vmware
diff --git a/‎docs/data-sources/integration.md
+68 b/‎docs/data-sources/integration.md
+68
diff --git a/‎docs/resources/integration.md
+83 b/‎docs/resources/integration.md
+83
diff --git a/‎docs/resources/security_policy.md
+24-24 b/‎docs/resources/security_policy.md
+24-24
diff --git a/‎examples/data-sources/integration/data-source.tf
+3-8 b/‎examples/data-sources/integration/data-source.tf
+3-8
diff --git a/‎examples/resources/integration/resource.tf
+22 b/‎examples/resources/integration/resource.tf
+22
@@ -0,0 +1,68 @@
+---
+Title: "Tanzu Service Mesh Integration Resource"
+Description: |-
+    Fetching the details of Integration by Tanzu Service Mesh.
+---
+
+# Tanzu Service Mesh Integration
+
+The `Tanzu Service Mesh integration` is available on the Tanzu Mission Control platform.
+When the Tanzu Service Mesh service has been enabled on your organization, your Tanzu Mission Control organization administrator can enable the integration for use on clusters that are managed through Tanzu Mission Control.
+Then, cluster administrators can add Tanzu Service Mesh to managed clusters and designate which namespaces should belong in the mesh.
+`Tanzu Mission Control` takes care of the installation of service mesh components in the cluster, provides health status, and onboards it into Tanzu Service Mesh.
+
+For reading the Tanzu Service Mesh Integration via the terraform provider, use the following configuration.
+
+## Example Usage
+
+```terraform
+# Read Tanzu Mission Control TSM integration : fetch details
+data "tanzu-mission-control_integration" "read_tsm-integration" {
+  management_cluster_name = "attached"
+  provisioner_name        = "attached"
+  cluster_name            = "test-cluster"
+  integration_name        = "tanzu-service-mesh"
+}
+```
+
+<!-- schema generated by tfplugindocs -->
+## Schema
+
+### Required
+
+- `cluster_name` (String) Name of this cluster
+- `integration_name` (String) Name of the Integration; valid options are currently only ['tanzu-service-mesh']
+- `spec` (Block List, Min: 1, Max: 1) Specification for the Integration (see [below for nested schema](#nestedblock--spec))
+
+### Optional
+
+- `management_cluster_name` (String) Name of the management cluster
+- `meta` (Block List, Max: 1) Metadata for the resource (see [below for nested schema](#nestedblock--meta))
+- `provisioner_name` (String) Provisioner of the cluster
+
+### Read-Only
+
+- `id` (String) The ID of this resource.
+- `status` (Map of String) Status of Integration
+
+<a id="nestedblock--spec"></a>
+### Nested Schema for `spec`
+
+Optional:
+
+- `configurations` (String) Integration specific configurations in JSON format
+
+
+<a id="nestedblock--meta"></a>
+### Nested Schema for `meta`
+
+Optional:
+
+- `annotations` (Map of String) Annotations for the resource
+- `description` (String) Description of the resource
+- `labels` (Map of String) Labels for the resource
+
+Read-Only:
+
+- `resource_version` (String) Resource version of the resource
+- `uid` (String) UID of the resource
@@ -0,0 +1,83 @@
+---
+Title: "Tanzu Service Mesh Integration Resource"
+Description: |-
+    Creating the Integration by Tanzu Service Mesh on a cluster.
+---
+
+# Tanzu Service Mesh Integration
+
+The `Tanzu Service Mesh integration` is available on the Tanzu Mission Control platform.
+When the Tanzu Service Mesh service has been enabled on your organization, your Tanzu Mission Control organization administrator can enable the integration for use on clusters that are managed through Tanzu Mission Control.
+Then, cluster administrators can add Tanzu Service Mesh to managed clusters and designate which namespaces should belong in the mesh.
+`Tanzu Mission Control` takes care of the installation of service mesh components in the cluster, provides health status, and onboards it into Tanzu Service Mesh.
+
+For leveraging this feature via the terraform provider, use the following configuration.
+
+## Example Usage
+
+```terraform
+# Create Tanzu Mission Control TSM Integration resource
+resource "tanzu-mission-control_integration" "create_tsm-integration" {
+  management_cluster_name = "attached"
+  provisioner_name        = "attached"
+  cluster_name            = "test-cluster"
+  integration_name        = "tanzu-service-mesh"
+
+  spec {
+    configurations = jsonencode({
+      enableNamespaceExclusions = true
+      namespaceExclusions = [
+        {
+          match = "custom-namespace-1"
+          type  = "EXACT"
+          }, {
+          match = "kube"
+          type  = "START_WITH"
+        }
+      ]
+    })
+  }
+}
+```
+
+<!-- schema generated by tfplugindocs -->
+## Schema
+
+### Required
+
+- `cluster_name` (String) Name of this cluster
+- `integration_name` (String) Name of the Integration; valid options are currently only ['tanzu-service-mesh']
+- `spec` (Block List, Min: 1, Max: 1) Specification for the Integration (see [below for nested schema](#nestedblock--spec))
+
+### Optional
+
+- `management_cluster_name` (String) Name of the management cluster
+- `meta` (Block List, Max: 1) Metadata for the resource (see [below for nested schema](#nestedblock--meta))
+- `provisioner_name` (String) Provisioner of the cluster
+
+### Read-Only
+
+- `id` (String) The ID of this resource.
+- `status` (Map of String) Status of Integration
+
+<a id="nestedblock--spec"></a>
+### Nested Schema for `spec`
+
+Optional:
+
+- `configurations` (String) Integration specific configurations in JSON format
+
+
+<a id="nestedblock--meta"></a>
+### Nested Schema for `meta`
+
+Optional:
+
+- `annotations` (Map of String) Annotations for the resource
+- `description` (String) Description of the resource
+- `labels` (Map of String) Labels for the resource
+
+Read-Only:
+
+- `resource_version` (String) Resource version of the resource
+- `uid` (String) UID of the resource
@@ -117,7 +117,7 @@ resource "tanzu-mission-control_security_policy" "cluster_scoped_custom_security
           max = 5000
         }
 
