opentofu/vendor/github.com/joyent/triton-go
James Nugent a0568e544f provider/triton: Move to joyent/triton-go (#13225)
* provider/triton: Move to joyent/triton-go

This commit moves the Triton provider to the new joyent/triton-go
library from gosdc. This has a number of advantages - not least that
requests can be signed using an SSH agent without having to keep
unencrypted key material in memory.

Schema has been maintained for all resources, and several tests have
been added and acceptance tests repaired - in some cases by fixing bugs
in the underlying resources.

After applying this patch, all acceptance tests pass:

```
go generate $(go list ./... | grep -v /terraform/vendor/)
2017/03/30 13:48:33 Generated command/internal_plugin_list.go
TF_ACC=1 go test ./builtin/providers/triton -v  -timeout 120m
=== RUN   TestProvider
--- PASS: TestProvider (0.00s)
=== RUN   TestProvider_impl
--- PASS: TestProvider_impl (0.00s)
=== RUN   TestAccTritonFabric_basic
--- PASS: TestAccTritonFabric_basic (15.11s)
=== RUN   TestAccTritonFirewallRule_basic
--- PASS: TestAccTritonFirewallRule_basic (1.48s)
=== RUN   TestAccTritonFirewallRule_update
--- PASS: TestAccTritonFirewallRule_update (1.55s)
=== RUN   TestAccTritonFirewallRule_enable
--- PASS: TestAccTritonFirewallRule_enable (1.52s)
=== RUN   TestAccTritonKey_basic
--- PASS: TestAccTritonKey_basic (11.76s)
=== RUN   TestAccTritonKey_noKeyName
--- PASS: TestAccTritonKey_noKeyName (11.20s)
=== RUN   TestAccTritonMachine_basic
--- PASS: TestAccTritonMachine_basic (82.19s)
=== RUN   TestAccTritonMachine_dns
--- PASS: TestAccTritonMachine_dns (173.36s)
=== RUN   TestAccTritonMachine_nic
--- PASS: TestAccTritonMachine_nic (167.82s)
=== RUN   TestAccTritonMachine_addNIC
--- PASS: TestAccTritonMachine_addNIC (192.11s)
=== RUN   TestAccTritonMachine_firewall
--- PASS: TestAccTritonMachine_firewall (188.53s)
=== RUN   TestAccTritonMachine_metadata
--- PASS: TestAccTritonMachine_metadata (614.57s)
=== RUN   TestAccTritonVLAN_basic
--- PASS: TestAccTritonVLAN_basic (0.93s)
=== RUN   TestAccTritonVLAN_update
--- PASS: TestAccTritonVLAN_update (1.50s)
PASS
ok  	github.com/hashicorp/terraform/builtin/providers/triton	1463.621s
```

* provider/triton: Update docs for provider config

* deps: Vendor github.com/joyent/triton-go/...

* deps: Remove github.com/joyent/gosdc
2017-03-31 01:25:27 +03:00
..
authentication provider/triton: Move to joyent/triton-go (#13225) 2017-03-31 01:25:27 +03:00
accounts.go provider/triton: Move to joyent/triton-go (#13225) 2017-03-31 01:25:27 +03:00
client.go provider/triton: Move to joyent/triton-go (#13225) 2017-03-31 01:25:27 +03:00
config.go provider/triton: Move to joyent/triton-go (#13225) 2017-03-31 01:25:27 +03:00
datacenters.go provider/triton: Move to joyent/triton-go (#13225) 2017-03-31 01:25:27 +03:00
errors.go provider/triton: Move to joyent/triton-go (#13225) 2017-03-31 01:25:27 +03:00
fabrics.go provider/triton: Move to joyent/triton-go (#13225) 2017-03-31 01:25:27 +03:00
firewall.go provider/triton: Move to joyent/triton-go (#13225) 2017-03-31 01:25:27 +03:00
images.go provider/triton: Move to joyent/triton-go (#13225) 2017-03-31 01:25:27 +03:00
keys.go provider/triton: Move to joyent/triton-go (#13225) 2017-03-31 01:25:27 +03:00
LICENSE provider/triton: Move to joyent/triton-go (#13225) 2017-03-31 01:25:27 +03:00
machines.go provider/triton: Move to joyent/triton-go (#13225) 2017-03-31 01:25:27 +03:00
networks.go provider/triton: Move to joyent/triton-go (#13225) 2017-03-31 01:25:27 +03:00
packages.go provider/triton: Move to joyent/triton-go (#13225) 2017-03-31 01:25:27 +03:00
README.md provider/triton: Move to joyent/triton-go (#13225) 2017-03-31 01:25:27 +03:00
roles.go provider/triton: Move to joyent/triton-go (#13225) 2017-03-31 01:25:27 +03:00
services.go provider/triton: Move to joyent/triton-go (#13225) 2017-03-31 01:25:27 +03:00

