Merge branch 'main' into alpha

# Conflicts: # docs/data-sources/sqlserverflexalpha_user.md # docs/index.md # docs/resources/postgresflexalpha_instance.md # docs/resources/sqlserverflexalpha_user.md # examples/data-sources/stackitprivatepreview_postgresflexalpha_database/data-source.tf # examples/data-sources/stackitprivatepreview_postgresflexalpha_instance/data-source.tf # examples/data-sources/stackitprivatepreview_postgresflexalpha_user/data-source.tf # examples/data-sources/stackitprivatepreview_sqlserverflexalpha_instance/data-source.tf # examples/data-sources/stackitprivatepreview_sqlserverflexalpha_user/data-source.tf # examples/provider/provider.tf # examples/resources/stackitprivatepreview_postgresflexalpha_database/resource.tf # examples/resources/stackitprivatepreview_postgresflexalpha_instance/resource.tf # examples/resources/stackitprivatepreview_postgresflexalpha_user/resource.tf # examples/resources/stackitprivatepreview_sqlserverflexalpha_instance/resource.tf # examples/resources/stackitprivatepreview_sqlserverflexalpha_user/resource.tf # go.mod # go.sum # golang-ci.yaml # main.go # scripts/check-docs.sh # scripts/lint-golangci-lint.sh # scripts/project.sh # scripts/replace.sh # scripts/tfplugindocs.sh # stackit/internal/conversion/conversion.go # stackit/internal/conversion/conversion_test.go # stackit/internal/core/core.go # stackit/internal/core/core_test.go # stackit/internal/features/beta.go # stackit/internal/features/beta_test.go # stackit/internal/features/experiments.go # stackit/internal/features/experiments_test.go # stackit/internal/services/postgresflexalpha/database/datasource.go.bak # stackit/internal/services/postgresflexalpha/database/resource.go.bak # stackit/internal/services/postgresflexalpha/database/resource_test.go.bak # stackit/internal/services/postgresflexalpha/instance/datasource.go.bak # stackit/internal/services/postgresflexalpha/instance/resource.go # stackit/internal/services/postgresflexalpha/instance/use_state_for_unknown_if_flavor_unchanged_modifier.go # stackit/internal/services/postgresflexalpha/postgresflex_acc_test.go # stackit/internal/services/postgresflexalpha/user/datasource.go # stackit/internal/services/postgresflexalpha/user/datasource_test.go # stackit/internal/services/postgresflexalpha/user/resource.go # stackit/internal/services/postgresflexalpha/user/resource_test.go # stackit/internal/services/postgresflexalpha/utils/util.go # stackit/internal/services/postgresflexalpha/utils/util_test.go # stackit/internal/services/sqlserverflexalpha/instance/datasource.go # stackit/internal/services/sqlserverflexalpha/instance/resource.go # stackit/internal/services/sqlserverflexalpha/sqlserverflex_acc_test.go # stackit/internal/services/sqlserverflexalpha/testdata/resource-max.tf # stackit/internal/services/sqlserverflexalpha/testdata/resource-min.tf # stackit/internal/services/sqlserverflexalpha/user/datasource.go # stackit/internal/services/sqlserverflexalpha/user/resource.go # stackit/internal/services/sqlserverflexalpha/utils/util.go # stackit/internal/services/sqlserverflexalpha/utils/util_test.go # stackit/internal/testutil/testutil.go # stackit/internal/testutil/testutil_test.go # stackit/internal/utils/attributes.go # stackit/internal/utils/attributes_test.go # stackit/internal/utils/headers.go # stackit/internal/utils/headers_test.go # stackit/internal/utils/regions.go # stackit/internal/utils/regions_test.go # stackit/internal/utils/use_state_for_unknown_if.go # stackit/internal/utils/use_state_for_unknown_if_test.go # stackit/internal/utils/utils.go # stackit/internal/utils/utils_test.go # stackit/internal/validate/validate.go # stackit/internal/validate/validate_test.go # stackit/provider.go # stackit/provider_acc_test.go # stackit/testdata/provider-all-attributes.tf # stackit/testdata/provider-credentials.tf # stackit/testdata/provider-invalid-attribute.tf
2025-12-19 11:33:29 +01:00 · 2025-12-19 11:33:29 +01:00 · 7de63b5b8e
