fix(zero_trust_dlp_custom_profile): add sweepers for dlp_custom_profile

Author: ssicard

internal/services/zero_trust_dlp_custom_profile/resource_test.go

@@ -4,6 +4,7 @@ import (
 	"context"
 	"fmt"
 	"os"
+	"strings"
 	"testing"
 
 	"github.com/cloudflare/cloudflare-go/v6"
@@ -24,6 +25,79 @@ const (
 	EnvTfAcc = "TF_ACC"
 )
 
+func TestMain(m *testing.M) {
+	resource.TestMain(m)
+}
+
+func init() {
+	resource.AddTestSweepers("cloudflare_zero_trust_dlp_custom_profile", &resource.Sweeper{
+		Name: "cloudflare_zero_trust_dlp_custom_profile",
+		F:    testSweepCloudflareZeroTrustDlpCustomProfile,
+	})
+}
+
+// testSweepCloudflareZeroTrustDlpCustomProfile removes test DLP custom profiles created during acceptance tests.
+//
+// This sweeper:
+// - Lists all DLP profiles in the test account
+// - Filters for custom profiles with test name prefixes (tf-acc-test-, tf-acctest-, tfmigrate-e2e-)
+// - Deletes matching custom profiles
+// - Continues on errors to sweep as many resources as possible
+//
+// Run with: go test ./internal/services/zero_trust_dlp_custom_profile/ -v -sweep=all
+//
+// Requires:
+// - CLOUDFLARE_ACCOUNT_ID (for account-scoped resources)
+// - CLOUDFLARE_EMAIL + CLOUDFLARE_API_KEY or CLOUDFLARE_API_TOKEN
+func testSweepCloudflareZeroTrustDlpCustomProfile(r string) error {
+	ctx := context.Background()
+	client := acctest.SharedClient()
+
+	accountID := os.Getenv("CLOUDFLARE_ACCOUNT_ID")
+	if accountID == "" {
+		return nil // Skip if no account ID set
+	}
+
+	// List all DLP profiles (both custom and predefined)
+	list, err := client.ZeroTrust.DLP.Profiles.List(ctx, zero_trust.DLPProfileListParams{
+		AccountID: cloudflare.F(accountID),
+	})
+	if err != nil {
+		return fmt.Errorf("failed to list DLP profiles: %w", err)
+	}
+
+	// Delete test custom profiles only
+	for _, profile := range list.Result {
+		// Only delete custom profiles (not predefined)
+		if profile.Type != "custom" {
+			continue
+		}
+
+		// Filter by test naming convention
+		if !isTestResource(profile.Name) {
+			continue
+		}
+
+		_, err := client.ZeroTrust.DLP.Profiles.Custom.Delete(ctx, profile.ID, zero_trust.DLPProfileCustomDeleteParams{
+			AccountID: cloudflare.F(accountID),
+		})
+		if err != nil {
+			// Log but don't fail - continue sweeping
+			fmt.Printf("Failed to delete DLP custom profile %s (%s): %v\n", profile.Name, profile.ID, err)
+		}
+	}
+
+	return nil
+}
+
+// isTestResource checks if a resource name matches test naming conventions
+func isTestResource(name string) bool {
+	return strings.HasPrefix(name, "tf-acc-test-") ||
+		strings.HasPrefix(name, "tf-acctest-") ||
+		strings.HasPrefix(name, "test-") ||
+		strings.HasPrefix(name, "tfmigrate-e2e-")
+}
+
 // setupDLPCustomProfileTest handles common test setup and TF_ACC environment check
 func setupDLPCustomProfileTest(t *testing.T) (string, string) {
 	if os.Getenv(EnvTfAcc) == "" {