feat: add experimental coderd_ai_provider resource

[ethanndickson]

Stack — builds on #370 (external Postgres sidecar for acceptance tests); review/merge that first.

Summary

Adds coderd_ai_provider for managing Coder AI Gateway providers from Terraform — OpenAI-style API-key providers and AWS Bedrock providers — with full CRUD + import, generated docs/examples, and acceptance/unit tests. The resource is marked experimental via a warning callout in its docs.

Approach

• Write-only secrets. Plaintext API keys and AWS credentials use Terraform 1.11+ write-only arguments (*_wo), so secrets reach Coder but never land in state. Each secret is paired with a *_version field; bumping the version rotates the secret. A null version means "unmanaged/preserve" rather than "clear", so removing it never silently wipes server-side secrets.
• Split validation. Schema validators handle the simple shape (required-together, non-empty); resource-level ValidateConfig handles type-dependent combinations (e.g. api_key_wo is rejected for bedrock/copilot or any settings.bedrock config, mirroring the server) and Bedrock's region-or-credentials requirement. Validation defers while values are unknown during the validate/plan walk.
• Bedrock region. When region is omitted it derives from a canonical Bedrock base_url (bedrock-runtime.<region>.amazonaws.com), so it re-derives correctly when base_url changes regions.

Schema

resource "coderd_ai_provider" "openai" {
  type               = "openai"
  name               = "openai"
  base_url           = "https://api.openai.com"
  api_key_wo         = var.openai_api_key
  api_key_wo_version = 1
}

resource "coderd_ai_provider" "bedrock" {
  type     = "bedrock"
  name     = "aws-bedrock"
  base_url = "https://bedrock-runtime.us-east-1.amazonaws.com"

  settings = {
    bedrock = {
      model                  = "anthropic.claude-3-5-sonnet-20241022-v2:0"
      access_key_wo          = var.bedrock_access_key
      access_key_secret_wo   = var.bedrock_access_key_secret
      credentials_wo_version = 1
    }
  }
}

Computed: id, display_name, enabled, api_key_masked, created_at, updated_at, and settings.bedrock.region (derived from base_url).

Notes

Requires Terraform 1.11+ when configured (write-only arguments); acceptance cases skip earlier versions.

An integration test combining this with the model resource is planned.

Relates to CODAGT-607

[linear-code]

CODAGT-607

[ethanndickson]

@codex review

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 2dde8c9a39

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[ethanndickson]

@codex review

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 891e3b5e17

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[ethanndickson]

@codex review

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 3ca1539a17

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[ethanndickson]

@codex review

re:

Accept Bedrock custom endpoints with default credentials
Honor full Bedrock base URLs without a region

Verified this against coder/coder at current main — the premise is correct, but loosening only the provider here wouldn't actually unblock proxy deployments, so I'm holding off.

The provider is faithfully mirroring the server's create gate. CreateAIProviderRequest.Validate() in codersdk/aiproviders.go rejects type=bedrock when req.Settings.Bedrock == nil || !req.Settings.Bedrock.IsConfigured() — and IsConfigured() only checks region + credentials, ignoring base_url, exactly like this check. The create handler (coderd/ai_providers.go) calls that same Validate(), so a base-URL-only Bedrock provider (AWS SDK default credential chain, no region) currently returns an HTTP 400 from Coder regardless of what Terraform does.

The base-URL-aware IsBedrockConfigured(baseURL, settings) does exist, but it's only used by legacy env-var seeding (cli/server.go) and migration detection (coderd/ai_providers_migrate.go) — never in the create/update API validation path.

