Add certificate manager certificates datasource (#11543) (#19361)

[upstream:1ed208786c29553f2ca18bc40fde6859b55f3f9d]

Signed-off-by: Modular Magician <magic-modules@google.com>

.changelog/11543.txt

@@ -0,0 +1,3 @@
+```release-note:new-datasource
+`google_certificate_manager_certificates`
+```

google/provider/provider_mmv1_resources.go

@@ -154,6 +154,7 @@ var handwrittenDatasources = map[string]*schema.Resource{
 	"google_billing_account":                              billing.DataSourceGoogleBillingAccount(),
 	"google_bigquery_dataset":                             bigquery.DataSourceGoogleBigqueryDataset(),
 	"google_bigquery_default_service_account":             bigquery.DataSourceGoogleBigqueryDefaultServiceAccount(),
+	"google_certificate_manager_certificates":             certificatemanager.DataSourceGoogleCertificateManagerCertificates(),
 	"google_certificate_manager_certificate_map":          certificatemanager.DataSourceGoogleCertificateManagerCertificateMap(),
 	"google_cloudbuild_trigger":                           cloudbuild.DataSourceGoogleCloudBuildTrigger(),
 	"google_cloudfunctions_function":                      cloudfunctions.DataSourceGoogleCloudFunctionsFunction(),

google/services/certificatemanager/data_source_google_certificate_manager_certificates.go

@@ -0,0 +1,140 @@
+// Copyright (c) HashiCorp, Inc.
+// SPDX-License-Identifier: MPL-2.0
+package certificatemanager
+
+import (
+	"fmt"
+
+	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
+	"github.com/hashicorp/terraform-provider-google/google/tpgresource"
+	transport_tpg "github.com/hashicorp/terraform-provider-google/google/transport"
+	"google.golang.org/api/certificatemanager/v1"
+)
+
+func DataSourceGoogleCertificateManagerCertificates() *schema.Resource {
+	dsSchema := tpgresource.DatasourceSchemaFromResourceSchema(ResourceCertificateManagerCertificate().Schema)
+	tpgresource.DeleteFieldsFromSchema(dsSchema, "self_managed")
+
+	return &schema.Resource{
+		Read: dataSourceGoogleCertificateManagerCertificatesRead,
+		Schema: map[string]*schema.Schema{
+			"filter": {
+				Type:     schema.TypeString,
+				Optional: true,
+			},
+			"region": {
+				Type:     schema.TypeString,
+				Optional: true,
+				Default:  "global",
+			},
+			"certificates": {
+				Type:     schema.TypeList,
+				Computed: true,
+				Elem: &schema.Resource{
+					Schema: dsSchema,
+				},
+			},
+		},
+	}
+}
+
+func dataSourceGoogleCertificateManagerCertificatesRead(d *schema.ResourceData, meta interface{}) error {
+	config := meta.(*transport_tpg.Config)
+	userAgent, err := tpgresource.GenerateUserAgentString(d, config.UserAgent)
+	if err != nil {
+		return err
+	}
+
+	project, err := tpgresource.GetProject(d, config)
+	if err != nil {
+		return fmt.Errorf("error fetching project for certificate: %s", err)
+	}
+
+	region, err := tpgresource.GetRegion(d, config)
+	if err != nil {
+		return fmt.Errorf("error fetching region for certificate: %s", err)
+	}
+
+	filter := d.Get("filter").(string)
+
+	certificates := make([]map[string]interface{}, 0)
+	certificatesList, err := config.NewCertificateManagerClient(userAgent).Projects.Locations.Certificates.List(fmt.Sprintf("projects/%s/locations/%s", project, region)).Filter(filter).Do()
+	if err != nil {
+		return transport_tpg.HandleNotFoundError(err, d, fmt.Sprintf("Certificates : %s %s", project, region))
+	}
+
+	for _, certificate := range certificatesList.Certificates {
+		if certificate != nil {
+			certificates = append(certificates, map[string]interface{}{
+				"name":         certificate.Name,
+				"description":  certificate.Description,
+				"labels":       certificate.Labels,
+				"location":     region,
+				"managed":      flattenCertificateManaged(certificate.Managed),
+				"san_dnsnames": certificate.SanDnsnames,
+				"scope":        certificate.Scope,
+			})
+		}
+	}
+
+	if err := d.Set("certificates", certificates); err != nil {
+		return fmt.Errorf("error setting certificates: %s", err)
+	}
+
+	d.SetId(fmt.Sprintf(
+		"projects/%s/locations/%s/certificates",
+		project,
+		region,
+	))
+
+	return nil
+}
+
+func flattenCertificateManaged(v *certificatemanager.ManagedCertificate) interface{} {
+	if v == nil {
+		return nil
+	}
+
+	output := make(map[string]interface{})
+
+	output["authorization_attempt_info"] = flattenCertificateManagedAuthorizationAttemptInfo(v.AuthorizationAttemptInfo)
+	output["dns_authorizations"] = v.DnsAuthorizations
+	output["domains"] = v.Domains
+	output["issuance_config"] = v.IssuanceConfig
+	output["state"] = v.State
+	output["provisioning_issue"] = flattenCertificateManagedProvisioningIssue(v.ProvisioningIssue)
+
+	return []interface{}{output}
+}
+
+func flattenCertificateManagedAuthorizationAttemptInfo(v []*certificatemanager.AuthorizationAttemptInfo) interface{} {
+	if v == nil {
+		return nil
+	}
+
+	output := make([]interface{}, 0, len(v))
+
+	for _, authorizationAttemptInfo := range v {
+		output = append(output, map[string]interface{}{
+			"details":        authorizationAttemptInfo.Details,
+			"domain":         authorizationAttemptInfo.Domain,
+			"failure_reason": authorizationAttemptInfo.FailureReason,
+			"state":          authorizationAttemptInfo.State,
+		})
+	}
+
+	return output
+}
+
+func flattenCertificateManagedProvisioningIssue(v *certificatemanager.ProvisioningIssue) interface{} {
+	if v == nil {
+		return nil
+	}
+
+	output := make(map[string]interface{})
+
+	output["details"] = v.Details
+	output["reason"] = v.Reason
+
+	return []interface{}{output}
+}