daryl-d/terraform-provider-cassandra

It will provide the following features with respect to CQL 3.0.0 specManage Keyspace(s)Manage Role(s)Managing GrantsInitialising the providerprovider "cassandra" { username = "cluster_username" password = "cluster_password" port = "9042" hosts = [ "localhost" ]}ConfigurationusernameCassandra client username.passwordCassandra client password.portCassandra client port. Default value is 9042hostsArray of hosts pointing to nodes in the cassandra clusterconnection_timeoutConnection timeout to the cluster in milliseconds. Default value is 1000root_caOptional value, only used if you are connecting to cluster using certificates.use_sslOptional value, it is false by default. Only turned on when connecting to cluster with sslmin_tls_versionDefault value is TLS1.2. It is only applicable when use_ssl is trueprotocol_versionThe cql protocol binary version. Defaults to 4ResourcesCreating a Keyspacelocals { stategy_options = { replication_factor = 1 }}resource "cassandra_keyspace" "keyspace" { name = "some_keyspace_name" replication_strategy = "SimpleStrategy" strategy_options = "${local.strategy_options}"}Parametersnamename of the keyspace, must be between 1 and 48 characters.replication_strategyname of the replication strategy, only the built in replication strategies are supported. That is either SimpleStrategy or NetworkTopologyStrategystrategy_optionsA map containing any extra options that are required by the selected replication strategy.For simple strategy, replication_factor must be passed. While for network topology strategy must contain keys which corresspond to the data center names and values which match their desired replication factordurable_writesEnables or disables durable writes. The default value is true. It is not reccomend to turn this off.Creating a roleresource "cassandra_role" "role" { name = "app_user" password = "sup3rS3cr3tPa$$w0rd123343434345454545454"}ParametersnameName of the role. Must contain between 1 and 256 characters.super_userAllow role to create and manage other roles. It is false by defaultloginEnables role to be able to login. It defaults to truepasswordPassword for user when using cassandra internal authentication.It is required. It has the restriction of being between 40 and 512 characters.Creating a Grantresource "cassandra_grant" "all_access_to_keyspace" { privilege = "all" resource_type = "keyspace" keyspace_name = "test" grantee = "migration"}ParametersprivilegeType of access we are granting against a resourceOne of either all, create, alter, drop, select, modify, authorize, describe and executeSee official cassandra docs for more informationgranteeThe name of the cassandra role which we are granting privileges toresource_typeEnables one to qualify/restrict the grant to a particular resource(s)This can take any of the following valuesall functionsall functions in keyspacefunctionall keyspaceskeyspacetableall rolesrolerolesmbeanmbeansall mbeansFor more info please see official docskeyspace_namekeyspace qualifier to the resource, only applicable when resource_type takes the following valuesall functions in keyspacefunctionkeyspacetablefunction_nameRepresents name of the function we are granting access to. Its only applicable when resource_type is functiontable_nameRepresents name of the table we are granting access to. Its only applicable when resource_type is tablerole_namerepresents name of the role we are granting access to. Only applicable for resource_type is rolembean_nameRepresents name of the mbean we are granting access to. Only applicable for resource_type is mbeanmbean_patternRepresents a pattern, which will grant access to all mbeans which satisfy this pattern. Only works when resource_type is mbeans