-        allowed_volumes              = [
+        allowed_volumes = [
           "configMap",
           "nfs",
           "vsphereVolume"
@@ -176,7 +176,7 @@ resource "tanzu-mission-control_security_policy" "cluster_scoped_custom_security
         }
 
         linux_capabilities {
-          allowed_capabilities       = [
+          allowed_capabilities = [
             "CHOWN",
             "IPC_LOCK"
           ]
@@ -187,15 +187,15 @@ resource "tanzu-mission-control_security_policy" "cluster_scoped_custom_security
 
         allowed_host_paths {
           path_prefix = "p1"
-          read_only  = true
+          read_only   = true
         }
         allowed_host_paths {
           path_prefix = "p2"
-          read_only  = false
+          read_only   = false
         }
         allowed_host_paths {
           path_prefix = "p3"
-          read_only  = true
+          read_only   = true
         }
 
         allowed_se_linux_options {
@@ -213,7 +213,7 @@ resource "tanzu-mission-control_security_policy" "cluster_scoped_custom_security
         }
 
         seccomp {
-          allowed_profiles        = [
+          allowed_profiles = [
             "Localhost"
           ]
           allowed_localhost_files = [
@@ -261,7 +261,7 @@ resource "tanzu-mission-control_security_policy" "cluster_scoped_strict_security
       match_expressions {
         key      = "component"
         operator = "NotIn"
-        values   = [
+        values = [
           "api-server",
           "agent-gateway"
         ]
@@ -308,7 +308,7 @@ resource "tanzu-mission-control_security_policy" "cluster_group_scoped_baseline_
       match_expressions {
         key      = "component"
         operator = "In"
-        values   = [
+        values = [
           "api-server",
           "agent-gateway"
         ]
@@ -359,7 +359,7 @@ resource "tanzu-mission-control_security_policy" "cluster_group_scoped_custom_se
           max = 5000
         }
 
