Release/0.1.0 (#10)

* add fabric_l3_handoff_sda_transit support

* fix issue with sda_transit under border device

* fix provision fabric wireless controller

* fix provision fabric wireless controller

* fix provision fabric wireless controller

* add anycast gateway  dependency to fabric_vlan_to_ssid

* fix enable fabric in wireless_profile

* fix enable fabric in wireless_profile

* fix enable fabric in wireless_profile

* add copying_config to regular_templates deploy

* Revert "add copying_config to regular_templates deploy"

This reverts commit 7147925.

* add support for saving running config to starup config in regular templates deploy

* add support for INFRA_VN and DEFAULT_VN layer3 virtual networks

* bump up provider version

* add provision_device dependencies to sda transit network

* modified README.md

* add support for vtl and vlt extensions for velocity templates

* workaround for issue in discovery when using discovery_type Multi Range

* add wlan_profile_name attribute to ssid_details under wireless_profile

* bump up utils version

* fixes in pnp

* fixes in pnp

* add assign state for assigning device to site without provisioning

* fix l3_handoff dependency

* Revert "fix l3_handoff dependency"

This reverts commit 9150268.

* add time.sleep for destroy on assign_device_to-site

* modified dependency between assign_to_site and provision

* refactor code

* BREAKING CHANGE: Add support to update authentication_template settings globally and on fabric site level

* add fabric_zone and support for same l3_vn under multiple anycast_gateways

* add catalystcenter_aaa_settings.aaa_servers depdendency to catalystcenter_fabric_site

* fix fabric_zone for edge_device

* add fabric_zone to port_assignment

* fix dependency on sda tansit

* tie version to provider 0.2.9

* use new version of wireless_rf_profile

* update examples to use 0.1.0 module version

* fix linting

* fix issue with ssid to vlan mapping in fabric

* Fix wireless ssid radio type mapping to match API response

* simplify rule to check if device is border

* add cli_creds dependencies to discovery

* minor fix in wireless_rf_profile

* add support for assigning tag to device

---------

Co-authored-by: rafal-slominski <rslominski@gmail.com>

Author: kuba-mazurkiewicz

CHANGELOG.md

@@ -1,3 +1,19 @@
+## 0.1.0 (unreleased)
+
+- Add support for assigning tag to device
+- Add support for `CORE` and `DISTRIBUTION` role
+- Fix wireless ssid radio type mapping to match API response
+- Fix issue with ssid to vlan mapping in fabric
+- Add support for same `l3_virtual_network` under multiple `anycast_gateways`
+- Add `fabric_zone` support and adding `l3_virtual_networks` under fabric zone
+- BREAKING CHANGE: Add support to update `authentication_template` settings globally and on fabric site level
+- Add `ASSIGN` state for assigning device to site without provisioning
+- Fix pnp issue when adding multiple devices
+- Add support for `.vtl` and `.vlt` extensions for velocity templates
+- Add support for `INFRA_VN` and `DEFAULT_VN` layer3 virtual networks
+- Add support for saving running config to startup config while deploying regular templates
+- Fix issue with anycast_gateway dependencies to fabric_vlan_to_ssid
+
 ## 0.0.4-beta1
 
 - BREAKING CHANGE: Fix issue with assigning the same VLAN to different anycast gateways from different fabric sites

