remove unused coding and logic;modify field

Author: crab21

examples/tencentcloud-vpc/main.tf

@@ -14,18 +14,18 @@ data "tencentcloud_vpc_instances" "tags_instances" {
 
 data "tencentcloud_vpc_instances" "default" {}
 
-resource "tencentcloud_vpc_acl" "foo" {
+resource "tencentcloud_vpc_acl" "default" {
   vpc_id  = data.tencentcloud_vpc_instances.default.instance_list.0.vpc_id
   name    = "test_acl_update"
   ingress = ["ACCEPT#192.168.1.0/24#800#TCP", "ACCEPT#192.168.1.0/24#800-900#TCP",]
   egress  = ["ACCEPT#192.168.1.0/24#800#TCP", "ACCEPT#192.168.1.0/24#800-900#TCP",]
 }
 
-resource "tencentcloud_vpc_acl_attachment" "attachment" {
-  acl_id     = tencentcloud_vpc_acl.foo.id
+resource "tencentcloud_vpc_acl_attachment" "example" {
+  acl_id     = tencentcloud_vpc_acl.default.id
   subnet_ids = data.tencentcloud_vpc_instances.default.instance_list[0].subnet_ids
 }
 
-data "tencentcloud_vpc_acls" "foo" {
+data "tencentcloud_vpc_acls" "default" {
   name = "test_acl"
 }

tencentcloud/data_source_tc_vpc_acls.go

@@ -124,7 +124,7 @@ func dataSourceTencentCloudVpcAcls() *schema.Resource {
 									"protocol": {
 										Type:        schema.TypeString,
 										Computed:    true,
-										Description: "Type of ip protocol.",
+										Description: "Type of IP protocol.",
 									},
 									"port": {
 										Type:        schema.TypeString,
@@ -134,7 +134,7 @@ func dataSourceTencentCloudVpcAcls() *schema.Resource {
 									"policy": {
 										Type:        schema.TypeString,
 										Computed:    true,
-										Description: "Rule policy of.",
+										Description: "Rule policy of Network ACL.",
 									},
 									"cidr_block": {
 										Type:        schema.TypeString,
@@ -158,7 +158,7 @@ func dataSourceTencentCloudVpcAcls() *schema.Resource {
 									"protocol": {
 										Type:        schema.TypeString,
 										Computed:    true,
-										Description: "Type of ip protocol.",
+										Description: "Type of IP protocol.",
 									},
 									"port": {
 										Type:        schema.TypeString,
@@ -168,7 +168,7 @@ func dataSourceTencentCloudVpcAcls() *schema.Resource {
 									"policy": {
 										Type:        schema.TypeString,
 										Computed:    true,
-										Description: "Rule policy of.",
+										Description: "Rule policy of Network ACL.",
 									},
 									"cidr_block": {
 										Type:        schema.TypeString,
@@ -275,7 +275,7 @@ func dataSourceTencentCloudVpcACLRead(d *schema.ResourceData, meta interface{})
 	d.SetId(helper.DataResourceIdsHash(ids))
 	err = d.Set("acl_list", aclList)
 	if err != nil {
-		log.Printf("[CRITAL]%s provider set acl list fail, reason:%v \n ", logId, err)
+		log.Printf("[CRITAL]%s provider set ACL list fail, reason:%v \n ", logId, err)
 		return err
 	}
 

tencentcloud/resource_tc_vpc_acl.go

@@ -76,7 +76,6 @@ func resourceTencentCloudVpcACL() *schema.Resource {
 				Elem:        &schema.Schema{Type: schema.TypeString},
 				Description: "Egress rules. A rule must match the following format: [action]#[cidr_ip]#[port]#[protocol]. The available value of 'action' is `ACCEPT` and `DROP`. The 'cidr_ip' must be an IP address network or segment. The 'port' valid format is `80`, `80,443`, `80-90` or `ALL`. The available value of 'protocol' is `TCP`, `UDP`, `ICMP` and `ALL`. When 'protocol' is `ICMP` or `ALL`, the 'port' must be `ALL`.",
 			},
-
 			//compute
 			"create_time": {
 				Type:        schema.TypeString,
@@ -151,12 +150,12 @@ func resourceTencentCloudVpcACLRead(d *schema.ResourceData, meta interface{}) er
 		return err
 	}
 	if has == 0 {
-		log.Printf("[WARN]%s %s\n", logId, "acl has been delete")
+		log.Printf("[WARN]%s %s\n", logId, "ACL has been delete")
 		d.SetId("")
 		return nil
 	}
 	if has != 1 {
-		errRet := fmt.Errorf("one acl_id read get %d acl info", has)
+		errRet := fmt.Errorf("one acl_id read get %d ACL info", has)
 		log.Printf("[CRITAL]%s %s\n", logId, errRet.Error())
 		return errRet
 	}
@@ -174,7 +173,7 @@ func resourceTencentCloudVpcACLRead(d *schema.ResourceData, meta interface{}) er
 			*info.EgressEntries[i].CidrBlock,
 			*info.EgressEntries[i].Port,
 			*info.EgressEntries[i].Protocol,
-		}, "#")
+		}, FILED_SP)
 		egressList = append(egressList, strings.ToUpper(result))
 	}
 
