f5xc_alert_receiver Resource - terraform-provider-f5xc

f5xc_alert_receiver (Resource)

Manages new Alert Receiver object. in F5 Distributed Cloud.

~> Note For more information about this resource, please refer to the F5 XC API Documentation.

Example Usage

# Alert Receiver Resource Example
# Manages new Alert Receiver object. in F5 Distributed Cloud.

terraform {
  required_version = ">= 1.0"

  required_providers {
    f5xc = {
      source  = "f5xc-salesdemos/f5xc"
      version = ">= 0.1.0"
    }
  }
}

# Basic Alert Receiver configuration
resource "f5xc_alert_receiver" "example" {
  name      = "example-alert-receiver"
  namespace = "staging"

  labels = {
    environment = "production"
    managed_by  = "terraform"
  }

  annotations = {
    "owner" = "platform-team"
  }

  # Alert Receiver configuration
  # Slack configuration
  slack {
    url = "`https://your-slack-webhook-url"`
  }
}

Argument Reference

🔶 High Risk Operations — Some operations on this resource have high danger level. Destructive operations may require confirmation.

Minimum Configuration

Required fields:

name
namespace
receiver_choice

Example (API format):

metadata:
  name: my-alert-receiver
  namespace: system
spec:
  email:
    email_address: `alerts@example.com`

Metadata Argument Reference

• name - Required String
Name of the Alert Receiver. Must be unique within the namespace

• namespace - Required String
Namespace where the Alert Receiver will be created

• annotations - Optional Map
Annotations is an unstructured key value map stored with a resource that may be set by external tools to store and retrieve arbitrary metadata

• description - Optional String
Human readable description for the object

• disable - Optional Bool
A value of true will administratively disable the object

• labels - Optional Map
Labels is a user defined key value map that can be attached to resources for organization and filtering

Spec Argument Reference

-> One of the following: • email - Optional Block
Email Configuration
See Email below for details.

• opsgenie - Optional Block
OpsGenie configuration to send alert notifications
See Opsgenie below for details.

• pagerduty - Optional Block
PagerDuty configuration to send alert notifications
See Pagerduty below for details.

• slack - Optional Block
Slack configuration to send alert notifications
See Slack below for details.

• sms - Optional Block
SMS Configuration
See Sms below for details.

• webhook - Optional Block
Webhook configuration to send alert notifications
See Webhook below for details.

• timeouts - Optional Block
See Timeouts below for details.

Attributes Reference

In addition to all arguments above, the following attributes are exported:

• id - Optional String
Unique identifier for the resource

Email

An email block supports the following:

• email - Optional String
Email. Email ID of the user

Opsgenie

An opsgenie block supports the following:

• api_key - Optional Block
SecretType is used in an object to indicate a sensitive/confidential field
See API Key below.

• url - Optional String
URL to send API requests to

Opsgenie API Key

An api_key block (within opsgenie) supports the following:

• blindfold_secret_info - Optional Block
BlindfoldSecretInfoType specifies information about the Secret managed by F5XC Secret Management
See Blindfold Secret Info below.

• clear_secret_info - Optional Block
ClearSecretInfoType specifies information about the Secret that is not encrypted
See Clear Secret Info below.

Opsgenie API Key Blindfold Secret Info

A blindfold_secret_info block (within opsgenie.api_key) supports the following:

• decryption_provider - Optional String
Name of the Secret Management Access object that contains information about the backend Secret Management service

• location - Optional String
Location is the uri_ref. It could be in URL format for string:/// Or it could be a path if the store provider is an HTTP/HTTPS location

• store_provider - Optional String
Name of the Secret Management Access object that contains information about the store to GET encrypted bytes This field needs to be provided only if the URL scheme is not string:///

Opsgenie API Key Clear Secret Info

A clear_secret_info block (within opsgenie.api_key) supports the following:

• provider_ref - Optional String
Name of the Secret Management Access object that contains information about the store to GET encrypted bytes This field needs to be provided only if the URL scheme is not string:///

• url - Optional String
URL of the secret. Currently supported URL schemes is string:///. For string:/// scheme, Secret needs to be encoded base64 format. When asked for this secret, caller will GET Secret bytes after base64 decoding

Pagerduty

A pagerduty block supports the following:

• routing_key - Optional Block
SecretType is used in an object to indicate a sensitive/confidential field
See Routing Key below.

• url - Optional String
URL to send API requests to

Pagerduty Routing Key

A routing_key block (within pagerduty) supports the following:

• blindfold_secret_info - Optional Block
BlindfoldSecretInfoType specifies information about the Secret managed by F5XC Secret Management
See Blindfold Secret Info below.

• clear_secret_info - Optional Block
ClearSecretInfoType specifies information about the Secret that is not encrypted
See Clear Secret Info below.

