chore(examples/coc): adjust script_order_operation script

Author: wuzhuanhong

examples/coc/script_order_operation/README.md

@@ -1,3 +1,127 @@
-# Execute COC script
+# Execute COC script order operation
 
-In this example, we will operate a COC script.
+This example provides best practice code for using Terraform to create and operate a COC script in HuaweiCloud.
+
+## Prerequisites
+
+* A HuaweiCloud account
+* Terraform installed
+* HuaweiCloud access key and secret key (AK/SK)
+
+## Required Variables
+
+The following variables need to be configured:
+
+### Authentication Variables
+
+* `access_key` - HuaweiCloud access key
+* `secret_key` - HuaweiCloud secret key
+* `region_name` - The region where resources will be created
+
+### Resource Variables
+
+* `enterprise_project_id` - The ID of the enterprise project
+* `vpc_name` - The name of the VPC
+* `vpc_cidr` - The CIDR block of the VPC
+* `subnet_name` - The name of the subnet
+* `security_group_name` - The name of the security group
+* `ecs_instance_name` - The name of the ECS instance
+* `ecs_instance_user_data` - The user data for installing UniAgent on the ECS instance
+* `coc_script_name` - The name of the COC script
+* `coc_script_description` - The description of the script
+* `coc_script_risk_level` - The risk level of the script
+* `coc_script_version` - The version of the script
+* `coc_script_type` - The type of the script
+* `coc_script_content` - The content of the script
+* `coc_script_parameters` - The parameter list of the script
+  - `name` - The name of the parameter
+  - `value` - The value of the parameter
+  - `description` - The description of the parameter
+  - `sensitive` - Whether the parameter is sensitive
+* `coc_script_execute_timeout` - The maximum time to execute the script in seconds
+* `coc_script_execute_user` - The user to execute the script
+* `coc_script_execute_parameters` - The parameter list of the script execution
+  - `name` - The name of the parameter
+  - `value` - The value of the parameter
+* `coc_script_order_operation_batch_index` - The batch index for the script order
+* `coc_script_order_operation_instance_id` - The instance ID for the script order
+* `coc_script_order_operation_type` - The operation type for the script order
+
+## Usage
+
+* Create a working directory and create a `versions.tf` file, the content is as follows:
+
+```hcl
+terraform {
+  required_providers {
+    huaweicloud = {
+      source  = "huaweicloud/huaweicloud"
+      version = ">=1.75.0"
+    }
+  }
+}
+```
+
+* Copy this example scripts (`main.tf` and `variables.tf`) to your working directory.
+
+* Prepare the authentication (AK/SK and region) and configured in the TF script (versions.tf), also you can using
+  environment variables.
+
+```hcl
+provider "huaweicloud" {
+  region     = var.region_name
+  access_key = var.access_key
+  secret_key = var.secret_key
+}
+
+variable "region_name" {
+  type = string
+}
+
+variable "access_key" {
+  type = string
+}
+
+variable "secret_key" {
+  type = string
+}
+```
+
+* Create a `terraform.tfvars` file and fill in the required variables.
+
+* Initialize Terraform:
+
+  ```bash
+  $ terraform init
+  ```
+
+* Review the Terraform plan:
+
+  ```bash
+  $ terraform plan
+  ```
+
+* Apply the configuration:
+
+  ```bash
+  $ terraform apply
+  ```
+
+* To clean up the resources:
+
+  ```bash
+  $ terraform destroy
+  ```
+
+## Note
+
+* Make sure to keep your credentials secure and never commit them to version control.
+* The ECS instance needs to have UniAgent installed for script execution.
+* All resources will be created in the specified region.
+
+## Requirements
+
+| Name | Version |
+|------|---------|
+| terraform | >= 0.12.0 |
+| huaweicloud | >= 1.75.0 |

