gen docs about kms resource and data source

Author: ChrisdeR

tencentcloud/data_source_tc_kms_key.go

@@ -74,6 +74,11 @@ func dataSourceTencentCloudKmsKey() *schema.Resource {
 				Optional:    true,
 				Description: "Tags to filter CMK.",
 			},
+			"result_output_file": {
+				Type:        schema.TypeString,
+				Optional:    true,
+				Description: "Used to save results.",
+			},
 			"key_list": {
 				Type:        schema.TypeList,
 				Computed:    true,
@@ -133,7 +138,7 @@ func dataSourceTencentCloudKmsKey() *schema.Resource {
 						"deletion_date": {
 							Type:        schema.TypeString,
 							Computed:    true,
-							Description: "Delete time of CMK.`1970-01-01T12:00:00Z` means it does not delete.",
+							Description: "Delete time of CMK.",
 						},
 						"origin": {
 							Type:        schema.TypeString,
@@ -143,7 +148,7 @@ func dataSourceTencentCloudKmsKey() *schema.Resource {
 						"valid_to": {
 							Type:        schema.TypeString,
 							Computed:    true,
-							Description: "Valid when Origin is EXTERNAL, it means the effective date of the key material.`1970-01-01T12:00:00Z` means it does not expire.",
+							Description: "Valid when Origin is EXTERNAL, it means the effective date of the key material.",
 						},
 					},
 				},
@@ -211,13 +216,21 @@ func dataSourceTencentCloudKmsKeyRead(d *schema.ResourceData, meta interface{})
 			"creator_uin":          key.CreatorUin,
 			"key_rotation_enabled": key.KeyRotationEnabled,
 			"owner":                key.Owner,
-			"deletion_date":        helper.FormatUnixTime(*key.DeletionDate),
 			"origin":               key.Origin,
-			"valid_to":             helper.FormatUnixTime(*key.ValidTo),
 		}
 		if *key.KeyRotationEnabled {
 			mapping["next_rotate_time"] = helper.FormatUnixTime(*key.NextRotateTime)
 		}
+		if *key.KeyState == KMS_KEY_STATE_PENDINGDELETE {
+			mapping["deletion_date"] = helper.FormatUnixTime(*key.DeletionDate)
+		}
+		if *key.Origin == KMS_ORIGIN_EXTERNAL {
+			if *key.ValidTo != 0 {
+				mapping["valid_to"] = helper.FormatUnixTime(*key.ValidTo)
+			} else {
+				mapping["valid_to"] = "never expire"
+			}
+		}
 		keyList = append(keyList, mapping)
 		ids = append(ids, *key.KeyId)
 	}

tencentcloud/provider.go

@@ -502,6 +502,14 @@ VPN
     tencentcloud_vpn_customer_gateway
     tencentcloud_vpn_gateway
     tencentcloud_vpn_connection
+
+KMS
+  Data Source
+    tencentcloud_kms_key
+
+  Resource
+    tencentcloud_kms_key
+    tencentcloud_kms_external_key
 */
 package tencentcloud
 

tencentcloud/resource_tc_kms_external_key.go

@@ -87,7 +87,7 @@ func resourceTencentCloudKmsExternalKey() *schema.Resource {
 				Type:        schema.TypeString,
 				Optional:    true,
 				Sensitive:   true,
-				Description: "The base64-encoded key material encrypted with the public_key.For regions using the national secret version, the length of the imported key material is required to be 128 bits, and for regions using the FIPS version, the length of the imported key material is required to be 256 bits。",
+				Description: "The base64-encoded key material encrypted with the public_key.For regions using the national secret version, the length of the imported key material is required to be 128 bits, and for regions using the FIPS version, the length of the imported key material is required to be 256 bits.",
 			},
 			"valid_to": {
 				Type:        schema.TypeInt,