Pagerduty Routing Key Blindfold Secret Info

A blindfold_secret_info block (within pagerduty.routing_key) supports the following:

• decryption_provider - Optional String
Name of the Secret Management Access object that contains information about the backend Secret Management service

• location - Optional String
Location is the uri_ref. It could be in URL format for string:/// Or it could be a path if the store provider is an HTTP/HTTPS location

Pagerduty Routing Key Clear Secret Info

A clear_secret_info block (within pagerduty.routing_key) supports the following:

Slack

A slack block supports the following:

• channel - Optional String
Channel or user to send notifications to

• url - Optional Block
SecretType is used in an object to indicate a sensitive/confidential field
See URL below.

Slack URL

An url block (within slack) supports the following:

• blindfold_secret_info - Optional Block
BlindfoldSecretInfoType specifies information about the Secret managed by F5XC Secret Management
See Blindfold Secret Info below.

• clear_secret_info - Optional Block
ClearSecretInfoType specifies information about the Secret that is not encrypted
See Clear Secret Info below.

Slack URL Blindfold Secret Info

A blindfold_secret_info block (within slack.url) supports the following:

• decryption_provider - Optional String
Name of the Secret Management Access object that contains information about the backend Secret Management service

• location - Optional String
Location is the uri_ref. It could be in URL format for string:/// Or it could be a path if the store provider is an HTTP/HTTPS location

Slack URL Clear Secret Info

A clear_secret_info block (within slack.url) supports the following:

Sms

A sms block supports the following:

• contact_number - Optional String
Contact number of the user in ITU E.164 format [+][country code][subscriber number including area code]

Timeouts

A timeouts block supports the following:

• create - Optional String (Defaults to 10 minutes)
Used when creating the resource

• delete - Optional String (Defaults to 10 minutes)
Used when deleting the resource

• read - Optional String (Defaults to 5 minutes)
Used when retrieving the resource

• update - Optional String (Defaults to 10 minutes)
Used when updating the resource

Webhook

A webhook block supports the following:

• http_config - Optional Block
HTTP Configuration. Configuration for HTTP endpoint
See HTTP Config below.

• url - Optional Block
SecretType is used in an object to indicate a sensitive/confidential field
See URL below.

Webhook HTTP Config

A http_config block (within webhook) supports the following:

• auth_token - Optional Block
Access Token. Authentication Token for access
See Auth Token below.

• basic_auth - Optional Block
Authorization parameters to access HTPP alert Receiver Endpoint
See Basic Auth below.

• client_cert_obj - Optional Block
Client Certificate Object. Configuration for client certificate
See Client Cert Obj below.

• enable_http2 - Optional Bool
Enable HTTP2. Configure to use HTTP2 protocol

• follow_redirects - Optional Bool
Configure whether HTTP requests follow HTTP 3xx redirects

• no_authorization - Optional Block
Configuration parameter for no authorization

• no_tls - Optional Block
Enable this option

• use_tls - Optional Block
Configures the token request’s TLS settings
See Use TLS below.

Webhook HTTP Config Auth Token

An auth_token block (within webhook.http_config) supports the following:

• token - Optional Block
SecretType is used in an object to indicate a sensitive/confidential field
See Token below.

Webhook HTTP Config Auth Token Token

A token block (within webhook.http_config.auth_token) supports the following:

• blindfold_secret_info - Optional Block
BlindfoldSecretInfoType specifies information about the Secret managed by F5XC Secret Management
See Blindfold Secret Info below.

• clear_secret_info - Optional Block
ClearSecretInfoType specifies information about the Secret that is not encrypted
See Clear Secret Info below.

Webhook HTTP Config Auth Token Token Blindfold Secret Info

Deeply nested Info block collapsed for readability.

Webhook HTTP Config Auth Token Token Clear Secret Info

Deeply nested Info block collapsed for readability.

Webhook HTTP Config Basic Auth

A basic_auth block (within webhook.http_config) supports the following:

• password - Optional Block
SecretType is used in an object to indicate a sensitive/confidential field
See Password below.

• user_name - Optional String
HTTP Basic Auth username

Webhook HTTP Config Basic Auth Password

A password block (within webhook.http_config.basic_auth) supports the following:

• blindfold_secret_info - Optional Block
BlindfoldSecretInfoType specifies information about the Secret managed by F5XC Secret Management
See Blindfold Secret Info below.

• clear_secret_info - Optional Block
ClearSecretInfoType specifies information about the Secret that is not encrypted
See Clear Secret Info below.

Webhook HTTP Config Basic Auth Password Blindfold Secret Info

Deeply nested Info block collapsed for readability.

Webhook HTTP Config Basic Auth Password Clear Secret Info

Deeply nested Info block collapsed for readability.

Webhook HTTP Config Client Cert Obj

A client_cert_obj block (within webhook.http_config) supports the following:

• use_tls_obj - Optional Block
Certificate Object. Reference to client certificate object
See Use TLS Obj below.

Webhook HTTP Config Client Cert Obj Use TLS Obj

Deeply nested Obj block collapsed for readability.

