update: add support for nat from normal to enhanced

Author: zhengjc2018

.python-version

@@ -0,0 +1 @@
+3.6.5

alicloud/resource_alicloud_nat_gateway.go

@@ -59,14 +59,12 @@ func resourceAliyunNatGateway() *schema.Resource {
 			"nat_type": {
 				Type:         schema.TypeString,
 				Optional:     true,
-				ForceNew:     true,
 				ValidateFunc: validation.StringInSlice([]string{"Normal", "Enhanced"}, false),
 				Default:      "Normal",
 			},
 			"vswitch_id": {
 				Type:     schema.TypeString,
 				Optional: true,
-				ForceNew: true,
 			},
 			"bandwidth_package_ids": {
 				Type:     schema.TypeString,
@@ -262,7 +260,6 @@ func resourceAliyunNatGatewayUpdate(d *schema.ResourceData, meta interface{}) er
 	modifyNatGatewayAttributeRequest.NatGatewayId = natGateway.NatGatewayId
 
 	if d.HasChange("name") {
-		d.SetPartial("name")
 		var name string
 		if v, ok := d.GetOk("name"); ok {
 			name = v.(string)
@@ -272,10 +269,10 @@ func resourceAliyunNatGatewayUpdate(d *schema.ResourceData, meta interface{}) er
 		modifyNatGatewayAttributeRequest.Name = name
 
 		attributeUpdate = true
+		d.SetPartial("name")
 	}
 
 	if d.HasChange("description") {
-		d.SetPartial("description")
 		var description string
 		if v, ok := d.GetOk("description"); ok {
 			description = v.(string)
@@ -286,6 +283,7 @@ func resourceAliyunNatGatewayUpdate(d *schema.ResourceData, meta interface{}) er
 		modifyNatGatewayAttributeRequest.Description = description
 
 		attributeUpdate = true
+		d.SetPartial("description")
 	}
 
 	if attributeUpdate {
@@ -299,7 +297,6 @@ func resourceAliyunNatGatewayUpdate(d *schema.ResourceData, meta interface{}) er
 	}
 
 	if d.HasChange("specification") {
-		d.SetPartial("specification")
 		modifyNatGatewaySpecRequest := vpc.CreateModifyNatGatewaySpecRequest()
 		modifyNatGatewaySpecRequest.RegionId = natGateway.RegionId
 		modifyNatGatewaySpecRequest.NatGatewayId = natGateway.NatGatewayId
@@ -312,7 +309,59 @@ func resourceAliyunNatGatewayUpdate(d *schema.ResourceData, meta interface{}) er
 			return WrapErrorf(err, DefaultErrorMsg, d.Id(), modifyNatGatewaySpecRequest.GetActionName(), AlibabaCloudSdkGoERROR)
 		}
 		addDebug(modifyNatGatewaySpecRequest.GetActionName(), raw, modifyNatGatewaySpecRequest.RpcRequest, modifyNatGatewaySpecRequest)
+		d.SetPartial("specification")
 	}
+
+	if d.HasChange("nat_type") {
+		vv := d.Get("nat_type").(string)
+		if vv == "Enhanced" {
+			action := "UpdateNatGatewayNatType"
+			request := map[string]interface{}{
+				"RegionId":     client.RegionId,
+				"NatGatewayId": d.Id(),
+				"NatType":      vv,
+			}
+
+			if vswId := d.Get("vswitch_id").(string); vswId != "" {
+				request["VSwitchId"] = vswId
+			}
+			request["ClientToken"] = buildClientToken("UpdateNatGatewayNatType")
+
+			conn, err := meta.(*connectivity.AliyunClient).NewVpcClient()
+			if err != nil {
+				return WrapError(err)
+			}
+			// If the API supports
+			runtime := util.RuntimeOptions{}
+			runtime.SetAutoretry(true)
+
+			wait := incrementalWait(2*time.Second, 1*time.Second)
+			err1 := resource.Retry(3*time.Minute, func() *resource.RetryError {
+				response, err2 := conn.DoRequest(StringPointer(action), nil, StringPointer("POST"), StringPointer("2016-04-28"), StringPointer("AK"), nil, request, &runtime)
+				addDebug(action, response, request)
+				if err2 != nil {
+					if IsExpectedErrors(err2, []string{"TaskConflict", "UnknownError", Throttling, "OperationFailed.NatGwRouteInMiddleStatus"}) {
+						wait()
+						return resource.RetryableError(err2)
+					}
+					return resource.NonRetryableError(err2)
+				}
+				addDebug(action, response, request)
+				return nil
+			})
+			if err1 != nil {
+				return WrapErrorf(err1, DefaultErrorMsg, "alicloud_nat_transform_to_enhanced", action, AlibabaCloudSdkGoERROR)
+			}
+			if err3 := vpcService.WaitForNatGatewayTransform(d.Id(), DefaultTimeout*5); err3 != nil {
+				return WrapError(err3)
+			}
+		} else {
+			return WrapError(Error("You should set natType from Normal to Enhanced"))
+		}
+		d.SetPartial("vswitch_id")
+		d.SetPartial("nat_type")
+	}
+
 	d.Partial(false)
 	if err := vpcService.WaitForNatGateway(d.Id(), Available, DefaultTimeout); err != nil {
 		return WrapError(err)