commit 7de63b5b8e
parent feef0b61d6 45073a716b
9 changed files with 4 additions and 194 deletions
--- a/.github/docs/contribution-guide/resource.go
+++ b/.github/docs/contribution-guide/resource.go
@ -213,7 +213,7 @@ func (r *barResource) Create(ctx context.Context, req resource.CreateRequest, re
 	// only in case the create bar API call is asynchronous (Make sure to include *ALL* fields which are part of the
 	// internal terraform resource id! And please include the comment below in your code):
 	// Write id attributes to state before polling via the wait handler - just in case anything goes wrong during the wait handler
-	utils.SetAndLogStateFields(ctx, &resp.Diagnostics, &resp.State, map[string]interface{}{
+	ctx = utils.SetAndLogStateFields(ctx, &resp.Diagnostics, &resp.State, map[string]interface{}{
 		"project_id": projectId,
 		"region":     region,
 		"bar_id":     resp.BarId,
@ -337,7 +337,7 @@ func (r *barResource) ImportState(ctx context.Context, req resource.ImportStateR
 		return
 	}
-	utils.SetAndLogStateFields(ctx, &resp.Diagnostics, &resp.State, map[string]any{
+	ctx = utils.SetAndLogStateFields(ctx, &resp.Diagnostics, &resp.State, map[string]any{
 		"project_id": idParts[0],
 		"region":     idParts[1],
 		"bar_id":     idParts[2],
--- a/.github/workflows/stale.yaml
+++ b/.github/workflows/stale.yaml
@ -11,6 +11,7 @@ on:
 env:
  DAYS_BEFORE_PR_STALE: 7
  DAYS_BEFORE_PR_CLOSE: 7
  EXEMPT_PR_LABELS: "ignore-stale"
 permissions:
  issues: write
@ -30,6 +31,7 @@ jobs:
          close-pr-message: "This PR was closed automatically because it has been stalled for ${{ env.DAYS_BEFORE_PR_CLOSE }} days with no activity. Feel free to re-open it at any time."
          days-before-pr-stale: ${{ env.DAYS_BEFORE_PR_STALE }}
          days-before-pr-close: ${{ env.DAYS_BEFORE_PR_CLOSE }}
          exempt-pr-labels: ${{ env.EXEMPT_PR_LABELS }}
          # never mark issues as stale or close them
          days-before-issue-stale: -1
          days-before-issue-close: -1
--- a/docs/guides/import_resources.md
+++ b/docs/guides/import_resources.md
@ -1,27 +0,0 @@
 ---
 page_title: "How to import an existing resources"
 ---
 # How to import an existing resources?
 ## 1. **Create a terraform config file and add an import block for your resource**
 In order to import an existing resources in terraform you need to add an import block for the corresponding resource in a terraform config file.
 There is an example for every resource under the [examples](../../examples/) folder.
 E.g. the import statement for a `stackit_volume` looks like the following:
 ```terraform
 import {
  to = stackit_volume.import-example
  id = "${var.project_id},${var.volume_id}"
 }
 ```
 ## 2. **Generate the destination resource automatically**
 Run `terraform plan -generate-config-out=generated.tf` to let terraform generate the configuration for you.
 In this step the `stackit_volume.import-example` resource is generated and filled with informations of your existing resource.
 ## 3. **Finish the import**
 Run `terraform apply` to add your resource to the terraform state.