-        allowed_volumes              = [
+        allowed_volumes = [
           "configMap",
           "nfs",
           "vsphereVolume"
@@ -418,7 +418,7 @@ resource "tanzu-mission-control_security_policy" "cluster_group_scoped_custom_se
         }
 
         linux_capabilities {
-          allowed_capabilities       = [
+          allowed_capabilities = [
             "CHOWN",
             "IPC_LOCK"
           ]
@@ -429,15 +429,15 @@ resource "tanzu-mission-control_security_policy" "cluster_group_scoped_custom_se
 
         allowed_host_paths {
           path_prefix = "p1"
-          read_only  = true
+          read_only   = true
         }
         allowed_host_paths {
           path_prefix = "p2"
-          read_only  = false
+          read_only   = false
         }
         allowed_host_paths {
           path_prefix = "p3"
-          read_only  = true
+          read_only   = true
         }
 
         allowed_se_linux_options {
@@ -455,8 +455,8 @@ resource "tanzu-mission-control_security_policy" "cluster_group_scoped_custom_se
         }
 
         seccomp {
-          allowed_profiles        = [
-          "Localhost"
+          allowed_profiles = [
+            "Localhost"
           ]
           allowed_localhost_files = [
             "profiles/audit.json",
@@ -470,7 +470,7 @@ resource "tanzu-mission-control_security_policy" "cluster_group_scoped_custom_se
       match_expressions {
         key      = "component"
         operator = "In"
-        values   = [
+        values = [
           "api-server",
           "agent-gateway"
         ]
@@ -583,7 +583,7 @@ resource "tanzu-mission-control_security_policy" "organization_scoped_custom_sec
           max = 5000
         }
 
-        allowed_volumes              = [
+        allowed_volumes = [
           "configMap",
           "nfs",
           "vsphereVolume"
@@ -642,7 +642,7 @@ resource "tanzu-mission-control_security_policy" "organization_scoped_custom_sec
         }
 
         linux_capabilities {
-          allowed_capabilities       = [
+          allowed_capabilities = [
             "CHOWN",
             "IPC_LOCK"
           ]
@@ -653,15 +653,15 @@ resource "tanzu-mission-control_security_policy" "organization_scoped_custom_sec
 
         allowed_host_paths {
           path_prefix = "p1"
-          read_only  = true
+          read_only   = true
         }
         allowed_host_paths {
           path_prefix = "p2"
-          read_only  = false
+          read_only   = false
         }
         allowed_host_paths {
           path_prefix = "p3"
-          read_only  = true
+          read_only   = true
         }
 
         allowed_se_linux_options {
@@ -679,7 +679,7 @@ resource "tanzu-mission-control_security_policy" "organization_scoped_custom_sec
         }
 
         seccomp {
-          allowed_profiles        = [
+          allowed_profiles = [
             "Localhost"
           ]
           allowed_localhost_files = [
@@ -694,7 +694,7 @@ resource "tanzu-mission-control_security_policy" "organization_scoped_custom_sec
       match_expressions {
         key      = "component"
         operator = "In"
-        values   = [
+        values = [
           "api-server",
           "agent-gateway"
         ]
@@ -741,7 +741,7 @@ resource "tanzu-mission-control_security_policy" "organization_scoped_strict_sec
       match_expressions {
         key      = "component"
         operator = "In"
-        values   = [
+        values = [
           "api-server",
           "agent-gateway"
         ]
 
@@ -1,12 +1,7 @@
-data "tanzu-mission-control_cluster" "default" {
-  management_cluster_name = "attached"       # Default: attached
-  provisioner_name        = "attached"       # Default: attached
-  name                    = "terraform-test" # Required
-}
-
-data "tanzu-mission-control_integration" "default" {
+# Read Tanzu Mission Control TSM integration : fetch details
+data "tanzu-mission-control_integration" "read_tsm-integration" {
   management_cluster_name = "attached"
   provisioner_name        = "attached"
-  cluster_name            = tanzu-mission-control_cluster.default.name
+  cluster_name            = "test-cluster"
   integration_name        = "tanzu-service-mesh"
 }
@@ -0,0 +1,22 @@
+# Create Tanzu Mission Control TSM Integration resource
+resource "tanzu-mission-control_integration" "create_tsm-integration" {
+  management_cluster_name = "attached"
+  provisioner_name        = "attached"
+  cluster_name            = "test-cluster"
+  integration_name        = "tanzu-service-mesh"
+
+  spec {
+    configurations = jsonencode({
+      enableNamespaceExclusions = true
+      namespaceExclusions = [
+        {
+          match = "custom-namespace-1"
+          type  = "EXACT"
+          }, {
+          match = "kube"
+          type  = "START_WITH"
+        }
+      ]
+    })
+  }
+}