triton-go

go-triton is an idiomatic library exposing a client SDK for Go applications using the Joyent Triton API.

Usage

Triton uses HTTP Signature to sign the Date header in each HTTP request made to the Triton API. Currently, requests can be signed using either a private key file loaded from disk (using an authentication.PrivateKeySigner), or using a key stored with the local SSH Agent (using an SSHAgentSigner.

To construct a Signer, use the New* range of methods in the authentication package. In the case of authentication.NewSSHAgentSigner, the parameters are the fingerprint of the key with which to sign, and the account name (normally stored in the SDC_ACCOUNT environment variable). For example:

const fingerprint := "a4:c6:f3:75:80:27:e0:03:a9:98:79:ef:c5:0a:06:11"
sshKeySigner, err := authentication.NewSSHAgentSigner(fingerprint, "AccountName")
if err != nil {
	log.Fatalf("NewSSHAgentSigner: %s", err)
}

An appropriate key fingerprint can be generated using ssh-keygen:

ssh-keygen -Emd5 -lf ~/.ssh/id_rsa.pub | cut -d " " -f 2 | sed 's/MD5://'

To construct a Client, use the NewClient function, passing in the endpoint, account name and constructed signer:

client, err := triton.NewClient("https://us-sw-1.api.joyent.com/", "AccountName",	sshKeySigner)
if err != nil {
	log.Fatalf("NewClient: %s", err)
}

Having constructed a triton.Client, use the methods available to access functionality by functional grouping. For example, for access to operations on SSH keys, use the Keys() method to obtain a client which has access to the CreateKey, ListKeys and DeleteKey operations. For access to operations on Machines, use the Machines() method to obtain a client which has access to the RenameMachine, GetMachineMetadata, GetMachineTag, and other operations.

Operation methods take their formal parameters via a struct named OperationInput - for example when creating an SSH key, the CreateKeyInput struct is used with the func CreateKey(*CreateKeyInput) (*Key, error) method. This allows specification of named parameters:

client := state.Client().Keys()

key, err := client.CreateKey(&CreateKeyInput{
	Name: "tempKey",
	Key:  "ssh-rsa .....",
})
if err != nil {
	panic(err)
}

// Key contains the return value.

Error Handling

If an error is returned by the HTTP API, the error returned from the function will contain an instance of triton.TritonError in the chain. Error wrapping is performed using the errwrap library from HashiCorp.

Completeness

The following list is updated as new functionality is added. The complete list of operations is taken from the CloudAPI documentation.

