Apply ownership for UC objects during creation #1338
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
nfx
requested changes
May 26, 2022
|
@nfx will need your help with this one:
|
nfx
requested changes
Jun 2, 2022
catalog/update.go
Outdated
Comment on lines
23
to
35
| switch securable { | ||
| case "metastore": | ||
| return NewMetastoresAPI(ctx, c).updateMetastore(d.Id(), patch) | ||
| case "catalog": | ||
| return NewCatalogsAPI(ctx, c).updateCatalog(d.Id(), patch) | ||
| case "schema": | ||
| return NewSchemasAPI(ctx, c).updateSchema(d.Id(), patch) | ||
| case "table": | ||
| return NewTablesAPI(ctx, c).updateTable(d.Id(), patch) | ||
| case "external-location": | ||
| return NewExternalLocationsAPI(ctx, c).update(d.Id(), patch) | ||
| case "storage-credential": | ||
| return NewStorageCredentialsAPI(ctx, c).update(d.Id(), patch) |
There was a problem hiding this comment.
i don't like this hardcoding and tight coupling. at the same time this makes it more readable.
there are also two other options:
very explicit:
return updateFactory(func (ctx context.Context) func(string, map[string]interface{}) error {
return NewCatalogsAPI(ctx, c).updateCatalog
}, resourceData, client, "owner", "name", "comment", "properties")layer leak:
update := updateFactory("/unity-catalog/catalogs", "owner", "name", "comment", "properties")which would entail implementation like
func updateFunctionFactory(pathPrefix string, updatable string...) func(context.Context, *schema.ResourceData, *common.DatabricksClient) error {
return func(... {
...
return c.Patch(ctx, path.Join(pathPrefix, d.Id()), patch)
}
}with this layer leak we technically don't need update methods for all securables, right?
There was a problem hiding this comment.
moved to layer leak - looking relatively clean
catalog/update.go
Outdated
| case "storage-credential": | ||
| return NewStorageCredentialsAPI(ctx, c).update(d.Id(), patch) | ||
| default: | ||
| return nil |
There was a problem hiding this comment.
must be an error here ;) like "securable is not implemented for updates" or something. with "layer leak" this is not really a problem
Codecov Report
@@ Coverage Diff @@
## master #1338 +/- ##
==========================================
- Coverage 90.11% 90.10% -0.01%
==========================================
Files 121 122 +1
Lines 10135 10111 -24
==========================================
- Hits 9133 9111 -22
+ Misses 638 637 -1
+ Partials 364 363 -1
|
nfx
requested changes
Jun 2, 2022
Co-authored-by: Serge Smertin <259697+nfx@users.noreply.github.com>
Co-authored-by: Serge Smertin <259697+nfx@users.noreply.github.com>
Co-authored-by: Serge Smertin <259697+nfx@users.noreply.github.com>
|
This pull request introduces 2 alerts when merging e81a9a3 into ddd9fe6 - view on LGTM.com new alerts:
|
nfx
requested changes
Jun 3, 2022
There was a problem hiding this comment.
Please build locally and try to create some resources with owners with d.MarkNewResource() removed from creates, as it's supposed to be done already implicitly by terraform SDK on creates.
I've pointed where to "fix" the ResourceFixture, so that it's unit-testable.
catalog/resource_catalog.go
Outdated
| @@ -69,7 +66,8 @@ func ResourceCatalog() *schema.Resource { | |||
| return fmt.Errorf("cannot remove new catalog default schema: %w", err) | |||
| } | |||
| d.SetId(ci.Name) | |||
| return nil | |||
| d.MarkNewResource() | |||
There was a problem hiding this comment.
@nkvuong are you 100% sure you need to call d.MarknewResource()? All creates should have it https://github.com/hashicorp/terraform-plugin-sdk/blob/main/helper/schema/resource.go#L833-L838
ResourceFixture has New flag, that can help. Actually, you can even modify here https://github.com/databrickslabs/terraform-provider-databricks/blob/master/qa/testing.go#L111-L129 to mark new resources for creates.
There was a problem hiding this comment.
yup, adding this to the testing fixture is what's needed
nfx
reviewed
Jun 3, 2022
catalog/resource_catalog.go
Outdated
| @@ -57,6 +53,7 @@ func ResourceCatalog() *schema.Resource { | |||
| func(m map[string]*schema.Schema) map[string]*schema.Schema { | |||
| return m | |||
| }) | |||
| update := updateFunctionFactory("/unity-catalog/catalogs", []string{"owner", "name", "comment", "properties"}) | |||
There was a problem hiding this comment.
so, as you told over slack - does it still make sense to have name updatable?
| patch["delta_sharing_recipient_token_lifetime_in_seconds"] = | ||
| d.Get("delta_sharing_recipient_token_lifetime_in_seconds") | ||
| } | ||
| update := updateFunctionFactory("/unity-catalog/metastores", []string{"owner", "name", "delta_sharing_enabled", |
There was a problem hiding this comment.
so, as you told over slack - does it still make sense to have name updatable?