@@ -188,7 +187,7 @@ func resourceTencentCloudVpcACLRead(d *schema.ResourceData, meta interface{}) er
 			*info.IngressEntries[i].CidrBlock,
 			*info.IngressEntries[i].Port,
 			*info.IngressEntries[i].Protocol,
-		}, "#")
+		}, FILED_SP)
 		ingressList = append(ingressList, strings.ToUpper(result))
 	}
 	_ = d.Set("egress", egressList)
@@ -269,8 +268,12 @@ func resourceTencentCloudVpcACLUpdate(d *schema.ResourceData, meta interface{})
 		}
 	}
 
-	if err := service.ModifyNetWorkAclRules(ctx, id, ingress, egress); err != nil {
-		return err
+	if d.HasChange("egress") || d.HasChange("ingress") {
+		if err := service.ModifyNetWorkAclRules(ctx, id, ingress, egress); err != nil {
+			return err
+		}
+		d.SetPartial("ingress")
+		d.SetPartial("egress")
 	}
 	d.Partial(false)
 
@@ -293,14 +296,12 @@ func resourceTencentCloudVpcACLDelete(d *schema.ResourceData, meta interface{})
 	}
 
 	_, has, err := service.DescribeNetWorkByACLID(ctx, id)
-
 	if err != nil {
 		return err
 	}
 
 	if has > 0 {
-		return fmt.Errorf("[CRITAL]%s delete network acl : %s  failed\n", logId, id)
+		return fmt.Errorf("[CRITAL]%s delete network ACL : %s  failed\n", logId, id)
 	}
-
 	return nil
 }

tencentcloud/resource_tc_vpc_acl_attachment.go

@@ -50,7 +50,7 @@ func resourceTencentCloudVpcAclAttachment() *schema.Resource {
 				Required:     true,
 				ForceNew:     true,
 				ValidateFunc: validateNotEmpty,
-				Description:  "Id of the attached ACL.",
+				Description:  "ID of the attached ACL.",
 			},
 			"subnet_id": {
 				Type:        schema.TypeString,
@@ -81,7 +81,7 @@ func resourceTencentCloudVpcAclAttachmentCreate(d *schema.ResourceData, meta int
 		return err
 	}
 
-	d.SetId(aclId + "#" + subnetId)
+	d.SetId(aclId + FILED_SP + subnetId)
 
 	return resourceTencentCloudVpcAclAttachmentRead(d, meta)
 }
@@ -98,19 +98,14 @@ func resourceTencentCloudVpcAclAttachmentRead(d *schema.ResourceData, meta inter
 		aclId        string
 	)
 
-	if attachmentId == "" {
-		return fmt.Errorf("attachmentId does not exist")
-	}
-
-	aclId = strings.Split(attachmentId, "#")[0]
-
+	aclId = strings.Split(attachmentId, FILED_SP)[0]
 	results, err := service.DescribeNetWorkAcls(ctx, aclId, "", "")
 	if err != nil {
 		return err
 	}
 	if len(results) > 0 && len(results[0].SubnetSet) < 1 {
 		d.SetId("")
-		return fmt.Errorf("[TECENT_TERRAFORM_CHECK][ACL attachment][Read] check: acl attachment  is not create")
+		return fmt.Errorf("[TECENT_TERRAFORM_CHECK][ACL attachment][Read] check: ACL attachment  is not exist")
 	}
 	return nil
 
@@ -127,10 +122,9 @@ func resourceTencentCloudVpcAclAttachmentDelete(d *schema.ResourceData, meta int
 
 	err := service.DeleteAclAttachment(ctx, attachmentAcl)
 	if err != nil {
-		log.Printf("[CRITAL]%s delete acl attachment failed, reason:%s\n", logId, err.Error())
+		log.Printf("[CRITAL]%s delete ACL attachment failed, reason:%s\n", logId, err.Error())
 		return err
 	}
-	d.SetId("")
 