tencentcloud/resource_tc_kms_key.go

@@ -22,7 +22,6 @@ KMS keys can be imported using the id, e.g.
 $ terraform import tencentcloud_kms_key.foo 287e8f40-7cbb-11eb-9a3a-5254004f7f94
 ```
 */
-
 package tencentcloud
 
 import (
@@ -77,7 +76,7 @@ func resourceTencentCloudKmsKey() *schema.Resource {
 				Optional:     true,
 				Computed:     true,
 				ValidateFunc: validateAllowedStringValue(KMS_KEY_USAGE),
-				Description:  "Usage of CMK.Available values include `ENCRYPT_DECRYPT`, `ASYMMETRIC_DECRYPT_RSA_2048`, `ASYMMETRIC_DECRYPT_SM2`, `ASYMMETRIC_SIGN_VERIFY_SM2`, `ASYMMETRIC_SIGN_VERIFY_RSA_2048`, `ASYMMETRIC_SIGN_VERIFY_ECC`.",
+				Description:  "Usage of CMK.Available values include `ENCRYPT_DECRYPT`, `ASYMMETRIC_DECRYPT_RSA_2048`, `ASYMMETRIC_DECRYPT_SM2`, `ASYMMETRIC_SIGN_VERIFY_SM2`, `ASYMMETRIC_SIGN_VERIFY_RSA_2048`, `ASYMMETRIC_SIGN_VERIFY_ECC`.Default value is `ENCRYPT_DECRYPT`.",
 			},
 			"key_rotation_enabled": {
 				Type:        schema.TypeBool,

website/docs/d/kms_key.html.markdown

@@ -0,0 +1,57 @@
+---
+subcategory: "KMS"
+layout: "tencentcloud"
+page_title: "TencentCloud: tencentcloud_kms_key"
+sidebar_current: "docs-tencentcloud-datasource-kms_key"
+description: |-
+  Use this data source to query detailed information of KMS key
+---
+
+# tencentcloud_kms_key
+
+Use this data source to query detailed information of KMS key
+
+## Example Usage
+
+```hcl
+data "tencentcloud_kms_key" "foo" {
+  search_key_alias = "test"
+  key_state        = "All"
+  origin           = "TENCENT_KMS"
+  key_usage        = "ALL"
+}
+```
+
+## Argument Reference
+
+The following arguments are supported:
+
+* `key_state` - (Optional) State of CMK.Available values include `All`, `Enabled`, `Disabled`, `PendingDelete`, `PendingImport`, `Archived`.
+* `key_usage` - (Optional) Usage of CMK.Available values include `ALL`, `ENCRYPT_DECRYPT`, `ASYMMETRIC_DECRYPT_RSA_2048`, `ASYMMETRIC_DECRYPT_SM2`, `ASYMMETRIC_SIGN_VERIFY_SM2`, `ASYMMETRIC_SIGN_VERIFY_RSA_2048`, `ASYMMETRIC_SIGN_VERIFY_ECC`.Default value is `ENCRYPT_DECRYPT`.
+* `order_type` - (Optional) Order to sort the CMK create time.`0` - desc, `1` - asc.Default value is `0`.
+* `origin` - (Optional) Origin of CMK.`TENCENT_KMS` - CMK created by KMS, `EXTERNAL` - CMK imported by user, `ALL` - All CMK.Default value is `ALL`.
+* `result_output_file` - (Optional) Used to save results.
+* `role` - (Optional) Role of the CMK creator.`0` - created by user, `1` - created by cloud product.Default value is `0`.
+* `search_key_alias` - (Optional) Words used to match the results,and the words can be: key_id and alias.
+* `tags` - (Optional) Tags to filter CMK.
+
+## Attributes Reference
+
+In addition to all arguments above, the following attributes are exported:
+
+* `key_list` - A list of KMS keys.
+  * `alias` - Name of CMK.
+  * `create_time` - Create time of CMK.
+  * `creator_uin` - Uin of CMK Creator.
+  * `deletion_date` - Delete time of CMK.
+  * `description` - Description of CMK.
+  * `key_id` - ID of CMK.
+  * `key_rotation_enabled` - Specify whether to enable key rotation.
+  * `key_state` - State of CMK.Available values include `Enabled`, `Disabled`, `PendingDelete`, `PendingImport`, `Archived`.
+  * `key_usage` - Usage of CMK.Available values include `ENCRYPT_DECRYPT`, `ASYMMETRIC_DECRYPT_RSA_2048`, `ASYMMETRIC_DECRYPT_SM2`, `ASYMMETRIC_SIGN_VERIFY_SM2`, `ASYMMETRIC_SIGN_VERIFY_RSA_2048`, `ASYMMETRIC_SIGN_VERIFY_ECC`.
+  * `next_rotate_time` - Next rotate time of CMK when key_rotation_enabled is true.
+  * `origin` - Origin of CMK.`TENCENT_KMS` - CMK created by KMS, `EXTERNAL` - CMK imported by user.
