STACKITLB-1837 | add ALB certificates to provider#1296
Open
david-mey-STACKIT wants to merge 17 commits intostackitcloud:mainfrom
Open
STACKITLB-1837 | add ALB certificates to provider#1296david-mey-STACKIT wants to merge 17 commits intostackitcloud:mainfrom
david-mey-STACKIT wants to merge 17 commits intostackitcloud:mainfrom
Conversation
Co-authored-by: Marcel Jacek <72880145+marceljk@users.noreply.github.com>
david-mey-STACKIT
force-pushed
the
main
branch
4 times, most recently
from
289b525 to
f74a895
Compare
|
This PR was marked as stale after 7 days of inactivity and will be closed after another 7 days of further inactivity. If this PR should be kept open, just add a comment, remove the stale label or push new commits to it. |
marceljk
reviewed
Mar 31, 2026
stackit/internal/services/albcertificates/certificate/datasource.go
Outdated
Show resolved
Hide resolved
stackit/internal/services/albcertificates/certificate/datasource.go
Outdated
Show resolved
Hide resolved
stackit/internal/services/albcertificates/certificate/datasource.go
Outdated
Show resolved
Hide resolved
stackit/internal/services/albcertificates/certificate/resource.go
Outdated
Show resolved
Hide resolved
stackit/internal/services/albcertificates/certificate_acc_test.go
Outdated
Show resolved
Hide resolved
Comment on lines
+150
to
+151
| resource.TestCheckResourceAttrSet("stackit_alb_certificate.certificate", "public_key"), | ||
| resource.TestCheckResourceAttrSet("stackit_alb_certificate.certificate", "private_key"), |
Contributor
There was a problem hiding this comment.
you can do here the same check mentioned above
Contributor
There was a problem hiding this comment.
Pair check for private key and tls_private_key.test.private_key_pem is missing
| } | ||
| return fmt.Sprintf(` | ||
| provider "stackit" { | ||
| cart_custom_endpoint = "%s" |
Contributor
There was a problem hiding this comment.
Suggested change
| cart_custom_endpoint = "%s" | |
| alb_certificates_custom_endpoint = "%s" |
Comment on lines
+19
to
+21
| if providerData.ALBCustomEndpoint != "" { | ||
| apiClientConfigOptions = append(apiClientConfigOptions, config.WithEndpoint(providerData.ALBCustomEndpoint)) | ||
| } |
Contributor
There was a problem hiding this comment.
Suggested change
| if providerData.ALBCustomEndpoint != "" { | |
| apiClientConfigOptions = append(apiClientConfigOptions, config.WithEndpoint(providerData.ALBCustomEndpoint)) | |
| } | |
| if providerData.ALBCertificatesCustomEndpoint != "" { | |
| apiClientConfigOptions = append(apiClientConfigOptions, config.WithEndpoint(providerData.ALBCertificatesCustomEndpoint)) | |
| } |
marceljk
reviewed
Apr 2, 2026
Comment on lines
70
to
+71
| CdnCustomEndpoint = customEndpointConfig{envVarName: "TF_ACC_CDN_CUSTOM_ENDPOINT", providerName: "cdn_custom_endpoint"} | ||
| CertCustomEndpoint = customEndpointConfig{envVarName: "TF_ACC_CERT_CUSTOM_ENDPOINT", providerName: "alb_certificates_custom_endpoint"} |
Contributor
There was a problem hiding this comment.
Please keep the prefix ALB, because when a new service will be onboard which is also for certifcates, it can become a conflict
Suggested change
| CdnCustomEndpoint = customEndpointConfig{envVarName: "TF_ACC_CDN_CUSTOM_ENDPOINT", providerName: "cdn_custom_endpoint"} | |
| CertCustomEndpoint = customEndpointConfig{envVarName: "TF_ACC_CERT_CUSTOM_ENDPOINT", providerName: "alb_certificates_custom_endpoint"} | |
| ALBCertCustomEndpoint = customEndpointConfig{envVarName: "TF_ACC_ALB_CERT_CUSTOM_ENDPOINT", providerName: "alb_certificates_custom_endpoint"} | |
| CdnCustomEndpoint = customEndpointConfig{envVarName: "TF_ACC_CDN_CUSTOM_ENDPOINT", providerName: "cdn_custom_endpoint"} |
|
|
||
| subject { | ||
| common_name = "localhost" | ||
| organization = "Stackit Test" |
Contributor
There was a problem hiding this comment.