 	return nil
 

tencentcloud/resource_tc_vpc_acl_attachment_test.go

@@ -35,9 +35,13 @@ func testVpcAclAttachmentDestroy(s *terraform.State) error {
 		if rs.Type != "tencentcloud_vpc_acl_attachment" {
 			continue
 		}
-		err := service.DescribeByAclId(ctx, rs.Primary.ID)
-		if err == nil {
-			return fmt.Errorf("[TECENT_TERRAFORM_CHECK][ACL attachment][Destroy] check: acl attachment still exists: %s", rs.Primary.ID)
+		has, err := service.DescribeByAclId(ctx, rs.Primary.ID)
+		if err != nil {
+			return err
+		}
+
+		if has {
+			return fmt.Errorf("[TECENT_TERRAFORM_CHECK][ACL attachment][Destroy] check: ACL attachment still exists: %s", rs.Primary.ID)
 		}
 	}
 	return nil
@@ -56,9 +60,13 @@ func testVpcAclAttachmentExists(n string) resource.TestCheckFunc {
 		if rs.Primary.ID == "" {
 			return fmt.Errorf("[TECENT_TERRAFORM_CHECK][ACL attachment][Exists] check: id is not set")
 		}
-		err := service.DescribeByAclId(ctx, rs.Primary.ID)
+		has, err := service.DescribeByAclId(ctx, rs.Primary.ID)
 		if err != nil {
-			return fmt.Errorf("[TECENT_TERRAFORM_CHECK][ACL attachment][Exists] check:  still exists: %s", rs.Primary.ID)
+			return err
+		}
+
+		if !has {
+			return fmt.Errorf("[TECENT_TERRAFORM_CHECK][ACL attachment][Exists] check: not exists: %s", rs.Primary.ID)
 		}
 		return nil
 	}

tencentcloud/resource_tc_vpc_acl_test.go

@@ -4,7 +4,6 @@ import (
 	"context"
 	"fmt"
 	"testing"
-	"time"
 
 	"github.com/hashicorp/terraform-plugin-sdk/helper/resource"
 	"github.com/hashicorp/terraform-plugin-sdk/terraform"
@@ -119,7 +118,6 @@ func testAccCheckVpcACLDestroy(s *terraform.State) error {
 		if rs.Type != "tencentcloud_vpc_acl" {
 			continue
 		}
-		time.Sleep(5 * time.Second)
 		_, has, err := service.DescribeNetWorkByACLID(ctx, rs.Primary.ID)
 		if err != nil {
 			return err

tencentcloud/service_tencentcloud_vpc.go

@@ -3155,7 +3155,7 @@ func (me *VpcService) DescribeNetWorkAcls(ctx context.Context, aclID, vpcID, nam
 	return
 }
 
-func (me *VpcService) DescribeByAclId(ctx context.Context, attachmentAcl string) (errRet error) {
+func (me *VpcService) DescribeByAclId(ctx context.Context, attachmentAcl string) (has bool, errRet error) {
 	var (
 		logId   = getLogId(ctx)
 		request = vpc.NewDisassociateNetworkAclSubnetsRequest()
@@ -3177,12 +3177,15 @@ func (me *VpcService) DescribeByAclId(ctx context.Context, attachmentAcl string)
 
 	results, err := me.DescribeNetWorkAcls(ctx, aclId, "", "")
 	if err != nil {
-		return err
+		errRet = err
+		return
 	}
 	if len(results) < 1 || len(results[0].SubnetSet) < 1 {
-		return fmt.Errorf("[TECENT_TERRAFORM_CHECK][ACL attachment][Exists] check: Acl id is not set")
+		return
 	}
-	return nil
+
+	has = true
+	return
 }
 
 func (me *VpcService) DeleteAclAttachment(ctx context.Context, attachmentAcl string) (errRet error) {

website/docs/d/vpc_acls.html.markdown

@@ -43,16 +43,16 @@ In addition to all arguments above, the following attributes are exported:
   * `egress` - Outbound rules of the network ACL.
     * `cidr_block` - An IP address network or segment.
     * `description` - Rule description.
-    * `policy` - Rule policy of.
+    * `policy` - Rule policy of Network ACL.
     * `port` - Range of the port.
-    * `protocol` - Type of ip protocol.
+    * `protocol` - Type of IP protocol.
   * `id` - ID of the network ACL instance.
   * `ingress` - Inbound rules of the network ACL.
     * `cidr_block` - An IP address network or segment.
     * `description` - Rule description.
-    * `policy` - Rule policy of.
+    * `policy` - Rule policy of Network ACL.
     * `port` - Range of the port.
-    * `protocol` - Type of ip protocol.
+    * `protocol` - Type of IP protocol.
   * `name` - Name of the network ACL.
   * `subnets` - Subnets associated with the network ACL.
     * `cidr_block` - The IPv4 CIDR of the subnet.

website/docs/r/vpc_acl_attachment.html.markdown

@@ -18,7 +18,7 @@ Provide a resource to attach an existing subnet to Network ACL.
 
 The following arguments are supported:
 
-* `acl_id` - (Required, ForceNew) Id of the attached ACL.
+* `acl_id` - (Required, ForceNew) ID of the attached ACL.
 * `subnet_id` - (Required, ForceNew) The Subnet instance ID.
 
 ## Attributes Reference