Merge pull request #25 from CheckPointSW/github-pipline

GitHub pipline
CheckPointSW · Jan 7, 2025 · 0282d2b · 0282d2b
2 parents 24e1011 + ffc86e2
commit 0282d2b
Show file tree

Hide file tree

Showing 117 changed files with 3,581 additions and 798 deletions.
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
@@ -207,75 +207,75 @@ jobs:
         cmd/inext discard
         go test --timeout 20m -v -cover ./internal/resources/tests/
         cmd/inext discard
-  test-preprod:
-    name: Test PreProd
-    needs: build
-    environment:
-      name: PreProd
-      url: https://q.portal.checkpoint.com
-    runs-on: ubuntu-latest
-    timeout-minutes: 100
-    concurrency: acctests-${{ github.event_name }}-preprod
-    strategy:
-      max-parallel: 1
-      fail-fast: true
-      matrix:
-        # list whatever Terraform versions here you would like to support
-        terraform:
-          - '0.13.*'
-          - '0.14.*'
-          - '0.15.*'
-          - '1.0.*'
-          - '1.1.*'
-    steps:
-    - name: Set up Go
-      uses: actions/setup-go@v3
-      with:
-        go-version: '1.18'
-      id: go
-
-    - uses: hashicorp/setup-terraform@v2
-      with:
-        terraform_version: ${{ matrix.terraform }}
-        terraform_wrapper: false
-
-    - name: Check out code into the Go module directory
-      uses: actions/checkout@v3
-
-    - name: Get dependencies
-      run: |
-        go mod download
-
-    - name: Build CLI
-      run: |
-        cd cmd
-        go build -o inext -v .
-        
-    - name: TF acceptance tests push
-      if: ${{ github.event_name == 'push' }}
-      timeout-minutes: 20
-      env:
-        INEXT_CLIENT_ID: ${{ secrets.INEXT_CLIENT_ID_PUSH }}
-        INEXT_ACCESS_KEY: ${{ secrets.INEXT_ACCESS_KEY_PUSH }}
-        INEXT_REGION: preprod
-        TF_ACC: "1"
-      run: |
-        cmd/inext discard
-        go test --timeout 20m -v -cover ./internal/resources/tests/
-        cmd/inext discard
-    
-    - name: TF acceptance tests pull request
-      if: ${{ github.event_name == 'pull_request' }}
-      timeout-minutes: 20
-      env:
-        INEXT_CLIENT_ID: ${{ secrets.INEXT_CLIENT_ID_PR }}
-        INEXT_ACCESS_KEY: ${{ secrets.INEXT_ACCESS_KEY_PR }}
-        INEXT_REGION: preprod
-        TF_ACC: "1"
-      run: |
-        cmd/inext discard
-        go test --timeout 20m -v -cover ./internal/resources/tests/
-        cmd/inext discard
+#  test-preprod:
+#    name: Test PreProd
+#    needs: build
+#    environment:
+#      name: PreProd
+#      url: https://q.portal.checkpoint.com
+#    runs-on: ubuntu-latest
+#    timeout-minutes: 100
+#    concurrency: acctests-${{ github.event_name }}-preprod
+#    strategy:
+#      max-parallel: 1
+#      fail-fast: true
+#      matrix:
+#        # list whatever Terraform versions here you would like to support
+#        terraform:
+#          - '0.13.*'
+#          - '0.14.*'
+#          - '0.15.*'
+#          - '1.0.*'
+#          - '1.1.*'
+#    steps:
+#    - name: Set up Go
+#      uses: actions/setup-go@v3
+#      with:
+#        go-version: '1.18'
+#      id: go
+#
+#    - uses: hashicorp/setup-terraform@v2
+#      with:
+#        terraform_version: ${{ matrix.terraform }}
+#        terraform_wrapper: false
+#
+#    - name: Check out code into the Go module directory
+#      uses: actions/checkout@v3
+#
+#    - name: Get dependencies
+#      run: |
+#        go mod download
+#
+#    - name: Build CLI
+#      run: |
+#        cd cmd
+#        go build -o inext -v .
+#
+#    - name: TF acceptance tests push
+#      if: ${{ github.event_name == 'push' }}
+#      timeout-minutes: 20
+#      env:
+#        INEXT_CLIENT_ID: ${{ secrets.INEXT_CLIENT_ID_PUSH }}
+#        INEXT_ACCESS_KEY: ${{ secrets.INEXT_ACCESS_KEY_PUSH }}
+#        INEXT_REGION: preprod
+#        TF_ACC: "1"
+#      run: |
+#        cmd/inext discard
+#        go test --timeout 20m -v -cover ./internal/resources/tests/
+#        cmd/inext discard
+#
+#    - name: TF acceptance tests pull request
+#      if: ${{ github.event_name == 'pull_request' }}
+#      timeout-minutes: 20
+#      env:
+#        INEXT_CLIENT_ID: ${{ secrets.INEXT_CLIENT_ID_PR }}
+#        INEXT_ACCESS_KEY: ${{ secrets.INEXT_ACCESS_KEY_PR }}
+#        INEXT_REGION: preprod
+#        TF_ACC: "1"
+#      run: |
+#        cmd/inext discard
+#        go test --timeout 20m -v -cover ./internal/resources/tests/
+#        cmd/inext discard
 
