add plural group_members resource back (#182)

* add group_members resource back

* Revert "remove plural group_members in favor of retry transport"

This reverts commit 5d4b2d9.

Author: megan07

CHANGELOG.md

@@ -1,5 +1,11 @@
 ## 0.5.0 (Unreleased)
 
+FEATURES:
+
+* **New Resource:**   `googleworkspace_group_members` [GH-155]
+
+* **New Datasource:** `googleworkspace_group_members` [GH-155]
+
 IMPROVEMENTS:
 
 * provider: added ability to authenticate using user credentials [GH-156]

docs/data-sources/group_members.md

@@ -0,0 +1,54 @@
+---
+# generated by https://github.com/hashicorp/terraform-plugin-docs
+page_title: "googleworkspace_group_members Data Source - terraform-provider-googleworkspace"
+subcategory: ""
+description: |-
+  Group Members data source in the Terraform Googleworkspace provider. Group Members resides under the https://www.googleapis.com/auth/admin.directory.group client scope.
+---
+
+# googleworkspace_group_members (Data Source)
+
+Group Members data source in the Terraform Googleworkspace provider. Group Members resides under the `https://www.googleapis.com/auth/admin.directory.group` client scope.
+
+## Example Usage
+
+```terraform
+data "googleworkspace_group" "sales" {
+  email = "[email protected]"
+}
+
+data "googleworkspace_group_members" "sales" {
+  group_id = data.googleworkspace_group.sales.id
+}
+
+output "group_members" {
+  value = data.googleworkspace_group_members.sales.members
+}
+```
+
+<!-- schema generated by tfplugindocs -->
+## Schema
+
+### Required
+
+- **group_id** (String) Identifies the group in the API request. The value can be the group's email address, group alias, or the unique group ID.
+
+### Read-Only
+
+- **etag** (String) ETag of the resource.
+- **id** (String) The ID of this resource.
+- **members** (Set of Object) The members of the group (see [below for nested schema](#nestedatt--members))
+
+<a id="nestedatt--members"></a>
+### Nested Schema for `members`
+
+Read-Only:
+
+- **delivery_settings** (String)
+- **email** (String)
+- **id** (String)
+- **role** (String)
+- **status** (String)
+- **type** (String)
+
+