README.md

@@ -27,7 +27,7 @@ catalyst_center:
 ```hcl
 module "catalystcenter" {
   source  = "netascode/nac-catalystcenter/catalystcenter"
-  version = "0.0.4-beta1"
+  version = "0.1.0"
 
   yaml_files = ["area.yaml"]
 }
@@ -38,10 +38,10 @@ module "catalystcenter" {
 | Name | Version |
 |------|---------|
 | <a name="requirement_terraform"></a> [terraform](#requirement\_terraform) | >= 1.8.0 |
-| <a name="requirement_catalystcenter"></a> [catalystcenter](#requirement\_catalystcenter) | >= 0.2.6, < 0.2.10 |
+| <a name="requirement_catalystcenter"></a> [catalystcenter](#requirement\_catalystcenter) | >= 0.2.10 |
 | <a name="requirement_local"></a> [local](#requirement\_local) | >= 2.3.0 |
 | <a name="requirement_time"></a> [time](#requirement\_time) | >= 0.12.1 |
-| <a name="requirement_utils"></a> [utils](#requirement\_utils) | >= 0.2.6 |
+| <a name="requirement_utils"></a> [utils](#requirement\_utils) | >= 1.0.0 |
 ## Inputs
 
 | Name | Description | Type | Default | Required |
@@ -67,6 +67,8 @@ module "catalystcenter" {
 | [catalystcenter_area.area_1](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/area) | resource |
 | [catalystcenter_area.area_2](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/area) | resource |
 | [catalystcenter_assign_credentials.assign_credentials](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/assign_credentials) | resource |
+| [catalystcenter_assign_device_to_site.devices_to_site](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/assign_device_to_site) | resource |
+| [catalystcenter_assign_devices_to_tag.device_to_tag](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/assign_devices_to_tag) | resource |
 | [catalystcenter_assign_templates_to_tag.template_to_tag](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/assign_templates_to_tag) | resource |
 | [catalystcenter_associate_site_to_network_profile.site_to_network_profile](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/associate_site_to_network_profile) | resource |
 | [catalystcenter_associate_site_to_network_profile.site_to_wireless_network_profile](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/associate_site_to_network_profile) | resource |
@@ -91,13 +93,15 @@ module "catalystcenter" {
 | [catalystcenter_fabric_l2_handoff.l2_handoff_no_anycast](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/fabric_l2_handoff) | resource |
 | [catalystcenter_fabric_l2_virtual_network.l2_vn](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/fabric_l2_virtual_network) | resource |
 | [catalystcenter_fabric_l3_handoff_ip_transit.l3_handoff_ip_transit](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/fabric_l3_handoff_ip_transit) | resource |
+| [catalystcenter_fabric_l3_handoff_sda_transit.sda_transit](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/fabric_l3_handoff_sda_transit) | resource |
 | [catalystcenter_fabric_l3_virtual_network.l3_vn](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/fabric_l3_virtual_network) | resource |
 | [catalystcenter_fabric_port_assignments.port_assignments](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/fabric_port_assignments) | resource |
 | [catalystcenter_fabric_provision_device.border_device](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/fabric_provision_device) | resource |
 | [catalystcenter_fabric_provision_device.edge_device](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/fabric_provision_device) | resource |
 | [catalystcenter_fabric_provision_device.non_fabric_device](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/fabric_provision_device) | resource |
 | [catalystcenter_fabric_site.fabric_site](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/fabric_site) | resource |
 | [catalystcenter_fabric_vlan_to_ssid.vlan_to_ssid](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/fabric_vlan_to_ssid) | resource |
+| [catalystcenter_fabric_zone.fabric_zone](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/fabric_zone) | resource |
 | [catalystcenter_floor.floor](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/floor) | resource |
 | [catalystcenter_ip_pool.ip_pool_v4](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/ip_pool) | resource |
 | [catalystcenter_ip_pool.ip_pool_v6](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/ip_pool) | resource |
@@ -107,8 +111,8 @@ module "catalystcenter" {
 | [catalystcenter_network_profile.switching_network_profile](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/network_profile) | resource |
 | [catalystcenter_ntp_settings.ntp_servers](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/ntp_settings) | resource |
 | [catalystcenter_pnp_config_preview.config_preview](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/pnp_config_preview) | resource |
+| [catalystcenter_pnp_device.pnp_device](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/pnp_device) | resource |