examples/coc/script_order_operation/main.tf

@@ -1,41 +1,95 @@
 resource "huaweicloud_coc_script" "test" {
-  name        = var.script_name
-  description = "coc script description"
-  risk_level  = "LOW"
-  version     = "1.0.0"
-  type        = "SHELL"
-
-  content = <<EOF
-#! /bin/bash
-echo "hello world!"
-EOF
-
-  parameters {
-    name        = "name"
-    value       = "world"
-    description = "the parameter"
+  name        = var.coc_script_name
+  description = var.coc_script_description
+  risk_level  = var.coc_script_risk_level
+  version     = var.coc_script_version
+  type        = var.coc_script_type
+  content     = var.coc_script_content
+
+  dynamic "parameters" {
+    for_each = var.coc_script_parameters
+
+    content {
+      name        = parameters.value.name
+      value       = parameters.value.value
+      description = parameters.value.description
+      sensitive   = parameters.value.sensitive
+    }
+  }
+}
+
+data "huaweicloud_availability_zones" "test" {}
+
+data "huaweicloud_compute_flavors" "test" {
+  availability_zone = try(data.huaweicloud_availability_zones.test.names[0], "")
+  performance_type  = "normal"
+  cpu_core_count    = 2
+  memory_size       = 4
+}
+
+resource "huaweicloud_vpc" "test" {
+  name                  = var.vpc_name
+  cidr                  = var.vpc_cidr
+  enterprise_project_id = var.enterprise_project_id
+}
+
+resource "huaweicloud_vpc_subnet" "test" {
+  vpc_id            = huaweicloud_vpc.test.id
+  availability_zone = try(data.huaweicloud_availability_zones.test.names[0], "")
+  name              = var.subnet_name
+  cidr              = cidrsubnet(huaweicloud_vpc.test.cidr, 8, 0)
+  gateway_ip        = cidrhost(cidrsubnet(huaweicloud_vpc.test.cidr, 8, 0), 1)
+}
+
+data "huaweicloud_images_images" "test" {
+  flavor_id  = try(data.huaweicloud_compute_flavors.test.ids[0], "")
+  os         = "Ubuntu"
+  visibility = "public"
+}
+
+# The default security group rules cannot be deleted, otherwise the UniAgent installation will fail.
+resource "huaweicloud_networking_secgroup" "test" {
+  name = var.security_group_name
+}
+
+# Create an ECS instance and install UniAgent
+resource "huaweicloud_compute_instance" "test" {
+  name                  = var.ecs_instance_name
+  availability_zone     = try(data.huaweicloud_availability_zones.test.names[0], "")
+  flavor_id             = try(data.huaweicloud_compute_flavors.test.flavors[0].id, "")
+  image_id              = try(data.huaweicloud_images_images.test.images[0].id, "")
+  security_group_ids    = [huaweicloud_networking_secgroup.test.id]
+  user_data             = var.ecs_instance_user_data
+  enterprise_project_id = var.enterprise_project_id
+
+  network {
+    uuid = huaweicloud_vpc_subnet.test.id
   }
 }
 
 resource "huaweicloud_coc_script_execute" "test" {
   script_id    = huaweicloud_coc_script.test.id
-  instance_id  = var.script_execute_name
-  timeout      = 600
-  execute_user = "root"
+  instance_id  = huaweicloud_compute_instance.test.id
+  timeout      = var.coc_script_execute_timeout
+  execute_user = var.coc_script_execute_user
 
-  parameters {
-    name  = "name"
-    value = "somebody"
+  dynamic "parameters" {
+    for_each = var.coc_script_execute_parameters
+
+    content {
+      name  = parameters.value.name
+      value = parameters.value.value
+    }
   }
-  parameters {
-    name  = "company"
-    value = "HuaweiCloud"
+
+  timeouts {
+    create = "1m"
   }
 }
 
 resource "huaweicloud_coc_script_order_operation" "test" {
   execute_uuid   = huaweicloud_coc_script_execute.test.id
-  batch_index    = 1
-  instance_id    = 1
-  operation_type = var.operation_type
+  batch_index    = var.coc_script_order_operation_batch_index
+  instance_id    = var.coc_script_order_operation_instance_id
+  operation_type = var.coc_script_order_operation_type
 }

examples/coc/script_order_operation/terraform.tfvars

@@ -0,0 +1,46 @@
+# Enterprise Project
+enterprise_project_id = "0"
+
+# VPC
+vpc_name               = "tf_test_vpc"
+vpc_cidr               = "192.168.0.0/16"
+subnet_name            = "tf_test_subnet"
+security_group_name    = "tf_test_secgroup"
+ecs_instance_name      = "tf_test_coc_script_execute"
+ecs_instance_user_data = "your_user_data" # Please replace it with the command you actually used to install icagent
+
+# COC
+coc_script_name        = "tf_coc_script_demo"
+coc_script_description = "Created by terraform script"
+coc_script_risk_level  = "LOW"
+coc_script_version     = "1.0.0"
+coc_script_type        = "SHELL"
+coc_script_content     = <<EOF
+#! /bin/bash
+echo "hello $${name}!"
+sleep 2m
+EOF
+coc_script_parameters = [
+  {
+    name        = "name"
+    value       = "world"
+    description = "the parameter"
+  },
+  {
+    name        = "company"
+    value       = "Terraform"
+    description = "the second parameter"
+    sensitive   = true
+  }
+]
+coc_script_execute_timeout = 600
+coc_script_execute_user    = "root"
+coc_script_execute_parameters = [
+  {
+    name  = "name"
+    value = "somebody"
+  }
+]
+coc_script_order_operation_batch_index = 1
+coc_script_order_operation_instance_id = 1
+coc_script_order_operation_type        = "CANCEL_ORDER"