Merge pull request #111 from DopplerHQ/andre/aws-xform

Add Name Transform to AWS SM and PS Syncs

docs/resources/secrets_sync_aws_parameter_store.md

@@ -97,6 +97,7 @@ resource "doppler_secrets_sync_aws_parameter_store" "backend_prod" {
 
 - `delete_behavior` (String) The behavior to be performed on the secrets in the sync target when this resource is deleted or recreated. Either `leave_in_target` (default) or `delete_from_target`.
 - `kms_key_id` (String) The AWS KMS key used to encrypt the parameter (ID, Alias, or ARN)
+- `name_transform` (String) An optional secret name transformer (e.g. DOPPLER_CONFIG in lower-kebab would be doppler-config). Valid transformers: none, camel, upper-camel, lower-snake, tf-var, dotnet, dotnet-env, lower-kebab
 - `secure_string` (Boolean) Whether or not the parameters are stored as a secure string
 - `tags` (Map of String) AWS tags to attach to the parameters
 - `update_resource_tags` (String) Behavior for AWS resource tags on updates (`never` update, `upsert` tags (leaving non-Doppler tags alone), `replace` tags (remove non-Doppler tags))

docs/resources/secrets_sync_aws_secrets_manager.md

@@ -92,6 +92,7 @@ resource "doppler_secrets_sync_aws_secrets_manager" "backend_prod" {
 
 - `delete_behavior` (String) The behavior to be performed on the secrets in the sync target when this resource is deleted or recreated. Either `leave_in_target` (default) or `delete_from_target`.
 - `kms_key_id` (String) The AWS KMS key used to encrypt the secret (ID, Alias, or ARN)
+- `name_transform` (String) An optional secret name transformer (e.g. DOPPLER_CONFIG in lower-kebab would be doppler-config). Valid transformers: none, camel, upper-camel, lower-snake, tf-var, dotnet, dotnet-env, lower-kebab
 - `path_behavior` (String) The behavior to modify the provided path. Either `add_doppler_suffix` (default) which appends `doppler` to the provided path or `none` which leaves the path unchanged.
 - `tags` (Map of String) AWS tags to attach to the secrets
 - `update_metadata` (Boolean) If enabled, Doppler will update the AWS secret metadata (e.g. KMS key) during every sync. If disabled, Doppler will only set secret metadata for new AWS secrets.

doppler/models.go

@@ -330,3 +330,5 @@ func parseGroupMemberId(id string) (group string, memberType string, memberSlug
 	}
 	return tokens[0], tokens[1], tokens[2], nil
 }
+
+var NameTransformers = []string{"none", "camel", "upper-camel", "lower-snake", "tf-var", "dotnet", "dotnet-env", "lower-kebab"}

doppler/resource_sync_types.go

@@ -1,6 +1,9 @@
 package doppler
 
 import (
+	"fmt"
+	"strings"
+
 	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
 	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/validation"
 )
@@ -59,6 +62,23 @@ func resourceSyncAWSSecretsManager() *schema.Resource {
 				},
 			},
 
+			"name_transform": {
+				Description:  fmt.Sprintf("An optional secret name transformer (e.g. DOPPLER_CONFIG in lower-kebab would be doppler-config). Valid transformers: %v", strings.Join(NameTransformers, ", ")),
+				Type:         schema.TypeString,
+				Optional:     true,
+				ForceNew:     true,
+				ValidateFunc: validation.StringInSlice(NameTransformers, false),
+				DiffSuppressFunc: func(k, oldValue, newValue string, d *schema.ResourceData) bool {
+					if oldValue == "" && newValue == "none" {
+						return true
+					} else if oldValue == "none" && newValue == "" {
+						return true
+					} else {
+						return newValue == oldValue
+					}
+				},
+			},
+
 			"path_behavior": {
 				Description: "The behavior to modify the provided path. Either `add_doppler_suffix` (default) which appends `doppler` to the provided path or `none` which leaves the path unchanged.",
 				Type:        schema.TypeString,
@@ -94,6 +114,9 @@ func resourceSyncAWSSecretsManager() *schema.Resource {
 			if updateResourceTags, ok := d.GetOk("update_resource_tags"); ok {
 				payload["update_resource_tags"] = updateResourceTags
 			}
+			if nameTransform, ok := d.GetOk("name_transform"); ok {
+				payload["name_transform"] = nameTransform
+			}
 			if pathBehavior, ok := d.GetOk("path_behavior"); ok {
 				payload["use_doppler_suffix"] = pathBehavior == "add_doppler_suffix"
 			} else {
@@ -158,6 +181,22 @@ func resourceSyncAWSParameterStore() *schema.Resource {
 					}
 				},
 			},
+			"name_transform": {
+				Description:  fmt.Sprintf("An optional secret name transformer (e.g. DOPPLER_CONFIG in lower-kebab would be doppler-config). Valid transformers: %v", strings.Join(NameTransformers, ", ")),
+				Type:         schema.TypeString,
+				Optional:     true,
+				ForceNew:     true,
+				ValidateFunc: validation.StringInSlice(NameTransformers, false),
+				DiffSuppressFunc: func(k, oldValue, newValue string, d *schema.ResourceData) bool {
+					if oldValue == "" && newValue == "none" {
+						return true
+					} else if oldValue == "none" && newValue == "" {
+						return true
+					} else {
+						return newValue == oldValue
+					}
+				},
+			},
 		},
 		DataBuilder: func(d *schema.ResourceData) IntegrationData {
 			payload := map[string]interface{}{
@@ -172,6 +211,9 @@ func resourceSyncAWSParameterStore() *schema.Resource {
 			if updateResourceTags, ok := d.GetOk("update_resource_tags"); ok {
 				payload["update_resource_tags"] = updateResourceTags
 			}
+			if nameTransform, ok := d.GetOk("name_transform"); ok {
+				payload["name_transform"] = nameTransform
+			}
 			return payload
 		},
 	}