docs/resources/group_members.md

@@ -0,0 +1,94 @@
+---
+# generated by https://github.com/hashicorp/terraform-plugin-docs
+page_title: "googleworkspace_group_members Resource - terraform-provider-googleworkspace"
+subcategory: ""
+description: |-
+  Group Members resource manages Google Workspace Groups Members. Group Members resides under the https://www.googleapis.com/auth/admin.directory.group client scope.
+---
+
+# googleworkspace_group_members (Resource)
+
+Group Members resource manages Google Workspace Groups Members. Group Members resides under the `https://www.googleapis.com/auth/admin.directory.group` client scope.
+
+## Example Usage
+
+```terraform
+resource "googleworkspace_group" "sales" {
+  email = "[email protected]"
+}
+
+resource "googleworkspace_user" "michael" {
+  primary_email = "[email protected]"
+  password      = "34819d7beeabb9260a5c854bc85b3e44"
+  hash_function = "MD5"
+
+  name {
+    family_name = "Scott"
+    given_name  = "Michael"
+  }
+}
+
+resource "googleworkspace_user" "frank" {
+  primary_email = "[email protected]"
+  password      = "2095312189753de6ad47dfe20cbe97ec"
+  hash_function = "MD5"
+
+  name {
+    family_name = "Scott"
+    given_name  = "Frank"
+  }
+}
+
+resource "googleworkspace_group_members" "sales" {
+  group_id = googleworkspace_group.sales.id
+
+  members {
+    email = googleworkspace_user.michael.primary_email
+    role  = "MANAGER"
+  }
+
+  members {
+    email = googleworkspace_user.frank.primary_email
+    role  = "MEMBER"
+  }
+}
+```
+
+<!-- schema generated by tfplugindocs -->
+## Schema
+
+### Required
+
+- **group_id** (String) Identifies the group in the API request. The value can be the group's email address, group alias, or the unique group ID.
+- **members** (Block Set, Min: 1) The members of the group (see [below for nested schema](#nestedblock--members))
+
+### Read-Only
+
+- **etag** (String) ETag of the resource.
+- **id** (String) The ID of this resource.
+
+<a id="nestedblock--members"></a>
+### Nested Schema for `members`
+
+Required:
+
+- **email** (String) The member's email address. A member can be a user or another group. This property isrequired when adding a member to a group. The email must be unique and cannot be an alias of another group. If the email address is changed, the API automatically reflects the email address changes.
+
+Optional:
+
+- **delivery_settings** (String) Defines mail delivery preferences of member. Acceptable values are:`ALL_MAIL`: All messages, delivered as soon as they arrive. `DAILY`: No more than one message a day. `DIGEST`: Up to 25 messages bundled into a single message. `DISABLED`: Remove subscription. `NONE`: No messages. Defaults to `ALL_MAIL`.
+- **role** (String) The member's role in a group. The API returns an error for cycles in group memberships. For example, if group1 is a member of group2, group2 cannot be a member of group1. Acceptable values are: `MANAGER`: This role is only available if the Google Groups for Business is enabled using the Admin Console. A `MANAGER` role can do everything done by an `OWNER` role except make a member an `OWNER` or delete the group. A group can have multiple `MANAGER` members. `MEMBER`: This role can subscribe to a group, view discussion archives, and view the group's membership list. `OWNER`: This role can send messages to the group, add or remove members, change member roles, change group's settings, and delete the group. An OWNER must be a member of the group. A group can have more than one OWNER. Defaults to `MEMBER`.
+- **type** (String) The type of group member. Acceptable values are: `CUSTOMER`: The member represents all users in a domain. An email address is not returned and the ID returned is the customer ID. `GROUP`: The member is another group. `USER`: The member is a user. Defaults to `USER`.
+
+Read-Only:
+
+- **id** (String) The unique ID of the group member. A member id can be used as a member request URI's memberKey.
+- **status** (String) Status of member.
+
+## Import
+
+Import is supported using the following syntax:
+
+```shell
+terraform import googleworkspace_group_members.sales groups/01abcde23fg4h5i
+```

examples/data-sources/googleworkspace_group_members/data-source.tf

@@ -0,0 +1,11 @@
+data "googleworkspace_group" "sales" {
+  email = "[email protected]"
+}
+
+data "googleworkspace_group_members" "sales" {
+  group_id = data.googleworkspace_group.sales.id
+}
+
+output "group_members" {
+  value = data.googleworkspace_group_members.sales.members
+}

examples/resources/googleworkspace_group_members/import.sh

@@ -0,0 +1 @@
+terraform import googleworkspace_group_members.sales groups/01abcde23fg4h5i

examples/resources/googleworkspace_group_members/resource.tf

@@ -0,0 +1,39 @@
+resource "googleworkspace_group" "sales" {
+  email = "[email protected]"
+}
+
+resource "googleworkspace_user" "michael" {
+  primary_email = "[email protected]"
+  password      = "34819d7beeabb9260a5c854bc85b3e44"
+  hash_function = "MD5"
+
+  name {
+    family_name = "Scott"
+    given_name  = "Michael"
+  }
+}
+
+resource "googleworkspace_user" "frank" {
+  primary_email = "[email protected]"
+  password      = "2095312189753de6ad47dfe20cbe97ec"
+  hash_function = "MD5"
+
+  name {
+    family_name = "Scott"
+    given_name  = "Frank"
+  }
+}
+
+resource "googleworkspace_group_members" "sales" {
+  group_id = googleworkspace_group.sales.id
+
+  members {
+    email = googleworkspace_user.michael.primary_email
+    role  = "MANAGER"
+  }
+
+  members {
+    email = googleworkspace_user.frank.primary_email
+    role  = "MEMBER"
+  }
+}