So if I switch this check to be base-URL-aware in isolation, the apply still fails — just with a server-side 400 instead of a clean client-side diagnostic, which is worse UX. This is an inconsistency in Coder itself between the Bedrock docs and CreateAIProviderRequest.Validate(). The right fix is upstream: have CreateAIProviderRequest.Validate() use IsBedrockConfigured(baseURL, ...) (or correct the docs). Once the API accepts base-URL-only Bedrock, I'll mirror it here

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: 4e28632a3c

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[ethanndickson]

• feat: add experimental coderd_agents_model resource #371
• docs: add AGENTS.md contributor guide for AI agents #369
• feat: add experimental coderd_ai_provider resource #368 👈 (View in Graphite)
• ci: run acceptance tests against an external Postgres sidecar #370
• main

This stack of pull requests is managed by Graphite. Learn more about stacking.

[ethanndickson]

@codex review

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: ee995a996b

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[ethanndickson]

@codex review

re:

Accept Bedrock custom endpoints with default credentials
Honor full Bedrock base URLs without a region

Verified this against coder/coder at current main — the premise is correct, but loosening only the provider here wouldn't actually unblock proxy deployments, so I'm holding off.

The provider is faithfully mirroring the server's create gate. CreateAIProviderRequest.Validate() in codersdk/aiproviders.go rejects type=bedrock when req.Settings.Bedrock == nil || !req.Settings.Bedrock.IsConfigured() — and IsConfigured() only checks region + credentials, ignoring base_url, exactly like this check. The create handler (coderd/ai_providers.go) calls that same Validate(), so a base-URL-only Bedrock provider (AWS SDK default credential chain, no region) currently returns an HTTP 400 from Coder regardless of what Terraform does.

The base-URL-aware IsBedrockConfigured(baseURL, settings) does exist, but it's only used by legacy env-var seeding (cli/server.go) and migration detection (coderd/ai_providers_migrate.go) — never in the create/update API validation path.

So if I switch this check to be base-URL-aware in isolation, the apply still fails — just with a server-side 400 instead of a clean client-side diagnostic, which is worse UX. This is an inconsistency in Coder itself between the Bedrock docs and CreateAIProviderRequest.Validate(). The right fix is upstream: have CreateAIProviderRequest.Validate() use IsBedrockConfigured(baseURL, ...) (or correct the docs). Once the API accepts base-URL-only Bedrock, I'll mirror it here

[ethanndickson]

/coder-agents-review

[coder-agents-review]

Chat: Review posted | View chat
Requested: 2026-06-24 07:59 UTC by @ethanndickson
Spend: $71.85 / $100.00

Review history

• R1 (2026-06-24): 14 reviewers, 2 Nit, 4 Note, 4 P2, 6 P3, COMMENT. Review
• R2 (2026-06-24): 6 reviewers, 4 Nit, 4 Note, 5 P2, 8 P3, COMMENT. Review
• R3 (2026-06-24): 3 reviewers, 4 Nit, 4 Note, 5 P2, 8 P3, APPROVE. Review