alicloud/resource_alicloud_nat_gateway_test.go

@@ -246,6 +246,56 @@ func TestAccAlicloudNatGatewayEnhanced(t *testing.T) {
 	})
 }
 
+func TestAccAlicloudNatGatewayTransform(t *testing.T) {
+	var v vpc.NatGateway
+	resourceId := "alicloud_nat_gateway.main"
+	ra := resourceAttrInit(resourceId, testAccCheckNatGatewayBasicMap)
+	serviceFunc := func() interface{} {
+		return &VpcService{testAccProvider.Meta().(*connectivity.AliyunClient)}
+	}
+	rc := resourceCheckInit(resourceId, &v, serviceFunc)
+	rac := resourceAttrCheckInit(rc, ra)
+
+	rand := acctest.RandInt()
+	testAccCheck := rac.resourceAttrMapUpdateSet()
+
+	resource.Test(t, resource.TestCase{
+		PreCheck: func() {
+			testAccPreCheck(t)
+		},
+
+		// module name
+		IDRefreshName: resourceId,
+		Providers:     testAccProviders,
+		CheckDestroy:  testAccCheckNatGatewayDestroy,
+		Steps: []resource.TestStep{
+			{
+				Config: testAccNatGatewayConfig_transform_to_enhanced(rand, "Normal", ""),
+				Check: resource.ComposeTestCheckFunc(
+					testAccCheck(map[string]string{
+						"name":               CHECKSET,
+					}),
+				),
+			},
+			{
+				ResourceName:            resourceId,
+				ImportState:             true,
+				ImportStateVerify:       true,
+				ImportStateVerifyIgnore: []string{"period"},
+			},
+			{
+				Config: testAccNatGatewayConfig_transform_to_enhanced(rand, "Enhanced", "${alicloud_vswitch.foo1.id}"),
+				Check: resource.ComposeTestCheckFunc(
+					testAccCheck(map[string]string{
+						"nat_type":           "Enhanced",
+						"vswitch_id":         CHECKSET,
+					}),
+				),
+			},
+		},
+	})
+}
+
 func testAccNatGatewayConfigBasic(rand int) string {
 	return fmt.Sprintf(
 		`
@@ -466,6 +516,44 @@ resource "alicloud_nat_gateway" "default" {
 `, rand)
 }
 
+func testAccNatGatewayConfig_transform_to_enhanced(rand int, natType string, vswitchId string) string {
+	return fmt.Sprintf(
+		`
+variable "name" {
+	default = "tf-testAccNatGatewayTransformConfig%d"
+}
+
+variable "nat_type" {
+	default = "%s"
+}
+
+data "alicloud_enhanced_nat_available_zones" "enhanced" {
+}
+
+resource "alicloud_vpc" "foo" {
+  name       = var.name
+  cidr_block = "10.0.0.0/8"
+}
+
+resource "alicloud_vswitch" "foo1" {
+  depends_on        = [alicloud_vpc.foo]
+  name              = var.name
+  availability_zone = data.alicloud_enhanced_nat_available_zones.enhanced.zones[1].zone_id
+  cidr_block        = "10.10.0.0/20"
+  vpc_id            = alicloud_vpc.foo.id
+}
+
+resource "alicloud_nat_gateway" "main" {
+  depends_on           = [alicloud_vpc.foo, alicloud_vswitch.foo1]
+  vpc_id               = alicloud_vpc.foo.id
+  specification        = "Small"
+  name                 = var.name
+  nat_type             = var.nat_type
+  vswitch_id           = "%s"
+}
+`, rand, natType, vswitchId)
+}
+
 var testAccCheckNatGatewayBasicMap = map[string]string{
 	"name":                  "tf-testAccNatGatewayConfigSpec",
 	"specification":         "Small",