 | [catalystcenter_pnp_device_claim_site.claim_device](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/pnp_device_claim_site) | resource |
-| [catalystcenter_pnp_import_devices.pnp_devices](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/pnp_import_devices) | resource |
 | [catalystcenter_project.project](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/project) | resource |
 | [catalystcenter_tag.tag](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/tag) | resource |
 | [catalystcenter_telemetry_settings.telemetry_settings](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/telemetry_settings) | resource |
@@ -118,6 +122,10 @@ module "catalystcenter" {
 | [catalystcenter_template_version.regular_commit_version](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/template_version) | resource |
 | [catalystcenter_timezone_settings.timezone](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/timezone_settings) | resource |
 | [catalystcenter_transit_network.transit](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/transit_network) | resource |
+| [catalystcenter_update_authentication_profile.closed_authentication](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/update_authentication_profile) | resource |
+| [catalystcenter_update_authentication_profile.global_authentication_template](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/update_authentication_profile) | resource |
+| [catalystcenter_update_authentication_profile.low_impact](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/update_authentication_profile) | resource |
+| [catalystcenter_update_authentication_profile.open_authentication](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/update_authentication_profile) | resource |
 | [catalystcenter_wireless_device_provision.wireless_controller](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/wireless_device_provision) | resource |
 | [catalystcenter_wireless_profile.wireless_profile](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/wireless_profile) | resource |
 | [catalystcenter_wireless_rf_profile.rf_profile](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/resources/wireless_rf_profile) | resource |
@@ -129,7 +137,6 @@ module "catalystcenter" {
 | [catalystcenter_area.global](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/data-sources/area) | data source |
 | [catalystcenter_credentials_cli.cli_credentials](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/data-sources/credentials_cli) | data source |
 | [catalystcenter_network_devices.all_devices](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/data-sources/network_devices) | data source |
-| [catalystcenter_pnp_device.pnp_device](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/data-sources/pnp_device) | data source |
 | [catalystcenter_project.onboarding](https://registry.terraform.io/providers/CiscoDevNet/catalystcenter/latest/docs/data-sources/project) | data source |
 ## Modules
 

cc_authentication_templates.tf

@@ -0,0 +1,68 @@
+resource "catalystcenter_update_authentication_profile" "global_authentication_template" {
+  for_each = { for template in try(local.catalyst_center.authentication_templates, []) : template.name => template }
+
+  authentication_profile_name   = each.value.name
+  authentication_order          = try(each.value.authentication_order, local.defaults.catalyst_center.authentication_templates.authentication_order, null)
+  dot1x_to_mab_fallback_timeout = try(each.value.dot1x_to_mab_fallback_timeout, local.defaults.catalyst_center.authentication_templates.dot1x_to_mab_fallback_timeout, null)
+  wake_on_lan                   = try(each.value.wake_on_lan, local.defaults.catalyst_center.authentication_templates.wake_on_lan, null)
+  number_of_hosts               = try(each.value.number_of_hosts, local.defaults.catalyst_center.authentication_templates.number_of_hosts, null)
+  is_bpdu_guard_enabled         = each.value.name == "Closed Authentication" ? try(each.value.bpdu_guard, local.defaults.catalyst_center.authentication_templates.bpdu_guard, null) : null
+  pre_auth_acl_enabled          = each.value.name == "Low Impact" ? try(each.value.pre_auth_acl.enabled, local.defaults.catalyst_center.authentication_templates.pre_auth_acl.enabled, null) : null
+  pre_auth_acl_description      = each.value.name == "Low Impact" ? try(each.value.pre_auth_acl.description, local.defaults.catalyst_center.authentication_templates.pre_auth_acl.description, null) : null
+  pre_auth_acl_implicit_action  = each.value.name == "Low Impact" ? try(each.value.pre_auth_acl.implicit_action, local.defaults.catalyst_center.authentication_templates.pre_auth_acl.implicit_action, null) : null
+  pre_auth_acl_access_contracts = each.value.name == "Low Impact" ? try([for contract in each.value.pre_auth_acl.access_contracts : {
+    "action" : contract.action,
+    "port" : contract.port,
+    "protocol" : contract.protocol