Webhook HTTP Config Use TLS

An use_tls block (within webhook.http_config) supports the following:

• disable_sni - Optional Block
Configuration parameter for disable sni

• max_version - Optional String Defaults to TLS_AUTO
Possible values are TLS_AUTO, TLSv1_0, TLSv1_1, TLSv1_2, TLSv1_3
[Enum: TLS_AUTO|TLSv1_0|TLSv1_1|TLSv1_2|TLSv1_3] TlsProtocol is enumeration of supported TLS versions F5 Distributed Cloud will choose the optimal TLS version

• min_version - Optional String Defaults to TLS_AUTO
Possible values are TLS_AUTO, TLSv1_0, TLSv1_1, TLSv1_2, TLSv1_3
[Enum: TLS_AUTO|TLSv1_0|TLSv1_1|TLSv1_2|TLSv1_3] TlsProtocol is enumeration of supported TLS versions F5 Distributed Cloud will choose the optimal TLS version

• sni - Optional String
SNI value to be used

• use_server_verification - Optional Block
Configuration parameter for use server verification
See Use Server Verification below.

• volterra_trusted_ca - Optional Block
Configuration parameter for volterra trusted CA

Webhook HTTP Config Use TLS Use Server Verification

Deeply nested Verification block collapsed for readability.

Webhook HTTP Config Use TLS Use Server Verification CA Cert Obj

Deeply nested Obj block collapsed for readability.

Webhook HTTP Config Use TLS Use Server Verification CA Cert Obj Trusted CA

Deeply nested CA block collapsed for readability.

Webhook URL

An url block (within webhook) supports the following:

• blindfold_secret_info - Optional Block
BlindfoldSecretInfoType specifies information about the Secret managed by F5XC Secret Management
See Blindfold Secret Info below.

• clear_secret_info - Optional Block
ClearSecretInfoType specifies information about the Secret that is not encrypted
See Clear Secret Info below.

Webhook URL Blindfold Secret Info

A blindfold_secret_info block (within webhook.url) supports the following:

• decryption_provider - Optional String
Name of the Secret Management Access object that contains information about the backend Secret Management service

• location - Optional String
Location is the uri_ref. It could be in URL format for string:/// Or it could be a path if the store provider is an HTTP/HTTPS location

Webhook URL Clear Secret Info

A clear_secret_info block (within webhook.url) supports the following:

Common Types

The following type definitions are used throughout this resource. See the full definition here rather than repeated inline.

Object Reference {#common-object-reference}

Object references establish a direct reference from one configuration object to another in F5 Distributed Cloud. References use the format tenant/namespace/name.

Field	Type	Description
`name`	String	Name of the referenced object
`namespace`	String	Namespace containing the referenced object
`tenant`	String	Tenant of the referenced object (system-managed)

Transformers {#common-transformers}

Transformers apply transformations to input values before matching. Multiple transformers can be applied in order.

Value	Description
`LOWER_CASE`	Convert to lowercase
`UPPER_CASE`	Convert to uppercase
`BASE64_DECODE`	Decodebase64 content
`NORMALIZE_PATH`	Normalize URL path
`REMOVE_WHITESPACE`	Remove whitespace characters
`URL_DECODE`	Decode URL-encoded characters
`TRIM_LEFT`	Trim leading whitespace
`TRIM_RIGHT`	Trim trailing whitespace
`TRIM`	Trim both leading and trailing whitespace

HTTP Methods {#common-http-methods}

HTTP methods used for request matching.

Value	Description
`ANY`	Match any HTTP method
`GET`	HTTP GET request
`HEAD`	HTTP HEAD request
`POST`	HTTP POST request
`PUT`	HTTP PUT request
`DELETE`	HTTP DELETE request
`CONNECT`	HTTP CONNECT request
`OPTIONS`	HTTP OPTIONS request
`TRACE`	HTTP TRACE request
`PATCH`	HTTP PATCH request
`COPY`	HTTP COPY request (WebDAV)

TLS Fingerprints {#common-tls-fingerprints}

TLS fingerprint categories for malicious client detection.

Value	Description
`TLS_FINGERPRINT_NONE`	No fingerprint matching
`ANY_MALICIOUS_FINGERPRINT`	Match any known malicious fingerprint
`ADWARE`	Adware-associated fingerprints
`DRIDEX`	Dridex malware fingerprints
`GOOTKIT`	Gootkit malware fingerprints
`RANSOMWARE`	Ransomware-associated fingerprints
`TRICKBOT`	Trickbot malware fingerprints

IP Threat Categories {#common-ip-threat-categories}

IP address threat categories for security filtering.

Value	Description
`SPAM_SOURCES`	Known spam sources
`WINDOWS_EXPLOITS`	Windows exploit sources
`WEB_ATTACKS`	Web attack sources
`BOTNETS`	Known botnet IPs
`SCANNERS`	Network scanner IPs
`REPUTATION`	Poor reputation IPs
`PHISHING`	Phishing-related IPs
`PROXY`	Anonymous proxy IPs
`MOBILE_THREATS`	Mobile threat sources
`TOR_PROXY`	Tor exit nodes
`DENIAL_OF_SERVICE`	DoS attack sources
`NETWORK`	Known bad network ranges

Import

Import is supported using the following syntax:

# Import using namespace/name format
terraform import f5xc_alert_receiver.example system/example