+  * `owner` - Creator of CMK.
+  * `valid_to` - Valid when Origin is EXTERNAL, it means the effective date of the key material.
+
+

website/docs/r/kms_external_key.html.markdown

@@ -0,0 +1,55 @@
+---
+subcategory: "KMS"
+layout: "tencentcloud"
+page_title: "TencentCloud: tencentcloud_kms_external_key"
+sidebar_current: "docs-tencentcloud-resource-kms_external_key"
+description: |-
+  Provide a resource to create a KMS external import key.
+---
+
+# tencentcloud_kms_external_key
+
+Provide a resource to create a KMS external import key.
+
+## Example Usage
+
+```hcl
+resource "tencentcloud_kms_external_key" "foo" {
+  alias               = "test"
+  description         = "describe key test message."
+  wrapping_algorithm  = "RSAES_PKCS1_V1_5"
+  key_material_base64 = "MTIzMTIzMTIzMTIzMTIzQQ=="
+  valid_to            = 2147443200
+}
+```
+
+## Argument Reference
+
+The following arguments are supported:
+
+* `alias` - (Required) Name of CMK.The name can only contain English letters, numbers, underscore and hyphen '-'.The first character must be a letter or number.
+* `description` - (Optional) Description of CMK.The maximum is 1024 bytes.
+* `key_id` - (Optional) ID of CMK.
+* `key_material_base64` - (Optional) The base64-encoded key material encrypted with the public_key.For regions using the national secret version, the length of the imported key material is required to be 128 bits, and for regions using the FIPS version, the length of the imported key material is required to be 256 bits.
+* `key_state` - (Optional) State of CMK.Available values include `Enabled`, `Disabled`, `PendingDelete`, `PendingImport`, `Archived`.
+* `pending_delete_window_in_days` - (Optional) Duration in days after which the key is deleted after destruction of the resource, must be between 7 and 30 days. Defaults to 7 days.
+* `tags` - (Optional) Tags of CMK.
+* `valid_to` - (Optional) this value means the effective timestamp of the key material, 0 means it does not expire.Need to be greater than the current time point, the maximum support is 2147443200.
+* `wrapping_algorithm` - (Optional) The algorithm for encrypting key material.Available values include `RSAES_PKCS1_V1_5`, `RSAES_OAEP_SHA_1` and `RSAES_OAEP_SHA_256`.
+
+## Attributes Reference
+
+In addition to all arguments above, the following attributes are exported:
+
+* `id` - ID of the resource.
+
+
+
+## Import
+
+KMS external keys can be imported using the id, e.g.
+
+```
+$ terraform import tencentcloud_kms_external_key.foo 287e8f40-7cbb-11eb-9a3a-5254004f7f94
+```
+

website/docs/r/kms_key.html.markdown

@@ -0,0 +1,55 @@
+---
+subcategory: "KMS"
+layout: "tencentcloud"
+page_title: "TencentCloud: tencentcloud_kms_key"
+sidebar_current: "docs-tencentcloud-resource-kms_key"
+description: |-
+  Provide a resource to create a KMS key.
+---
+
+# tencentcloud_kms_key
+
+Provide a resource to create a KMS key.
+
+## Example Usage
+
+```hcl
+resource "tencentcloud_kms_key" "foo" {
+  alias                = "test"
+  description          = "describe key test message."
+  key_rotation_enabled = true
+  tags = {
+    "test-tag" : "key-test"
+  }
+}
+```
+
+## Argument Reference
+
+The following arguments are supported:
+
+* `alias` - (Required) Name of CMK.The name can only contain English letters, numbers, underscore and hyphen '-'.The first character must be a letter or number.
+* `description` - (Optional) Description of CMK.The maximum is 1024 bytes.
+* `key_id` - (Optional) ID of CMK.
+* `key_rotation_enabled` - (Optional) Specify whether to enable key rotation.