alicloud/service_alicloud_vpc.go

@@ -1347,6 +1347,81 @@ func (s *VpcService) setInstanceSecondaryCidrBlocks(d *schema.ResourceData) erro
 		}
 		d.SetPartial("secondary_cidr_blocks")
 	}
+	return nil
+}
+
+func (s *VpcService) DescribeNatGatewayTransform(id string) ([]interface{}, error) {
+	conn, err := s.client.NewVpcClient()
+	if err != nil {
+		return nil, WrapError(err)
+	}
+
+	action := "GetNatGatewayConvertStatus"
+	request := map[string]interface{}{
+		"RegionId":     s.client.RegionId,
+		"NatGatewayId": id,
+	}
+	request["ClientToken"] = buildClientToken("GetNatGatewayConvertStatus")
+
+	runtime := util.RuntimeOptions{}
+	runtime.SetAutoretry(true)
+
+	response, err1 := conn.DoRequest(StringPointer(action), nil, StringPointer("POST"), StringPointer("2016-04-28"), StringPointer("AK"), nil, request, &runtime)
+	if err1 != nil {
+		if IsExpectedErrors(err1, []string{"InvalidVpcID.NotFound", "Forbidden.VpcNotFound"}) {
+			return nil, WrapErrorf(err, NotFoundMsg, AlibabaCloudSdkGoERROR)
+		}
+		return nil, WrapErrorf(err, DefaultErrorMsg, id, action, AlibabaCloudSdkGoERROR)
+	}
+	addDebug(action, response, request)
+
+	ob, err2 := jsonpath.Get("$.ConvertSteps", response)
+	if err2 != nil {
+		return nil, WrapErrorf(err2, FailedGetAttributeMsg, id, "$.ConvertSteps", response)
+	}
+
+	natType, err3 := jsonpath.Get("$.DstNatType", response)
+	if err3 != nil {
+		return nil, WrapErrorf(err3, FailedGetAttributeMsg, id, "$.DstNatType", response)
+	}
 
+	object := ob.([]interface{})
+	if len(object) < 1 || natType.(string) != "Enhanced" {
+		return nil, WrapErrorf(Error(GetNotFoundMessage("NAT", id)), NotFoundWithResponse, response)
+	}
+	return object, nil
+
+}
+
+func (s *VpcService) WaitForNatGatewayTransform(id string, timeout int64) error {
+	deadline := time.Now().Add(time.Duration(timeout) * time.Second)
+	for {
+		object, err := s.DescribeNatGatewayTransform(id)
+		if err != nil {
+			if NotFoundError(err) {
+				return err
+			}
+			if IsExpectedErrors(err, []string{"OperationFailed.NatGwRouteInMiddleStatusError"}) {
+				return nil
+			}
+			return err
+		}
+
+		isOk := false
+		for _, v := range object {
+			val := v.(map[string]interface{})
+			if val["StepName"].(string) == "end_success" && val["StepStatus"].(string) == "successful" {
+				isOk = true
+				break
+			}
+		}
+		if time.Now().After(deadline) {
+			return WrapErrorf(err, WaitTimeoutMsg, id, GetFunc(1), timeout, "", "", ProviderERROR)
+		}
+		if isOk {
+			break
+		}
+		time.Sleep(DefaultIntervalShort * time.Second)
+	}
 	return nil
 }

