Skip to content

Commit

Permalink
Add member attribute
Browse files Browse the repository at this point in the history
  • Loading branch information
@teraken0509
teraken0509 committed Jan 14, 2019
1 parent 797c87d commit 57c114f
Show file tree
Hide file tree
Showing 3 changed files with 100 additions and 0 deletions.
38 changes: 38 additions & 0 deletions aws/data_source_aws_iam_group.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -30,6 +30,30 @@ func dataSourceAwsIAMGroup() *schema.Resource {
Type: schema.TypeString,
Required: true,
},
"members": {
Type: schema.TypeList,
Computed: true,
Elem: &schema.Resource{
Schema: map[string]*schema.Schema{
"arn": {
Type: schema.TypeString,
Computed: true,
},
"user_id": {
Type: schema.TypeString,
Computed: true,
},
"user_name": {
Type: schema.TypeString,
Computed: true,
},
"path": {
Type: schema.TypeString,
Computed: true,
},
},
},
},
},
}
}
Expand Down Expand Up @@ -58,6 +82,20 @@ func dataSourceAwsIAMGroupRead(d *schema.ResourceData, meta interface{}) error {
d.Set("arn", group.Arn)
d.Set("path", group.Path)
d.Set("group_id", group.GroupId)
d.Set("members", dataSourceUsersRead(resp.Users))

return nil
}

func dataSourceUsersRead(iamUsers []*iam.User) []map[string]interface{} {
users := make([]map[string]interface{}, 0, len(iamUsers))
for _, i := range iamUsers {
u := make(map[string]interface{})
u["arn"] = aws.StringValue(i.Arn)
u["user_id"] = aws.StringValue(i.UserId)
u["user_name"] = aws.StringValue(i.UserName)
u["path"] = aws.StringValue(i.Path)
users = append(users, u)
}
return users
}
50 changes: 50 additions & 0 deletions aws/data_source_aws_iam_group_test.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -29,6 +29,33 @@ func TestAccAWSDataSourceIAMGroup_basic(t *testing.T) {
})
}

func TestAccAWSDataSourceIAMGroup_member(t *testing.T) {
groupName := fmt.Sprintf("test-datasource-group-%d", acctest.RandInt())
userName := fmt.Sprintf("test-datasource-user-%d", acctest.RandInt())
groupMemberShipName := fmt.Sprintf("test-datasource-group-membership-%d", acctest.RandInt())

resource.ParallelTest(t, resource.TestCase{
PreCheck: func() { testAccPreCheck(t) },
Providers: testAccProviders,
Steps: []resource.TestStep{
{
Config: testAccAwsIAMGroupConfigMember(groupName, userName, groupMemberShipName),
Check: resource.ComposeTestCheckFunc(
resource.TestCheckResourceAttrSet("data.aws_iam_group.test", "group_id"),
resource.TestCheckResourceAttr("data.aws_iam_group.test", "path", "/"),
resource.TestCheckResourceAttr("data.aws_iam_group.test", "group_name", groupName),
resource.TestMatchResourceAttr("data.aws_iam_group.test", "arn", regexp.MustCompile("^arn:aws:iam::[0-9]{12}:group/"+groupName)),
resource.TestCheckResourceAttr("data.aws_iam_group.test", "members.#", "1"),
resource.TestCheckResourceAttrPair("data.aws_iam_group.test", "members.0.arn", "aws_iam_user.user", "arn"),
resource.TestCheckResourceAttrSet("data.aws_iam_group.test", "members.0.user_id"),
resource.TestCheckResourceAttrPair("data.aws_iam_group.test", "members.0.user_name", "aws_iam_user.user", "name"),
resource.TestCheckResourceAttrPair("data.aws_iam_group.test", "members.0.path", "aws_iam_user.user", "path"),
),
},
},
})
}

func testAccAwsIAMGroupConfig(name string) string {
return fmt.Sprintf(`
resource "aws_iam_group" "group" {
Expand All @@ -41,3 +68,26 @@ data "aws_iam_group" "test" {
}
`, name)
}

func testAccAwsIAMGroupConfigMember(groupName, userName, membershipName string) string {
return fmt.Sprintf(`
resource "aws_iam_group" "group" {
name = "%s"
path = "/"
}
resource "aws_iam_user" "user" {
name = "%s"
}
resource "aws_iam_group_membership" "team" {
name = "%s"
users = ["${aws_iam_user.user.name}"]
group = "${aws_iam_group.group.name}"
}
data "aws_iam_group" "test" {
group_name = "${aws_iam_group_membership.team.group}"
}
`, groupName, userName, membershipName)
}
12 changes: 12 additions & 0 deletions website/docs/d/iam_group.html.markdown
View file
Original file line number Diff line number Diff line change
Expand Up @@ -31,3 +31,15 @@ data "aws_iam_group" "example" {
* `path` - The path to the group.

* `group_id` - The stable and unique string identifying the group.

* `members` - The member of group. See supported fields below.

### `members`

* `arn` - The Amazon Resource Name (ARN) specifying the iam user.

* `user_id` - The stable and unique string identifying the iam user.

* `user_name` - The name of the iam user.

* `path` - The path to the iam user.

0 comments on commit 57c114f

Please sign in to comment.