  • Accounts
    • GetAccount
    • UpdateAccount
  • Keys
    • ListKeys
    • GetKey
    • CreateKey
    • DeleteKey
  • Users
    • ListUsers
    • GetUser
    • CreateUser
    • UpdateUser
    • ChangeUserPassword
    • DeleteUser
  • Roles
    • ListRoles
    • GetRole
    • CreateRole
    • UpdateRole
    • DeleteRole
  • Role Tags
    • SetRoleTags
  • Policies
    • ListPolicies
    • GetPolicy
    • CreatePolicy
    • UpdatePolicy
    • DeletePolicy
  • User SSH Keys
    • ListUserKeys
    • GetUserKey
    • CreateUserKey
    • DeleteUserKey
  • Config
    • GetConfig
    • UpdateConfig
  • Datacenters
    • ListDatacenters
    • GetDatacenter
  • Services
    • ListServices
  • Images
    • ListImages
    • GetImage
    • DeleteImage
    • ExportImage
    • CreateImageFromMachine
    • UpdateImage
  • Packages
    • ListPackages
    • GetPackage
  • Instances
    • ListMachines
    • GetMachine
    • CreateMachine
    • StopMachine
    • StartMachine
    • RebootMachine
    • ResizeMachine
    • RenameMachine
    • EnableMachineFirewall
    • DisableMachineFirewall
    • CreateMachineSnapshot
    • StartMachineFromSnapshot
    • ListMachineSnapshots
    • GetMachineSnapshot
    • DeleteMachineSnapshot
    • UpdateMachineMetadata
    • ListMachineMetadata
    • GetMachineMetadata
    • DeleteMachineMetadata
    • DeleteAllMachineMetadata
    • AddMachineTags
    • ReplaceMachineTags
    • ListMachineTags
    • GetMachineTag
    • DeleteMachineTag
    • DeleteMachineTags
    • DeleteMachine
    • MachineAudit
  • Analytics
    • DescribeAnalytics
    • ListInstrumentations
    • GetInstrumentation
    • GetInstrumentationValue
    • GetInstrumentationHeatmap
    • GetInstrumentationHeatmapDetails
    • CreateInstrumentation
    • DeleteInstrumentation
  • Firewall Rules
    • ListFirewallRules
    • GetFirewallRule
    • CreateFirewallRule
    • UpdateFirewallRule
    • EnableFirewallRule
    • DisableFirewallRule
    • DeleteFirewallRule
    • ListMachineFirewallRules
    • ListFirewallRuleMachines
  • Fabrics
    • ListFabricVLANs
    • CreateFabricVLAN
    • GetFabricVLAN
    • UpdateFabricVLAN
    • DeleteFabricVLAN
    • ListFabricNetworks
    • CreateFabricNetwork
    • GetFabricNetwork
    • DeleteFabricNetwork
  • Networks
    • ListNetworks
    • GetNetwork
  • Nics
    • ListNics
    • GetNic
    • AddNic
    • RemoveNic

Running Acceptance Tests

Acceptance Tests run directly against the Triton API, so you will need either a local installation or Triton or an account with Joyent in order to run them. The tests create real resources (and thus cost real money!)

In order to run acceptance tests, the following environment variables must be set:

  • TRITON_TEST - must be set to any value in order to indicate desire to create resources
  • SDC_URL - the base endpoint for the Triton API
  • SDC_ACCOUNT - the account name for the Triton API
  • SDC_KEY_ID - the fingerprint of the SSH key identifying the key

Additionally, you may set SDC_KEY_MATERIAL to the contents of an unencrypted private key. If this is set, the PrivateKeySigner (see above) will be used - if not the SSHAgentSigner will be used.

Example Run

The verbose output has been removed for brevity here.

$ HTTP_PROXY=http://localhost:8888 \
	TRITON_TEST=1 \
	SDC_URL=https://us-sw-1.api.joyent.com \
	SDC_ACCOUNT=AccountName \
	SDC_KEY_ID=a4:c6:f3:75:80:27:e0:03:a9:98:79:ef:c5:0a:06:11 \
	go test -v -run "TestAccKey"
=== RUN   TestAccKey_Create
--- PASS: TestAccKey_Create (12.46s)
=== RUN   TestAccKey_Get
--- PASS: TestAccKey_Get (4.30s)
=== RUN   TestAccKey_Delete
--- PASS: TestAccKey_Delete (15.08s)
PASS
ok  	github.com/jen20/triton-go	31.861s