There was a problem hiding this comment.
for metastore it is fine - since there is a metastore_id 😄
catalog/resource_schema.go
Outdated
| @@ -17,7 +17,7 @@ func NewSchemasAPI(ctx context.Context, m interface{}) SchemasAPI { | |||
| } | |||
|
|
|||
| type SchemaInfo struct { | |||
| Name string `json:"name" tf:"force_new"` | |||
There was a problem hiding this comment.
so, as you told over slack - does it still make sense to have name updatable?
| @@ -32,7 +32,7 @@ type ColumnInfo struct { | |||
| } | |||
|
|
|||
| type TableInfo struct { | |||
| Name string `json:"name" tf:"force_new"` | |||
| Name string `json:"name"` | |||
There was a problem hiding this comment.
okay, for table names it makes total sense to rename.
nfx
added a commit
that referenced
this pull request
Jun 7, 2022
* Added `delta_sharing_*` support to `databricks_metastore` ([#1334](#1334)). * Added `databricks_git_credentials` pat discovery from common environment variables ([#1353](#1353)). * Added `databricks_permissions` for `databricks_pipeline` ([#1361](#1361)). * Added `network_id` to `network` block in `databricks_mws_workspaces` for GCP ([#1360](#1360)). * Added `azure_managed_identity` block to `databricks_storage_credential` and `databricks_metastore_data_access` resources ([#1354](#1354)). * Update docs regarding importing of `databricks_sql_*` resources ([#1349](#1349)). * Apply ownership for UC objects during creation ([#1338](#1338)). * Re-create purged cluster for `databricks_mount` for Google Storage ([#1333](#1333)). * Various documentation fixes ([#1350](#1350)). Updated dependency versions: * Bump google.golang.org/api from 0.80.0 to 0.81.0 * Bump gopkg.in/ini.v1 from 1.66.4 to 1.66.6 * Bump google.golang.org/api from 0.81.0 to 0.82.0 * Bump github.com/stretchr/testify from 1.7.1 to 1.7.2 * Bump github.com/hashicorp/terraform-plugin-sdk/v2 from 2.16.0 to 2.17.0
Merged
nfx
added a commit
that referenced
this pull request
Jun 7, 2022
* Added `delta_sharing_*` support to `databricks_metastore` ([#1334](#1334)). * Added `databricks_git_credentials` pat discovery from common environment variables ([#1353](#1353)). * Added `databricks_permissions` for `databricks_pipeline` ([#1361](#1361)). * Added `network_id` to `network` block in `databricks_mws_workspaces` for GCP ([#1360](#1360)). * Added `azure_managed_identity` block to `databricks_storage_credential` and `databricks_metastore_data_access` resources ([#1354](#1354)). * Update docs regarding importing of `databricks_sql_*` resources ([#1349](#1349)). * Apply ownership for UC objects during creation ([#1338](#1338)). * Re-create purged cluster for `databricks_mount` for Google Storage ([#1333](#1333)). * Various documentation fixes ([#1350](#1350)). Updated dependency versions: * Bump google.golang.org/api from 0.80.0 to 0.81.0 * Bump gopkg.in/ini.v1 from 1.66.4 to 1.66.6 * Bump google.golang.org/api from 0.81.0 to 0.82.0 * Bump github.com/stretchr/testify from 1.7.1 to 1.7.2 * Bump github.com/hashicorp/terraform-plugin-sdk/v2 from 2.16.0 to 2.17.0
michael-berk
pushed a commit
to michael-berk/terraform-provider-databricks
that referenced
this pull request
Feb 15, 2023
The current behaviour of Unity Catalog API is as follows: - `databricks_catalog`, `databricks_metastore`, `databricks_external_location`, `databricks_schema`, `databricks_storage_credentials`, `databricks_table` have an owner field - on Create, the new object’s owner field is set to the user performing the operation - to ensure this field is set correctly in Terraform - we need to patch the resource after creating it Changes applied: * set owner during creation for UC securables * updated docs * refactored updates into a function factory * added support for locations & credentials * removed update APIs * add unit test when cannot delete default schema * add MarkNewResource to testing fixture
michael-berk
pushed a commit
to michael-berk/terraform-provider-databricks
that referenced
this pull request
Feb 15, 2023
* Added `delta_sharing_*` support to `databricks_metastore` ([databricks#1334](databricks#1334)). * Added `databricks_git_credentials` pat discovery from common environment variables ([databricks#1353](databricks#1353)). * Added `databricks_permissions` for `databricks_pipeline` ([databricks#1361](databricks#1361)). * Added `network_id` to `network` block in `databricks_mws_workspaces` for GCP ([databricks#1360](databricks#1360)). * Added `azure_managed_identity` block to `databricks_storage_credential` and `databricks_metastore_data_access` resources ([databricks#1354](databricks#1354)). * Update docs regarding importing of `databricks_sql_*` resources ([databricks#1349](databricks#1349)). * Apply ownership for UC objects during creation ([databricks#1338](databricks#1338)). * Re-create purged cluster for `databricks_mount` for Google Storage ([databricks#1333](databricks#1333)). * Various documentation fixes ([databricks#1350](databricks#1350)). Updated dependency versions: * Bump google.golang.org/api from 0.80.0 to 0.81.0 * Bump gopkg.in/ini.v1 from 1.66.4 to 1.66.6 * Bump google.golang.org/api from 0.81.0 to 0.82.0 * Bump github.com/stretchr/testify from 1.7.1 to 1.7.2 * Bump github.com/hashicorp/terraform-plugin-sdk/v2 from 2.16.0 to 2.17.0
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR makes the ownership behaviour for catalogs, schemas and tables the same as metastores
The current behaviour of Unity Catalog API is as follows:
databricks_catalog,databricks_metastore,databricks_external_location,databricks_schema,databricks_storage_credentials,databricks_tablehave an owner fieldChanges applied: