Upload File

terraform: what's new in version 0.7.x? - mschuette.name · example:usingstateimport $...

  • Home
  • Documents
  • Terraform: What's New in Version 0.7.x? - mschuette.name · Example:UsingStateImport $ terraform import aws_instance.server i-0f83bd96e9ea45fe3 aws_instance.server: Importing from
22
Terraform: What’s New in Version 0.7.x? Martin Schütte 10 November 2016 AWS User Group Hamburg

Upload: nguyentram

Post on 26-Feb-2019

221 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: Terraform: What's New in Version 0.7.x? - mschuette.name · Example:UsingStateImport $ terraform import aws_instance.server i-0f83bd96e9ea45fe3 aws_instance.server: Importing from

Terraform: What’s New in Version 0.7.x?

Martin Schütte10 November 2016

AWS User Group Hamburg

Page 2: Terraform: What's New in Version 0.7.x? - mschuette.name · Example:UsingStateImport $ terraform import aws_instance.server i-0f83bd96e9ea45fe3 aws_instance.server: Importing from

TERRAFORMBuild,  Combine,  and  Launch  Infrastructure

Page 3: Terraform: What's New in Version 0.7.x? - mschuette.name · Example:UsingStateImport $ terraform import aws_instance.server i-0f83bd96e9ea45fe3 aws_instance.server: Importing from

Outline

terraform fmt

Internal Plugins/Single Binary

Output flag -json

Lists and Maps

State

Data Sources

Martin Schütte | Terraform | AWS UG HH 3/22

Page 4: Terraform: What's New in Version 0.7.x? - mschuette.name · Example:UsingStateImport $ terraform import aws_instance.server i-0f83bd96e9ea45fe3 aws_instance.server: Importing from

terraform fmt

• Ok, actually in there since 0.6.15• Inspired by go fmt• Fixes whitespace for uniform code style

Martin Schütte | Terraform | AWS UG HH 4/22

Page 5: Terraform: What's New in Version 0.7.x? - mschuette.name · Example:UsingStateImport $ terraform import aws_instance.server i-0f83bd96e9ea45fe3 aws_instance.server: Importing from

Example: before terraform fmt

provider ”aws” {region=”eu-west-1”

}

variable ”ami”{}

# use amiresource ”aws_instance” ”web” {

instance_type =”t2.micro”ami =”${var.ami}”

}

Martin Schütte | Terraform | AWS UG HH 5/22

Page 6: Terraform: What's New in Version 0.7.x? - mschuette.name · Example:UsingStateImport $ terraform import aws_instance.server i-0f83bd96e9ea45fe3 aws_instance.server: Importing from

Example: after terraform fmt

provider ”aws” {region = ”eu-west-1”

}

variable ”ami” {}

# use amiresource ”aws_instance” ”web” {instance_type = ”t2.micro”ami = ”${var.ami}”

}

Martin Schütte | Terraform | AWS UG HH 6/22

Page 7: Terraform: What's New in Version 0.7.x? - mschuette.name · Example:UsingStateImport $ terraform import aws_instance.server i-0f83bd96e9ea45fe3 aws_instance.server: Importing from

Internal Plugins/Packaged as Single Binary

• Golang design: statically linked binary• Terraform design: plugins

⇒ Multiple binaries using network RPC,lots of shared code is duplicated

• Now all (default) plugins are compiled into single binary• Still uses RPC, custom plugins possible (doc)

Martin Schütte | Terraform | AWS UG HH 7/22

https://www.terraform.io/docs/internals/internal-plugins.html
Page 8: Terraform: What's New in Version 0.7.x? - mschuette.name · Example:UsingStateImport $ terraform import aws_instance.server i-0f83bd96e9ea45fe3 aws_instance.server: Importing from

Size of Terraform Releases (linux amd64)

v0.6.0 v0.6.5 v0.6.10 v0.6.16 v0.7.0 v0.7.100

200

400

600

800

268339

459

596

737

547

87 67

SizeinMb

0

10

20

30

40

50

60

1720

28

36

4448

ProviderCount

Martin Schütte | Terraform | AWS UG HH 8/22

Page 9: Terraform: What's New in Version 0.7.x? - mschuette.name · Example:UsingStateImport $ terraform import aws_instance.server i-0f83bd96e9ea45fe3 aws_instance.server: Importing from

Output flag -json

Small change, but very useful for integration

$ terraform output -json{

”aws_command_url”: {”sensitive”: false,”type”: ”string”,1”value”: ”https://....amazonaws.com/prod/event”

},”sql_endpoint”: {

”sensitive”: false,”type”: ”string”,”value”: ”....rds.amazonaws.com:3306”

}}

Martin Schütte | Terraform | AWS UG HH 9/22

Page 10: Terraform: What's New in Version 0.7.x? - mschuette.name · Example:UsingStateImport $ terraform import aws_instance.server i-0f83bd96e9ea45fe3 aws_instance.server: Importing from

Example: Integration with JSON Output

$ terraform output sql_endpoint....rds.amazonaws.com:3306$ terraform output aws_command_url....amazonaws.com/prod/weather

$ terraform output -json > output.json$ cat output.json | \> jq ’.sql_endpoint.value,.aws_command_url.value’”....rds.amazonaws.com:3306””....amazonaws.com/prod/weather”

Martin Schütte | Terraform | AWS UG HH 10/22

Page 11: Terraform: What's New in Version 0.7.x? - mschuette.name · Example:UsingStateImport $ terraform import aws_instance.server i-0f83bd96e9ea45fe3 aws_instance.server: Importing from

Example: Jenkins Groovy Post-Build

def jsonfile = new File(basepath, ’output.json’)def tfoutput = new JsonSlurper().parseText( jsonfile.getText() )

summary = manager.createSummary(”clipboard.png”)summary.appendText(”Terraform Output:<ul>”, false)tfoutput.each {

summary.appendText(”<li><code><b>$it.key</b>: ”+”$it.value.value</code></li>”, false)

}summary.appendText(”</ul>”, false)

Martin Schütte | Terraform | AWS UG HH 11/22

Page 12: Terraform: What's New in Version 0.7.x? - mschuette.name · Example:UsingStateImport $ terraform import aws_instance.server i-0f83bd96e9ea45fe3 aws_instance.server: Importing from

Lists and Maps

Old way: only Strings# in VPC moduleoutput ”private_subnets” {value = ”${join(”,”, aws_subnet.private.*.id)}”

}

# in callernet_id = ”${element(split(”,”, var.private_subnets), count.index)}”

New: easily pass Lists and Maps# in VPC moduleoutput ”private_subnets” {value = [”${aws_subnet.private.*.id}”]

}

# in callernet_id = ”${var.private_subnets[count.index]}”

Martin Schütte | Terraform | AWS UG HH 12/22

Page 13: Terraform: What's New in Version 0.7.x? - mschuette.name · Example:UsingStateImport $ terraform import aws_instance.server i-0f83bd96e9ea45fe3 aws_instance.server: Importing from

State Manipulation

New state command to list, show, delete, move resources

Example: “live refactoring” with mv$ terraform state mv aws_instance.foo aws_instance.bar$ terraform state mv aws_instance.webserver module.web

Martin Schütte | Terraform | AWS UG HH 13/22

Page 14: Terraform: What's New in Version 0.7.x? - mschuette.name · Example:UsingStateImport $ terraform import aws_instance.server i-0f83bd96e9ea45fe3 aws_instance.server: Importing from

State Import (Work in Progress)

• New import command• Imports single resource instance by ID• Writes into state (not to source!)⇒ some yak shaving required

Martin Schütte | Terraform | AWS UG HH 14/22

Page 15: Terraform: What's New in Version 0.7.x? - mschuette.name · Example:UsingStateImport $ terraform import aws_instance.server i-0f83bd96e9ea45fe3 aws_instance.server: Importing from

Example: Using State Import

$ terraform import aws_instance.server i-0f83bd96e9ea45fe3aws_instance.server: Importing from ID ”i-0f83bd96e9ea45fe3”...aws_instance.server: Import complete!Imported aws_instance (ID: i-0f83bd96e9ea45fe3)

aws_instance.server: Refreshing state... (ID: i-0f83bd96e9ea45fe3)

Import success! The resources imported are shown above. These arenow in your Terraform state. Import does not currently generateconfiguration, so you must do this next. If you do not createconfiguration for the above resources, then the next ‘terraform plan‘will mark them for destruction.

$ terraform state listaws_instance.server$ terraform state show aws_instance.serverid = i-0f83bd96e9ea45fe3ami = ami-0044b96favailability_zone = eu-central-1bdisable_api_termination = false...

Martin Schütte | Terraform | AWS UG HH 15/22

Page 16: Terraform: What's New in Version 0.7.x? - mschuette.name · Example:UsingStateImport $ terraform import aws_instance.server i-0f83bd96e9ea45fe3 aws_instance.server: Importing from

Data Sources

• Lookup information from Provider• Currently only few sources, e. g.

• AWS Account-ID• AWS AMI-ID• AWS IAM Policy Document• Consul Keys• Docker Registry Image Metadata (WIP)

Martin Schütte | Terraform | AWS UG HH 16/22

Page 17: Terraform: What's New in Version 0.7.x? - mschuette.name · Example:UsingStateImport $ terraform import aws_instance.server i-0f83bd96e9ea45fe3 aws_instance.server: Importing from

“The Old Way” Example: Pipeline without Data Source

$ packer ami.json | tee | grep ...$ terraform apply -var ”ami=${ami}” ...

Martin Schütte | Terraform | AWS UG HH 17/22

Page 18: Terraform: What's New in Version 0.7.x? - mschuette.name · Example:UsingStateImport $ terraform import aws_instance.server i-0f83bd96e9ea45fe3 aws_instance.server: Importing from

Example: Finding AMIs

# searches for most recent tagged AMI in own accountdata ”aws_ami” ”webami” {most_recent = trueowners = [”self”]

filter {name = ”tag:my_key”values = [”my_value”]

}}

# use AMIresource ”aws_instance” ”web” {instance_type = ”t2.micro”ami = ”${data.aws_ami.webami.id}”

}

Martin Schütte | Terraform | AWS UG HH 18/22

Page 19: Terraform: What's New in Version 0.7.x? - mschuette.name · Example:UsingStateImport $ terraform import aws_instance.server i-0f83bd96e9ea45fe3 aws_instance.server: Importing from

Example: Reading Account & Region

data ”aws_caller_identity” ”current” {}

data ”aws_region” ”current” {current = true

}

resource ”aws_lambda_permission” ”allow_gitlabbots” {statement_id = ”AllowExecutionFromEvents”action = ”lambda:InvokeFunction”function_name = ”${aws_lambda_function.mybot.arn}”principal = ”apigateway.amazonaws.com”source_arn <<EOT

arn:aws:execute-api:${data.aws_region.current.name}:${data.aws_caller_identity.current.account_id}:...

EOT}

Martin Schütte | Terraform | AWS UG HH 19/22

Page 20: Terraform: What's New in Version 0.7.x? - mschuette.name · Example:UsingStateImport $ terraform import aws_instance.server i-0f83bd96e9ea45fe3 aws_instance.server: Importing from

New Links and Resources

• A Comprehensive Guide to Terraformseries of posts by Yevgeniy Brikman (Gruntwork)

• The Terraform Book by James Turnbullto be released late 2016.

Martin Schütte | Terraform | AWS UG HH 20/22

https://blog.gruntwork.io/a-comprehensive-guide-to-terraform-b3d32832baca
https://terraformbook.com/
Page 21: Terraform: What's New in Version 0.7.x? - mschuette.name · Example:UsingStateImport $ terraform import aws_instance.server i-0f83bd96e9ea45fe3 aws_instance.server: Importing from

Terraform 0.8

• Preparations are ongoing• Improved string escape sequence handling• New apply graph creation (experimental in 0.7.8)

Martin Schütte | Terraform | AWS UG HH 21/22

Page 22: Terraform: What's New in Version 0.7.x? - mschuette.name · Example:UsingStateImport $ terraform import aws_instance.server i-0f83bd96e9ea45fe3 aws_instance.server: Importing from

The End

Martin Schütte@m_schuett

[email protected]

slideshare.net/mschuett/

Martin Schütte | Terraform | AWS UG HH 22/22

https://twitter.com/m_schuett
mailto:[email protected]
http://slideshare.net/mschuett/

Infrastructure as Code: Introduction to Terraform

Terraform provider

Terraform: Infrastructure as Code · 2018. 9. 14. · MartinSchütte|Terraform|Kielux’18 } 16/42. terraform graph | dot -Tpdf aws_s3_bucket.importdisk provider.aws aws_sqs_queue.importqueue

Jsonnet, terraform & packer

Terraform: Cloud Configuration Management...2016/09/30  · Example:UsingStateImport $ terraform import aws_db_instance.foo tf-20160927095319078600159ekc aws_db_instance.foo: Importing

Terratest & Jenkins CI/CD with Terraform, Modern ... · terraform init $ cd tf $ terraform init Initializing provider plugins... Terraform has been successfully initialized! You may

Misadventures With Terraform€¦ · entire Terraform structure A dedicated account can allow continuous testing without disruption Testing Testing Testing Lessons Learned (running

CD91 HashiCorp Terraform Azure Provider チュートリアル · 2019-05-30 · de:code 2019 CD91 HashiCorp Terraform Azure Provider チュートリアル Microsoft MVP for Azure

Terraform Introduction

Terraform + Mesos

An introduction to terraform

Automation with Packer and TerraForm

Terraform Basics - Adfinis SyGroupTerraform Basics Be smart. Think open source. Write, Plan, and Create Infrastructure as Code Agenda Introduction to Terraform Setup HCL My first Terraform

MIXX 2013: Terraform Media "House of Cards"

Terraform Basics - docs.adfinis.com · Check > terraform Usage: terraform [-version] [-help] [args] The available commands for execution are listed below. The most

Refactoring terraform

An intro to Docker, Terraform, and Amazon ECS

USE CASE — FINANCIAL Optiv Executes Secure Google Cloud ... · • Implement Terraform Enterprise and Terraform Sentinel as compliance measures to validate deployment configurations

Terraform: Cloud Configuration Management - mschuette.name · ServicesalsoneedConfigurationManagement • Replace“clickpaths”withsourcecodeinVCS • Lifecycleawareness,notjustasetup.sh

Terraform®Wall Panels Product Introductionbmatglobal.com/wp-content/uploads/2013/12/Terraform-Curtain-Wall... · Product Introduction Terraform® wall Panel products are one of

Terraform Q&A - HashiCorp User Group Oslo

Terraform and cloud.ca

Elite brochure | Terraform Realty Wadhwa in Thane

Terraform at Adobe

Effective terraform

Terraform - Infrastructure as Code

HashiCorp Certified - Terraform Associate Certification

Software Testing on the Web - mschuette.name · Codeception MartinSchütte SowareTestingontheWeb 2012-10-13 2/51. . SowareQuality. . . . . Documentation. .. . . . .. . .. . .

Terraform: Configuration Management for Cloud Services

TERRAFORM REALSTATE LIMITED€¦ · TERRAFORM REALSTATE LIMITED Corporate Identity Number: L27200MH1985PLC035841 NOTICE Notice is hereby given that the 33rd Annual General Meeting

Delivering Go.CD with Terraform and Docker

Cool, but… What is the - SUSE · Terraform and Salt to the rescue... Terraform is a tool for building, changing, and versioning infrastructure safely and efficiently Terraform can

Terraform: Cloud Configuration Management (WTC/IPC'16)

Terraform Earth - QCon · Builds Terraform state files by fetching remote resources, think `$ terraform refresh` Manual and distributed changes easily reconciled when AWS is the source

London Hug 19/5 - Terraform in Production