examples/nat-transform-to-enhanced/main.tf

@@ -0,0 +1,36 @@
+variable "name" {
+  default = "nat-transform-to-enhanced"
+}
+
+data "alicloud_enhanced_nat_available_zones" "enhanced" {
+}
+
+resource "alicloud_vpc" "foo" {
+  name       = var.name
+  cidr_block = "10.0.0.0/8"
+}
+
+resource "alicloud_vswitch" "foo" {
+  depends_on        = [alicloud_vpc.foo]
+  name              = var.name
+  availability_zone = data.alicloud_enhanced_nat_available_zones.enhanced.zones[0].zone_id
+  cidr_block        = "10.1.0.0/16"
+  vpc_id            = alicloud_vpc.foo.id
+}
+
+resource "alicloud_vswitch" "foo1" {
+  depends_on        = [alicloud_vpc.foo]
+  name              = var.name
+  availability_zone = data.alicloud_enhanced_nat_available_zones.enhanced.zones[1].zone_id
+  cidr_block        = "10.10.0.0/20"
+  vpc_id            = alicloud_vpc.foo.id
+}
+
+resource "alicloud_nat_gateway" "main" {
+  depends_on           = [alicloud_vswitch.foo, alicloud_vpc.foo,alicloud_vswitch.foo1]
+  vpc_id               = alicloud_vpc.foo.id
+  specification        = "Small"
+  name                 = var.name
+  nat_type             = "Normal"
+//  vswitch_id           = alicloud_vswitch.foo1.id
+}

website/docs/r/nat_gateway.html.markdown

@@ -18,7 +18,7 @@ If you want to add public IP, you can use resource 'alicloud_eip_association' to
 
 -> **NOTE:** From version 1.7.1, this resource has deprecated bandwidth packages.
 But, in order to manage stock bandwidth packages, version 1.13.0 re-support configuring 'bandwidth_packages'.
-
+    
 
 ## Example Usage
 
@@ -56,6 +56,39 @@ resource "alicloud_nat_gateway" "enhanced" {
 }
 ```
 
+- transform nat from Normal to Enhanced
+-> **NOTE:** You must set `nat_type` to `Enhanced` and set `vswitch_id`.
+```
+variable "name" {
+  default = "nat-transform-to-enhanced"
+}
+
+data "alicloud_enhanced_nat_available_zones" "enhanced" {
+}
+
+resource "alicloud_vpc" "foo" {
+  name       = var.name
+  cidr_block = "10.0.0.0/8"
+}
+
+resource "alicloud_vswitch" "foo1" {
+  depends_on        = [alicloud_vpc.foo]
+  name              = var.name
+  availability_zone = data.alicloud_enhanced_nat_available_zones.enhanced.zones[1].zone_id
+  cidr_block        = "10.10.0.0/20"
+  vpc_id            = alicloud_vpc.foo.id
+}
+
+resource "alicloud_nat_gateway" "main" {
+  depends_on           = [alicloud_vpc.foo,alicloud_vswitch.foo1]
+  vpc_id               = alicloud_vpc.foo.id
+  specification        = "Small"
+  name                 = var.name
+  nat_type             = "Enhanced"
+  vswitch_id           = alicloud_vswitch.foo1.id
+}
+```
+
 ## Argument Reference
 
 The following arguments are supported:
@@ -68,8 +101,8 @@ The following arguments are supported:
 * `bandwidth_packages` - (Optional) A list of bandwidth packages for the nat gatway. Only support nat gateway created before 00:00 on November 4, 2017. Available in v1.13.0+ and v1.7.1-.
 * `instance_charge_type` - (Optional, ForceNew, Available in 1.45.0+) The billing method of the nat gateway. Valid values are "PrePaid" and "PostPaid". Default to "PostPaid".
 * `period` - (Optional, ForceNew, Available in 1.45.0+) The duration that you will buy the resource, in month. It is valid when `instance_charge_type` is `PrePaid`. Default to 1. Valid values: [1-9, 12, 24, 36]. At present, the provider does not support modify "period" and you can do that via web console.
-* `nat_type` - (Optional, ForceNew, Available in 1.102.0+) The type of nat gateway. Default to `Normal`. Valid values: [`Normal`, `Enhanced`].
-* `vswitch_id` - (Optional, ForceNew, Available in 1.102.0+) The id of VSwitch.
+* `nat_type` - (Optional, Available in 1.102.0+) The type of nat gateway. Default to `Normal`. Valid values: [`Normal`, `Enhanced`].
+* `vswitch_id` - (Optional, Available in 1.102.0+) The id of VSwitch.
 
 -> **NOTE:** The `Normal` Nat Gateway has been offline and please using `Enhanced` Nat Gateway to get the better performance.