+* `key_state` - (Optional) State of CMK.Available values include `Enabled`, `Disabled`, `PendingDelete`, `Archived`.
+* `key_usage` - (Optional) Usage of CMK.Available values include `ENCRYPT_DECRYPT`, `ASYMMETRIC_DECRYPT_RSA_2048`, `ASYMMETRIC_DECRYPT_SM2`, `ASYMMETRIC_SIGN_VERIFY_SM2`, `ASYMMETRIC_SIGN_VERIFY_RSA_2048`, `ASYMMETRIC_SIGN_VERIFY_ECC`.Default value is `ENCRYPT_DECRYPT`.
+* `pending_delete_window_in_days` - (Optional) Duration in days after which the key is deleted after destruction of the resource, must be between 7 and 30 days. Defaults to 7 days.
+* `tags` - (Optional) Tags of CMK.
+
+## Attributes Reference
+
+In addition to all arguments above, the following attributes are exported:
+
+* `id` - ID of the resource.
+
+
+
+## Import
+
+KMS keys can be imported using the id, e.g.
+
+```
+$ terraform import tencentcloud_kms_key.foo 287e8f40-7cbb-11eb-9a3a-5254004f7f94
+```
+

website/tencentcloud.erb

@@ -807,6 +807,30 @@
                         </li>
                     </ul>
                 </li>
+                <li>
+                    <a href="#">KMS</a>
+                    <ul class="nav">
+                        <li>
+                            <a href="#">Data Sources</a>
+                            <ul class="nav nav-auto-expand">
+                                <li>
+                                    <a href="/docs/providers/tencentcloud/d/kms_key.html">tencentcloud_kms_key</a>
+                                </li>
+                            </ul>
+                        </li>
+                        <li>
+                            <a href="#">Resources</a>
+                            <ul class="nav nav-auto-expand">
+                                <li>
+                                    <a href="/docs/providers/tencentcloud/r/kms_key.html">tencentcloud_kms_key</a>
+                                </li>
+                                <li>
+                                    <a href="/docs/providers/tencentcloud/r/kms_external_key.html">tencentcloud_kms_external_key</a>
+                                </li>
+                            </ul>
+                        </li>
+                    </ul>
+                </li>
                 <li>
                     <a href="#">MongoDB</a>
                     <ul class="nav">
@@ -1230,13 +1254,13 @@
                             <a href="#">Resources</a>
                             <ul class="nav nav-auto-expand">
                                 <li>
-                                    <a href="/docs/providers/tencentcloud/r/vpn_customer_gateway.html">tencentcloud_vpn_customer_gateway</a>
+                                    <a href="/docs/providers/tencentcloud/r/vpn_connection.html">tencentcloud_vpn_connection</a>
                                 </li>
                                 <li>
-                                    <a href="/docs/providers/tencentcloud/r/vpn_gateway.html">tencentcloud_vpn_gateway</a>
+                                    <a href="/docs/providers/tencentcloud/r/vpn_customer_gateway.html">tencentcloud_vpn_customer_gateway</a>
                                 </li>
                                 <li>
-                                    <a href="/docs/providers/tencentcloud/r/vpn_connection.html">tencentcloud_vpn_connection</a>
+                                    <a href="/docs/providers/tencentcloud/r/vpn_gateway.html">tencentcloud_vpn_gateway</a>
                                 </li>
                             </ul>
                         </li>