feat: Add Resource for External Volumes

[jdoldis]

This PR adds the resource for External Volumes. This is part of a series of PRs aimed at adding provider support for Iceberg tables.

References

• [Feature]: Provide resources for iceberg tables and external volumes #2980
• Adding support for Iceberg tables #2249

[jdoldis]

Have gone to the trouble of adding/removing storage locations here to avoid forcing new on the volume, as other objects will depend on it (e.g. iceberg tables). Implementation would be simpler if we simply rebuilt the entire storage location list each update, but that obviously has the potential to produce many more Snowflake queries.

[jdoldis]

Would be good to have a test here that creates an Iceberg table, as this impacts the output of the ACTIVE property in the External Volume describe output. I would probably need your help to write this as Snowflake verifies access to the data on creation, so random values can’t be used for the bucket etc. - https://docs.snowflake.com/en/user-guide/tables-iceberg-storage#verifying-storage-access.

[jdoldis]

S3GOV acceptance tests are missing as I don’t have an awsgov deployment (same situation as in sdk integration tests).

[jdoldis]

As discussed on Slack, I’m not exactly sure how this works. It seems to be used for all Boolean values so I’ve copied it over and the tests are passing, would be good if you could check it.

[jdoldis]

I’ve followed the example of Storage Integration, which leaves this as a read only parameter. However, for both the Storage Integration and the External Volume I can see use cases in the future where users would want to set it. We should keep that in mind for the next iteration.

[jdoldis]

Haven’t run integration tests for other tests that use this Create method. I don't actually use it in my tests, but nice to fix it up a bit if possible. I've still left the return type the same and the values hard coded to avoid having to refactor too much on this PR.

[jdoldis]

Hey @sfc-gh-asawicki / @sfc-gh-jcieslak / @sfc-gh-jmichalak 🙂

I’ll be on holidays for the next two weeks so won’t be able to respond to the review until I’m back. If you have the time you are welcome to take the PR over yourself to make changes / get it merged, otherwise I’ll take a look once I’m back. I’ve checked Allow edits by maintainers, so you should be able to push here if you like.

Cheers,
James

[jdoldis]

Not sure exactly what's causing this issue, but possibly I’m being too strict trying to implement these checks - I can see there’s no equivalent in storage_integration.go. I thought it might be useful to fail fast rather than let terraform produce non empty plans for no reason, for example when specifying an azure_tenant_id on an s3 storage location. But I don’t want to over complicate it if it’s not necessary - whatever your team thinks is best 👍 . If we do want to implement them, this issue should definitely be looked into before merging.

[jdoldis]

It shouldn’t happen often but if deleting the temp resources fails in one apply, adding them on the next apply could fail due to duplicate names. If we want to avoid this, we could first run a check to see if the temp storage location already exists and run a remove operation.