internal/provider/data_source_group_members.go

@@ -0,0 +1,28 @@
+package googleworkspace
+
+import (
+	"context"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/diag"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
+)
+
+func dataSourceGroupMembers() *schema.Resource {
+	// Generate datasource schema from resource
+	dsSchema := datasourceSchemaFromResourceSchema(resourceGroupMembers().Schema)
+	addRequiredFieldsToSchema(dsSchema, "group_id")
+
+	return &schema.Resource{
+		// This description is used by the documentation generator and the language server.
+		Description: "Group Members data source in the Terraform Googleworkspace provider. Group Members resides " +
+			"under the `https://www.googleapis.com/auth/admin.directory.group` client scope.",
+
+		ReadContext: dataSourceGroupMembersRead,
+
+		Schema: dsSchema,
+	}
+}
+
+func dataSourceGroupMembersRead(ctx context.Context, d *schema.ResourceData, meta interface{}) diag.Diagnostics {
+	return resourceGroupMembersRead(ctx, d, meta)
+}

internal/provider/data_source_group_members_test.go

@@ -0,0 +1,75 @@
+package googleworkspace
+
+import (
+	"fmt"
+	"os"
+	"testing"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/acctest"
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/resource"
+)
+
+func TestAccDataSourceGroupMembers(t *testing.T) {
+	t.Parallel()
+
+	domainName := os.Getenv("GOOGLEWORKSPACE_DOMAIN")
+
+	if domainName == "" {
+		t.Skip("GOOGLEWORKSPACE_DOMAIN needs to be set to run this test")
+	}
+
+	testGroupVals := map[string]interface{}{
+		"userEmail":  fmt.Sprintf("tf-test-%s@%s", acctest.RandString(10), domainName),
+		"groupEmail": fmt.Sprintf("tf-test-%s@%s", acctest.RandString(10), domainName),
+		"password":   acctest.RandString(10),
+	}
+
+	resource.Test(t, resource.TestCase{
+		PreCheck:          func() { testAccPreCheck(t) },
+		ProviderFactories: providerFactories,
+		Steps: []resource.TestStep{
+			{
+				Config: testAccDataSourceGroupMembers(testGroupVals),
+				Check: resource.ComposeTestCheckFunc(
+					resource.TestCheckResourceAttr(
+						"data.googleworkspace_group_members.my-group-members", "members.#", "1"),
+					resource.TestCheckTypeSetElemNestedAttrs(
+						"data.googleworkspace_group_members.my-group-members", "members.*", map[string]string{
+							"email": Nprintf("%{userEmail}", testGroupVals),
+							"role":  "MEMBER",
+							"type":  "USER",
+						}),
+				),
+			},
+		},
+	})
+}
+
+func testAccDataSourceGroupMembers(testGroupVals map[string]interface{}) string {
+	return Nprintf(`
+resource "googleworkspace_group" "my-group" {
+  email = "%{groupEmail}"
+}
+
+resource "googleworkspace_user" "my-new-user" {
+  primary_email = "%{userEmail}"
+  password = "%{password}"
+
+  name {
+    family_name = "Scott"
+    given_name = "Michael"
+  }
+}
+
+resource "googleworkspace_group_member" "my-group-member" {
+  group_id = googleworkspace_group.my-group.id
+  email = googleworkspace_user.my-new-user.primary_email
+}
+
+data "googleworkspace_group_members" "my-group-members" {
+  group_id = googleworkspace_group.my-group.id
+
+  depends_on = [googleworkspace_group_member.my-group-member]
+}
+`, testGroupVals)
+}

internal/provider/provider.go

@@ -115,6 +115,7 @@ func New(version string) func() *schema.Provider {
 				"googleworkspace_domain_alias":         dataSourceDomainAlias(),
 				"googleworkspace_group":                dataSourceGroup(),
 				"googleworkspace_group_member":         dataSourceGroupMember(),
+				"googleworkspace_group_members":        dataSourceGroupMembers(),
 				"googleworkspace_group_settings":       dataSourceGroupSettings(),
 				"googleworkspace_org_unit":             dataSourceOrgUnit(),
 				"googleworkspace_privileges":           dataSourcePrivileges(),
@@ -129,6 +130,7 @@ func New(version string) func() *schema.Provider {
 				"googleworkspace_gmail_send_as_alias": resourceGmailSendAsAlias(),
 				"googleworkspace_group":               resourceGroup(),
 				"googleworkspace_group_member":        resourceGroupMember(),
+				"googleworkspace_group_members":       resourceGroupMembers(),
 				"googleworkspace_group_settings":      resourceGroupSettings(),
 				"googleworkspace_org_unit":            resourceOrgUnit(),
 				"googleworkspace_role":                resourceRole(),