     # - name: TF acceptance tests schedule
     #   if: ${{ github.event_name == 'schedule' }}

diff --git a/docs/resources/inext_appsec_gateway_profile.md b/docs/resources/inext_appsec_gateway_profile.md
@@ -3,12 +3,12 @@
 page_title: "inext_appsec_gateway_profile Resource - terraform-provider-infinity-next"
 subcategory: ""
 description: |-
-  CloudGuard Application Security Gateway profile is deployed as a VM that runs on a Check Point Gaia OS with a reverse proxy and Check Point Nano-Agent
+  CloudGuard Application Security Gateway profile is deployed as a VM that runs on a Check Point Gaia OS with a reverse proxy and Check Point Nano-Agent.
 ---
 
 # inext_appsec_gateway_profile (Resource)
 
-CloudGuard Application Security Gateway profile is deployed as a VM that runs on a Check Point Gaia OS with a reverse proxy and Check Point Nano-Agent
+CloudGuard Application Security Gateway profile is deployed as a VM that runs on a Check Point Gaia OS with a reverse proxy and Check Point Nano-Agent.
 
 ## Example Usage
 
@@ -17,7 +17,7 @@ terraform {
   required_providers {
     inext = {
       source  = "CheckPointSW/infinity-next"
-      version = "1.0.3"
+      version = "1.1.1"
     }
   }
 }
@@ -65,9 +65,10 @@ resource "inext_appsec_gateway_profile" "my-appsec-gateway-profile" {
 - `reverseproxy_upstream_timeout` (Number) Sets the reverse proxy upstream timeout in seconds
 - `upgrade_mode` (String) The upgrade mode of the profile: Automatic, Manual or Scheduled.
 The default is Automatic
+- `upgrade_time_days` (Set of Number) The days of the month of the upgrade time schedule
 - `upgrade_time_duration` (Number) The duration of the upgrade in hours
 - `upgrade_time_hour` (String) The hour of the upgrade time start, for example: 10:00 or 20:00
-- `upgrade_time_schedule_type` (String) The schedule type in case upgrade mode is scheduled: DaysInWeek
+- `upgrade_time_schedule_type` (String) The schedule type in case upgrade mode is scheduled: DaysInWeek, DaysInMonth or Daily
 - `upgrade_time_week_days` (Set of String) The week days of the upgrade time schedule: Sunday, Monday, Tuesday, Wednesday, Thursday, Friday, Saturday
 
 ### Read-Only

diff --git a/docs/resources/inext_docker_profile.md b/docs/resources/inext_docker_profile.md
@@ -16,8 +16,8 @@ Docker profile
 terraform {
   required_providers {
     inext = {
-      version = "~> 1.0.0"
-      source  = "checkpointsw/infinitynext"
+      source  = "CheckPointSW/infinity-next"
+      version = "~>1.1.1"
     }
   }
 }

diff --git a/docs/resources/inext_embedded_profile.md b/docs/resources/inext_embedded_profile.md
@@ -16,8 +16,8 @@ Embedded profile
 terraform {
   required_providers {
     inext = {
-      version = "~> 1.0.0"
-      source  = "checkpointsw/infinitynext"
+      source  = "CheckPointSW/infinity-next"
+      version = "~>1.1.1"
     }
   }
 }
@@ -58,9 +58,10 @@ resource "inext_embedded_profile" "my-embedded-profile" {
 - `max_number_of_agents` (Number) Sets the maximum number of agents that can be connected to this profile
 - `upgrade_mode` (String) The upgrade mode of the profile: Automatic, Manual or Scheduled.
 The default is Automatic
+- `upgrade_time_days` (Set of Number) The days of the month of the upgrade time schedule
 - `upgrade_time_duration` (Number) The duration of the upgrade in hours
 - `upgrade_time_hour` (String) The hour of the upgrade time start, for example: 10:00 or 20:00
-- `upgrade_time_schedule_type` (String) The schedule type in case upgrade mode is scheduled: DaysInWeek
+- `upgrade_time_schedule_type` (String) The schedule type in case upgrade mode is scheduled: DaysInWeek, DaysInMonth or Daily
 - `upgrade_time_week_days` (Set of String) The week days of the upgrade time schedule: Sunday, Monday, Tuesday, Wednesday, Thursday, Friday, Saturday
 
