "medium"
+  cve_whitelist_items {
+    cve_id = "cve-xxxxx"
+  }
+}
 ```
 
 Install new addon by passing spec json to req_body directly

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	+```release-note:enhancement
	`2`	`+resource/tencentcloud_kubernetes_addon_attachment: adjust the example for installing tcr addon`
	`3`	+```