deep-review v0.9.0 | Round 3 | 293eac1..d51dad0

Last posted: Round 3, 21 findings (5 P2, 8 P3, 4 Nit, 4 Note), APPROVE. Review

Finding inventory

Finding Inventory

Findings

#	Sev	Status	Location	Summary	Round	Reviewer	Posted
CRF-1	P2	Author fixed (1ee8a77)	ai_provider_resource.go:166	UseStateForUnknown on region causes plan/apply inconsistency when base_url changes	R1	Hisoka P2, Kite P2	Yes
CRF-2	P2	Author fixed (1ee8a77)	ai_provider_resource.go:485	Removing api_key_wo_version silently clears all API keys	R1	Hisoka P2, Mafuuu P3, Knov P3	Yes
CRF-3	P2	Author fixed (1ee8a77)	ai_provider_resource.go:611	Removing credentials_wo_version permanently blocks apply	R1	Chopper P2, Meruem P3	Yes
CRF-4	P2	Author fixed (1ee8a77)	ai_provider_resource_test.go:397	Shallow copy shares Settings pointer, test verifies wrong preconditions	R1	Meruem P2, Bisky Nit	Yes
CRF-5	P3	Author fixed (1ee8a77)	ai_provider_resource_test.go:382	Bedrock credential rotation/clearing/error paths untested	R1	Bisky P3, Chopper P3, Kite P3	Yes
CRF-6	P3	Author fixed (1ee8a77)	ai_provider_resource.go:543	stateFromProvider nil Settings for non-bedrock causes infinite plan diffs with settings={}	R1	Mafuuu P3	Yes
CRF-7	P3	Author fixed (1ee8a77)	ai_provider_resource.go:186	Doc link pinned to v2.34.3 will rot	R1	Leorio P3	Yes
CRF-8	P3	Author fixed (1ee8a77)	ai_provider_resource_test.go:125	ValidateConfig type-specific error branches untested	R1	Kite P3	Yes
CRF-9	P3	Author fixed (1ee8a77)	ai_provider_resource.go:485	API key clearing semantic undocumented and untested	R1	Chopper P3, Knov P3	Yes
CRF-10	P3	Author fixed (1ee8a77)	ai_provider_resource.go:245	Comment verbosity pattern: 9 of 10 comments restate adjacent code	R1	Gon P2 (downgraded)	Yes
CRF-11	Nit	Author fixed (1ee8a77)	ai_provider_resource.go:611	credentialsVersionChanged uses symmetric param names for asymmetric function	R1	Gon Nit	Yes
CRF-12	Nit	Author accepted R2 (intentional reuse of shared helper)	ai_provider_resource.go:306	bedrockRegion called with identical args for configured and planned in ValidateConfig	R1	Mafuuu Nit, Meruem Note	Yes
CRF-13	Note	Author accepted R2 (deferred; bedrock unit-tested, server integration gap noted)	ai_provider_resource_test.go:30	Acceptance test only covers OpenAI import/rotation, not bedrock lifecycle	R1	Bisky Note	Yes
CRF-14	Note	Author fixed (1ee8a77)	ai_provider_resource.go:580	parseBedrockRegionFromBaseURL only tested indirectly	R1	Kite Note	Yes
CRF-15	Note	Author accepted R2 (deferred; SDK has same gap, admin-only field)	ai_provider_resource.go:588	base_url accepts URLs with embedded userinfo	R1	Kurapika Note	Yes
CRF-16	Note	Author accepted R2 (intentional; matches SDK Validate() behavior)	ai_provider_resource.go:296	Bedrock validation depth differs by provider type (matches SDK)	R1	Knov Note	Yes
CRF-17	P2	Author fixed (d51dad0)	ai_provider_resource.go:164	CRF-1 fix incomplete: region without plan modifier causes plan noise and potential plan/apply divergence	R2	Hisoka P2, Meruem P3	Yes
CRF-18	P3	Author fixed (d51dad0)	ai_provider_resource.go:215	created_at missing UseStateForUnknown; shows (known after apply) on every update	R2	Mafuuu P3	Yes
CRF-19	P3	Author fixed (d51dad0)	ai_provider_resource_test.go:504	Bedrock credential rotation happy path test uses empty strings; field correctness unverified	R2	Bisky P3	Yes
CRF-20	Nit	Author fixed (d51dad0)	ai_provider_resource_test.go:549	Four API key rotation scenarios in flat function without t.Run subtests	R2	Bisky Nit	Yes
CRF-21	Nit	Author fixed (d51dad0)	ai_provider_resource.go:586	APIKeys[0] index undocumented single-key invariant	R2	Hisoka Nit	Yes

Law analysis

Effective LOC: 1222. Head SHA: d2f68e3. Verdict: Don't split. Enforcement: Advisory.

Round log

Round 1

Panel. 4 P2, 6 P3, 2 Nit, 4 Note. 16 posted. Reviewed against 293eac1..d2f68e3. Panel: Bisky, Hisoka, Mafu-san, Mafuuu, Pariston, Gon, Leorio, Ging-Go, Kurapika, Chopper, Komugi, Meruem, Kite (wildcard), Knov (wildcard). Netero clean, Law advisory don't-split.