--- a/stackit/internal/testutil/sdk_credentials_invalid.json
+++ b/stackit/internal/testutil/sdk_credentials_invalid.json
@ -1 +0,0 @@
 "not json"
--- a/stackit/internal/testutil/sdk_credentials_valid.json
+++ b/stackit/internal/testutil/sdk_credentials_valid.json
@ -1,3 +0,0 @@
 {
    "STACKIT_SERVICE_ACCOUNT_TOKEN": "foo_token"
 }
--- a/stackit/internal/validate/testdata/file.txt
+++ b/stackit/internal/validate/testdata/file.txt
@ -1 +0,0 @@
 I am a test file
--- a/templates/guides/import_resources.md
+++ b/templates/guides/import_resources.md
@ -1,27 +0,0 @@
 ---
 page_title: "How to import an existing resources"
 ---
 # How to import an existing resources?
 ## 1. **Create a terraform config file and add an import block for your resource**
 In order to import an existing resources in terraform you need to add an import block for the corresponding resource in a terraform config file.
 There is an example for every resource under the [examples](../../examples/) folder.
 E.g. the import statement for a `stackit_volume` looks like the following:
 ```terraform
 import {
  to = stackit_volume.import-example
  id = "${var.project_id},${var.volume_id}"
 }
 ```
 ## 2. **Generate the destination resource automatically**
 Run `terraform plan -generate-config-out=generated.tf` to let terraform generate the configuration for you.
 In this step the `stackit_volume.import-example` resource is generated and filled with informations of your existing resource.
 ## 3. **Finish the import**
 Run `terraform apply` to add your resource to the terraform state.
--- a/templates/index.md.tmpl
+++ b/templates/index.md.tmpl
@ -1,125 +0,0 @@
 # {{ .ProviderShortName | upper }} Terraform Provider
 The STACKIT Terraform provider is the official Terraform provider to integrate all the resources developed by [STACKIT](https://www.stackit.de/en/).
 ## Example Usage
 {{ tffile "examples/provider/provider.tf" }}
 ## Authentication
 To authenticate, you will need a [service account](https://docs.stackit.cloud/platform/access-and-identity/service-accounts/). Create it in the [STACKIT Portal](https://portal.stackit.cloud/) and assign the necessary permissions to it, e.g. `project.owner`. There are multiple ways to authenticate:
 - Key flow (recommended)
 - Token flow (is scheduled for deprecation and will be removed on December 17, 2025)
 When setting up authentication, the provider will always try to use the key flow first and search for credentials in several locations, following a specific order:
 1. Explicit configuration, e.g. by setting the field `service_account_key_path` in the provider block (see example below)
 2. Environment variable, e.g. by setting `STACKIT_SERVICE_ACCOUNT_KEY_PATH`
 3. Credentials file
   The provider will check the credentials file located in the path defined by the `STACKIT_CREDENTIALS_PATH` env var, if specified,
   or in `$HOME/.stackit/credentials.json` as a fallback.
   The credentials should be set using the same name as the environment variables. Example:
   ```json
   {
     "STACKIT_SERVICE_ACCOUNT_TOKEN": "foo_token",
     "STACKIT_SERVICE_ACCOUNT_KEY_PATH": "path/to/sa_key.json",
     "STACKIT_PRIVATE_KEY_PATH": "path/to/private_key.pem"
   }
   ```
 ### Key flow
    The following instructions assume that you have created a service account and assigned the necessary permissions to it, e.g. `project.owner`.
 To use the key flow, you need to have a service account key, which must have an RSA key-pair attached to it.
 When creating the service account key, a new pair can be created automatically, which will be included in the service account key. This will make it much easier to configure the key flow authentication in the [STACKIT Terraform Provider](https://github.com/stackitcloud/terraform-provider-stackit), by just providing the service account key.
 **Optionally**, you can provide your own private key when creating the service account key, which will then require you to also provide it explicitly to the [STACKIT Terraform Provider](https://github.com/stackitcloud/terraform-provider-stackit), additionally to the service account key. Check the STACKIT Docs for an [example of how to create your own key-pair](https://docs.stackit.cloud/platform/access-and-identity/service-accounts/how-tos/manage-service-account-keys/).