+  }], local.defaults.catalyst_center.authentication_templates.pre_auth_acl.access_contracts, null) : null
+
+  lifecycle {
+    ignore_changes = [pre_auth_acl_description]
+  }
+}
+
+resource "catalystcenter_update_authentication_profile" "low_impact" {
+  for_each = { for fabric_site in try(local.catalyst_center.fabric.fabric_sites, []) : fabric_site.name => fabric_site if fabric_site.authentication_template.name == "Low Impact" }
+
+  fabric_id                     = try(local.fabric_site_id_list[each.key], null)
+  authentication_profile_name   = "Low Impact"
+  authentication_order          = try(each.value.authentication_template.authentication_order, local.defaults.catalyst_center.authentication_templates.authentication_order, null)
+  dot1x_to_mab_fallback_timeout = try(each.value.authentication_template.dot1x_to_mab_fallback_timeout, local.defaults.catalyst_center.authentication_templates.dot1x_to_mab_fallback_timeout, null)
+  wake_on_lan                   = try(each.value.authentication_template.wake_on_lan, local.defaults.catalyst_center.authentication_templates.wake_on_lan, null)
+  number_of_hosts               = try(each.value.authentication_template.number_of_hosts, local.defaults.catalyst_center.authentication_templates.number_of_hosts, null)
+  pre_auth_acl_enabled          = each.value.authentication_template.name == "Low Impact" ? try(each.value.authentication_template.pre_auth_acl.enabled, local.defaults.catalyst_center.authentication_templates.pre_auth_acl.enabled, null) : null
+  pre_auth_acl_description      = each.value.authentication_template.name == "Low Impact" ? try(each.value.authentication_template.pre_auth_acl.description, local.defaults.catalyst_center.authentication_templates.pre_auth_acl.description, null) : null
+  pre_auth_acl_implicit_action  = each.value.authentication_template.name == "Low Impact" ? try(each.value.authentication_template.pre_auth_acl.implicit_action, local.defaults.catalyst_center.authentication_templates.pre_auth_acl.implicit_action, null) : null
+  pre_auth_acl_access_contracts = each.value.authentication_template.name == "Low Impact" ? try([for contract in each.value.authentication_template.pre_auth_acl.access_contracts : {
+    "action" : contract.action,
+    "port" : contract.port,
+    "protocol" : contract.protocol
+  }], local.defaults.catalyst_center.authentication_templates.pre_auth_acl.access_contracts, null) : null
+
+  lifecycle {
+    ignore_changes = [pre_auth_acl_description]
+  }
+}
+
+resource "catalystcenter_update_authentication_profile" "open_authentication" {
+  for_each = { for fabric_site in try(local.catalyst_center.fabric.fabric_sites, []) : fabric_site.name => fabric_site if fabric_site.authentication_template.name == "Open Authentication" }
+
+  fabric_id                     = try(local.fabric_site_id_list[each.key], null)
+  authentication_profile_name   = "Open Authentication"
+  authentication_order          = try(each.value.authentication_template.authentication_order, local.defaults.catalyst_center.authentication_templates.authentication_order, null)
+  dot1x_to_mab_fallback_timeout = try(each.value.authentication_template.dot1x_to_mab_fallback_timeout, local.defaults.catalyst_center.authentication_templates.dot1x_to_mab_fallback_timeout, null)
+  wake_on_lan                   = try(each.value.authentication_template.wake_on_lan, local.defaults.catalyst_center.authentication_templates.wake_on_lan, null)
+  number_of_hosts               = try(each.value.authentication_template.number_of_hosts, local.defaults.catalyst_center.authentication_templates.number_of_hosts, null)
+}
+
+resource "catalystcenter_update_authentication_profile" "closed_authentication" {
+  for_each = { for fabric_site in try(local.catalyst_center.fabric.fabric_sites, []) : fabric_site.name => fabric_site if fabric_site.authentication_template.name == "Closed Authentication" }
+
+  fabric_id                     = try(local.fabric_site_id_list[each.key], null)
+  authentication_profile_name   = "Closed Authentication"
+  authentication_order          = try(each.value.authentication_template.authentication_order, local.defaults.catalyst_center.authentication_templates.authentication_order, null)
+  dot1x_to_mab_fallback_timeout = try(each.value.authentication_template.dot1x_to_mab_fallback_timeout, local.defaults.catalyst_center.authentication_templates.dot1x_to_mab_fallback_timeout, null)
+  wake_on_lan                   = try(each.value.authentication_template.wake_on_lan, local.defaults.catalyst_center.authentication_templates.wake_on_lan, null)
+  number_of_hosts               = try(each.value.authentication_template.number_of_hosts, local.defaults.catalyst_center.authentication_templates.number_of_hosts, null)
+  is_bpdu_guard_enabled         = try(each.value.authentication_template.bpdu_guard, local.defaults.catalyst_center.authentication_templates.bpdu_guard, null)
+}