Round 2

Churn guard: PROCEED (12 addressed, 4 acknowledged). Netero clean, all R1 fixes verified. Panel: Bisky, Mafuuu, Hisoka, Chopper, Meruem, Knov (wildcard). 1 P2, 2 P3, 2 Nit new. Reviewed against 293eac1..1ee8a77.

Round 3

Churn guard: PROCEED (5 addressed). Netero clean, all R2 fixes verified. Panel: Mafuuu, Hisoka, Meruem. 0 new findings. All 21 findings resolved (17 fixed, 4 acknowledged). Reviewed against 293eac1..d51dad0.

About deep-review

CRF = Coder Review Finding (P0-P4, Nit, Note)

Reviewer	Focus
Bisky	tests
Chopper	ops/errors
Churn-guard	change verification
Ging	language modernization
Gon	naming
Hisoka	edge cases
Killua	perf
Kite	change integrity
Knov	contracts
Knuckle	SQL
Komugi	flake/determinism
Kurapika	security
Law	decomposition
Leorio	docs
Luffy	product
Mafu-san	process
Mafuuu	contracts
Melody	dispatch/pairing
Meruem	structural
Nami	frontend
Netero	mechanical checks
Pariston	premise testing
Pen-botter	product gaps
Razor	verification
Robin	duplication
Ryosuke	Go arch
Takumi	concurrency
Zoro	shape

🤖 Managed by Coder Agents.

[chatgpt-codex-connector]

Codex Review: Didn't find any major issues. Keep it up!

Reviewed commit: d51dad0c80

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[coder-agents-review]

All 21 findings across 3 rounds resolved: 17 fixed, 4 acknowledged. No new findings from the R3 panel (Mafuuu, Hisoka, Meruem) or Netero.

The R2 fixes are solid. bedrockRegionPlanModifier correctly derives region from base_url during planning, eliminating both the stale-state and plan-noise variants. created_at now has UseStateForUnknown. Credential rotation test uses distinct non-empty values. API key rotation test uses t.Run subtests. Single-key invariant is documented.

CI note: Terraform Provider Acceptance Tests (1.6.*) is failing. This may be pre-existing or related to the base branch (#370). Worth checking before merge.

The resource is well-engineered: clean write-only secret handling, thoughtful validation deferral for unknowns, proper credential lifecycle semantics, and thorough test coverage (45.8% test density, 1:1 production-to-test ratio).

🤖 This review was automatically generated with Coder Agents.

[matifali]

I have concerns about the choice of the name for this resource.

[ethanndickson]

Yeah honestly I agree, I think putting experimental in the title is a mistake. It'll be extremely painful for customers to migrate when we remove it.

[matifali]

Suggested change

	> **NOTE**: [Write-only arguments](https://developer.hashicorp.com/terraform/language/resources/ephemeral#write-only-arguments) are supported in Terraform 1.11 and later.
	-> [Write-only arguments](https://developer.hashicorp.com/terraform/language/resources/ephemeral#write-only-arguments) are supported in Terraform 1.11 and later.

This could also turn into a Terraform registry-style note.

Preview from: https://registry.terraform.io/tools/doc-preview

[ethanndickson]

There's already one at the top, I'm going to get rid of it

[ethanndickson]

Nevermind, it's auto-generated and you can't get rid of or edit it.

[ethanndickson]

Incredible.

[ethanndickson]

I think the block at the top saying the whole resource requires 1.11 or later is worth keeping, so keeping both unfortunately.

[matifali]

Yes we can drop this block and keep the top only.

[ethanndickson]

> **NOTE**: [Write-only arguments](https://developer.hashicorp.com/terraform/language/resources/ephemeral#write-only-arguments) are supported in Terraform 1.11 and later.

You can't get rid of this, it's added by the docs generator.

[ethanndickson]

Note to future self to investigate: does coderd handle omitting the /v1 for openAI base urls? otherwise we should probably catch this during validation/plan