 To configure the key flow, follow this steps:
 1.  Create a service account key:
 - Use the [STACKIT Portal](https://portal.stackit.cloud/): go to the `Service Accounts` tab, choose a `Service Account` and go to `Service Account Keys` to create a key. For more details, see [Create a service account key](https://docs.stackit.cloud/platform/access-and-identity/service-accounts/how-tos/manage-service-account-keys/)
 2.  Save the content of the service account key by copying it and saving it in a JSON file.
    The expected format of the service account key is a **JSON** with the following structure:
 ```json
 {
  "id": "uuid",
  "publicKey": "public key",
  "createdAt": "2023-08-24T14:15:22Z",
  "validUntil": "2023-08-24T14:15:22Z",
  "keyType": "USER_MANAGED",
  "keyOrigin": "USER_PROVIDED",
  "keyAlgorithm": "RSA_2048",
  "active": true,
  "credentials": {
    "kid": "string",
    "iss": "my-sa@sa.stackit.cloud",
    "sub": "uuid",
    "aud": "string",
    (optional) "privateKey": "private key when generated by the SA service"
  }
 }
 ```
 3. Configure the service account key for authentication in the provider by following one of the alternatives below:
   - setting the fields in the provider block: `service_account_key` or `service_account_key_path`
   - setting the environment variable: `STACKIT_SERVICE_ACCOUNT_KEY_PATH`
   - setting `STACKIT_SERVICE_ACCOUNT_KEY_PATH` in the credentials file (see above)
 > **Optionally, only if you have provided your own RSA key-pair when creating the service account key**, you also need to configure your private key (takes precedence over the one included in the service account key, if present). **The private key must be PEM encoded** and can be provided using one of the options below:
 >
 > - setting the field in the provider block: `private_key` or `private_key_path`
 > - setting the environment variable: `STACKIT_PRIVATE_KEY_PATH`
 > - setting `STACKIT_PRIVATE_KEY_PATH` in the credentials file (see above)
 ### Token flow
 > Is scheduled for deprecation and will be removed on December 17, 2025.
 Using this flow is less secure since the token is long-lived. You can provide the token in several ways:
 1. Setting the field `service_account_token` in the provider
 2. Setting the environment variable `STACKIT_SERVICE_ACCOUNT_TOKEN`
 3. Setting it in the credentials file (see above)
 # Backend configuration
 To keep track of your terraform state, you can configure an [S3 backend](https://developer.hashicorp.com/terraform/language/settings/backends/s3) using [STACKIT Object Storage](https://docs.stackit.cloud/products/storage/object-storage).
 To do so, you need an Object Storage [S3 bucket](https://docs.stackit.cloud/products/storage/object-storage/basics/concepts/#buckets) and [credentials](https://docs.stackit.cloud/products/storage/object-storage/basics/concepts/#credentials) to access it. If you need to create them, check [Create and delete Object Storage buckets](https://docs.stackit.cloud/products/storage/object-storage/how-tos/create-and-manage-object-storage-buckets/) and [Create and delete Object Storage credentials](https://docs.stackit.cloud/products/storage/object-storage/how-tos/create-and-delete-object-storage-credentials/).
 Once you have everything setup, you can configure the backend by adding the following block to your terraform configuration:
 ```
 terraform {
  backend "s3" {
    bucket = "BUCKET_NAME"
    key    = "path/to/key"
    endpoints = {
      s3 = "https://object.storage.eu01.onstackit.cloud"
    }
    region                      = "eu01"
    skip_credentials_validation = true
    skip_region_validation      = true
    skip_s3_checksum            = true
    skip_requesting_account_id  = true
    secret_key                  = "SECRET_KEY"
    access_key                  = "ACCESS_KEY"
  }
 }
 ```
 Note: AWS specific checks must be skipped as they do not work on STACKIT. For details on what those validations do, see [here](https://developer.hashicorp.com/terraform/language/settings/backends/s3#configuration).
 {{ .SchemaMarkdown | trimspace }}
--- a/terraform-registry-manifest.json
+++ b/terraform-registry-manifest.json
@ -1,8 +0,0 @@
 {
    "version": 1,
    "metadata": {
        "protocol_versions": [
            "6.0"
        ]
    }
 }