 ### Read-Only

diff --git a/docs/resources/inext_exceptions.md b/docs/resources/inext_exceptions.md
@@ -17,7 +17,7 @@ terraform {
   required_providers {
     inext = {
       source  = "CheckPointSW/infinity-next"
-      version = "1.0.3"
+      version = "~>1.1.1"
     }
   }
 }
@@ -62,6 +62,7 @@ resource "inext_exceptions" "my-exceptions-behavior" {
 ### Optional
 
 - `exception` (Block Set) Overrides AppSec ML engine decision based on match and action (see [below for nested schema](#nestedblock--exception))
+- `visibility` (String) The visibility of the exception: Shared or Local
 
 ### Read-Only
 

diff --git a/docs/resources/inext_kubernetes_profile.md b/docs/resources/inext_kubernetes_profile.md
@@ -16,8 +16,8 @@ Kubernetes profile
 terraform {
   required_providers {
     inext = {
-      version = "~> 1.0.0"
-      source  = "checkpointsw/infinitynext"
+      source  = "CheckPointSW/infinity-next"
+      version = "~>1.1.1"
     }
   }
 }
@@ -46,7 +46,7 @@ resource "inext_kubernetes_profile" "my-kubernetes-profile" {
 ### Required
 
 - `name` (String) The name of the resource, also acts as its unique ID
-- `profile_sub_type` (String)
+- `profile_sub_type` (String) The sub type of the profile (AppSec, AccessControl, Kong, Istio)
 
 ### Optional
 

diff --git a/docs/resources/inext_log_trigger.md b/docs/resources/inext_log_trigger.md
@@ -17,7 +17,7 @@ terraform {
   required_providers {
     inext = {
       source  = "CheckPointSW/infinity-next"
-      version = "1.0.3"
+      version = "~>1.1.1"
     }
   }
 }
@@ -47,9 +47,11 @@ resource "inext_log_trigger" "mytrigger" {
   log_to_cef                       = false
   cef_ip_address                   = "10.0.0.1"
   cef_port_num                     = 2000
+  cef_protocol                     = "TCP" # enum of ["TCP", "UDP"]
   log_to_cloud                     = true
   log_to_syslog                    = true
   syslog_ip_address                = "10.10.10.10"
+  syslog_protocol                  = "TCP" # enum of ["TCP", "UDP"]
   syslog_port_num                  = 5004
   compliance_violations            = true
   compliance_warnings              = true
@@ -70,6 +72,9 @@ resource "inext_log_trigger" "mytrigger" {
 - `access_control_drop_events` (Boolean) Log Access Control drops
 - `cef_ip_address` (String)
 - `cef_port` (Number)
+- `cef_protocol` (String) CEF protocol: UDP or TCP
+- `compliance_violations` (Boolean)
+- `compliance_warnings` (Boolean)
 - `extend_logging` (Boolean)
 - `extend_logging_min_severity` (String) Minimum severity of events that will trigger extended logging: High or Critical
 - `log_to_agent` (Boolean)
@@ -80,6 +85,7 @@ resource "inext_log_trigger" "mytrigger" {
 - `response_code` (Boolean) Add response code to log if true
 - `syslog_ip_address` (String)
 - `syslog_port` (Number)
+- `syslog_protocol` (String) Syslog protocol: UDP or TCP
 - `threat_prevention_detect_events` (Boolean) Log Threat Prevention Prevents
 - `threat_prevention_prevent_events` (Boolean) Log Threat Prevention Detects
 - `verbosity` (String) The verbosity of the log: Standard, Minimal or Extended

diff --git a/docs/resources/inext_trusted_sources.md b/docs/resources/inext_trusted_sources.md
@@ -17,7 +17,7 @@ terraform {
   required_providers {
     inext = {
       source  = "CheckPointSW/infinity-next"
-      version = "1.0.3"
+      version = "1.1.1"
     }
   }
 }
@@ -30,6 +30,7 @@ provider "inext" {
 
 resource "inext_trusted_sources" "my-trusted-source-behavior" {
   name                = "some name"
+  visibility          = "Shared"
   min_num_of_sources  = 1
   sources_identifiers = ["identifier1", "identifier2"]
 }
@@ -46,6 +47,7 @@ resource "inext_trusted_sources" "my-trusted-source-behavior" {
 ### Optional
 
 - `sources_identifiers` (Set of String) The trusted sources identifier values
+- `visibility` (String) The visibility of the resource - Shared or Local
 
 ### Read-Only