Suggested change
| organization = "Stackit Test" | |
| organization = "STACKIT Test" |
|
|
||
| subject { | ||
| common_name = "localhost" | ||
| organization = "Stackit Test" |
Contributor
There was a problem hiding this comment.
Suggested change
| organization = "Stackit Test" | |
| organization = "STACKIT Test" |
Comment on lines
+244
to
+250
| for _, rs := range s.RootModule().Resources { | ||
| if rs.Type != "stackit_loadbalancer" { | ||
| continue | ||
| } | ||
| // cetificate terraform ID: = "[project_id],[region],[name]" | ||
| certificateName := strings.Split(rs.Primary.ID, core.Separator)[1] | ||
| certificateToDestroy = append(certificateToDestroy, certificateName) |
Contributor
There was a problem hiding this comment.
wrong check for resource type and wrong terraform ID structure
Comment on lines
+57
to
+58
| resource.TestCheckResourceAttrSet("stackit_alb_certificate.certificate", "public_key"), | ||
| resource.TestCheckResourceAttrSet("stackit_alb_certificate.certificate", "private_key"), |
Contributor
There was a problem hiding this comment.
Pair check for private key and tls_private_key.test.private_key_pem is missing
Comment on lines
+150
to
+151
| resource.TestCheckResourceAttrSet("stackit_alb_certificate.certificate", "public_key"), | ||
| resource.TestCheckResourceAttrSet("stackit_alb_certificate.certificate", "private_key"), |
Contributor
There was a problem hiding this comment.
Pair check for private key and tls_private_key.test.private_key_pem is missing
| func (r *certDataSource) Schema(_ context.Context, _ datasource.SchemaRequest, resp *datasource.SchemaResponse) { | ||
| descriptions := map[string]string{ | ||
| "main": "Certificates resource schema.", | ||
| "id": "Terraform's internal resource ID. It is structured as `project_id`,`region`,`cert_id`.", |
Contributor
There was a problem hiding this comment.
Suggested change
| "id": "Terraform's internal resource ID. It is structured as `project_id`,`region`,`cert_id`.", | |
| "id": "Terraform's internal resource ID. It is structured as \"`project_id`,`region`,`cert_id`\".", |
| func (r *certificatesResource) Schema(_ context.Context, _ resource.SchemaRequest, resp *resource.SchemaResponse) { | ||
| descriptions := map[string]string{ | ||
| "main": "Certificates resource schema.", | ||
| "id": "Terraform's internal resource ID. It is structured as `project_id`,`region`,`cert_id`.", |
Contributor
There was a problem hiding this comment.
Suggested change
| "id": "Terraform's internal resource ID. It is structured as `project_id`,`region`,`cert_id`.", | |
| "id": "Terraform's internal resource ID. It is structured as \"`project_id`,`region`,`cert_id`\".", |
|
|
||
| subject { | ||
| common_name = "localhost" | ||
| organization = "Stackit Test" |
Contributor
There was a problem hiding this comment.
Suggested change
| organization = "Stackit Test" | |
| organization = "STACKIT Test" |
marceljk
reviewed
Apr 2, 2026
| ctx := context.Background() | ||
| var client *certSdk.APIClient | ||
| var err error | ||
| if testutil.ALBCustomEndpoint == "" { |
marceljk
reviewed
Apr 2, 2026
| // Creation | ||
| { | ||
| ConfigVariables: testConfigVarsMin, | ||
| Config: testutil.CertProviderConfig() + resourceMinConfig, |
Contributor
There was a problem hiding this comment.
the acc tests must be updated because of the latest changes where the config builder what introduced
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Description
STACKITLB-1837
Add ALB TLS certificates provider (API: https://docs.api.stackit.cloud/documentation/certificates/version/v2)
Checklist
make fmtexamples/directory)make generate-docs(will be checked by CI)make test(will be checked by CI)make lint(will be checked by CI)