Book Image

Terraform Cookbook

By : Mikael Krief
Book Image

Terraform Cookbook

By: Mikael Krief

Overview of this book

HashiCorp Configuration Language (HCL) has changed how we define and provision a data center infrastructure with the launch of Terraform—one of the most popular and powerful products for building Infrastructure as Code. This practical guide will show you how to leverage HashiCorp's Terraform tool to manage a complex infrastructure with ease. Starting with recipes for setting up the environment, this book will gradually guide you in configuring, provisioning, collaborating, and building a multi-environment architecture. Unlike other books, you’ll also be able to explore recipes with real-world examples to provision your Azure infrastructure with Terraform. Once you’ve covered topics such as Azure Template, Azure CLI, Terraform configuration, and Terragrunt, you’ll delve into manual and automated testing with Terraform configurations. The next set of chapters will show you how to manage a balanced and efficient infrastructure and create reusable infrastructure with Terraform modules. Finally, you’ll explore the latest DevOps trends such as continuous integration and continuous delivery (CI/CD) and zero-downtime deployments. By the end of this book, you’ll have developed the skills you need to get the most value out of Terraform and manage your infrastructure effectively.

Related Content you might be interested in

Current Title:

Small book image
Terraform Cookbook
Mikael Krief
Oct, 2020 | 366 pages
Small book image
Learning DevOps
Mikael Krief
Mar, 2022 | 560 pages
Small book image
HashiCorp Infrastructure Automation Certification Guide
Ravi Mishra
Jul, 2021 | 350 pages
Small book image
Learning DevOps.
Mikael Krief
Oct, 2019 | 504 pages
Table of Contents (10 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Get in touch
1
Setting Up the Terraform Environment
Setting Up the Terraform Environment
Technical requirements
Downloading and installing Terraform manually
Installing Terraform using a script on Linux
Installing Terraform using a script on Windows
Executing Terraform in a Docker container
Writing Terraform configuration in VS Code
Migrating your Terraform configuration to Terraform 0.13
Free Chapter
2
Writing Terraform Configuration
Writing Terraform Configuration
Technical requirements
Configuring Terraform and the provider version to use
Manipulating variables
Using local variables for custom functions
Using outputs to expose Terraform provisioned data
Provisioning infrastructure in multiple environments
Obtaining external data with data sources
Using external resources from other state files
Querying external data with Terraform
Calling Terraform built-in functions
Writing conditional expressions
Manipulating local files with Terraform
Executing local programs with Terraform
Generating passwords with Terraform
3
Building Dynamic Environments with Terraform
Building Dynamic Environments with Terraform
Technical requirements
Provisioning multiple resources with the count property
Using a table of key-value variables with maps
Looping over object collections
Generating multiple blocks with dynamic expressions
4
Using the Terraform CLI
Using the Terraform CLI
Technical requirements
Keeping your Terraform configuration clean
Validating the code syntax
Destroying infrastructure resources
Using workspaces for managing environments
Importing existing resources
Exporting the output in JSON
Tainting resources
Generating the graph dependencies
Debugging the Terraform execution
5
Sharing Terraform Configuration with Modules
Sharing Terraform Configuration with Modules
Technical requirements
Creating a Terraform module and using it locally
Using modules from the public registry
Sharing a Terraform module using GitHub
Using another file inside a custom module
Using the Terraform module generator
Generating module documentation
Using a private Git repository for sharing a Terraform module
Applying a Terrafile pattern for using modules
Testing Terraform module code with Terratest
Building CI/CD for Terraform modules in Azure Pipelines
Building a workflow for Terraform modules using GitHub Actions
6
Provisioning Azure Infrastructure with Terraform
Provisioning Azure Infrastructure with Terraform
Technical requirements
Using Terraform in Azure Cloud Shell
Protecting the Azure credential provider
Protecting the state file in the Azure remote backend
Executing ARM templates in Terraform
Executing Azure CLI commands in Terraform
Using Azure Key Vault with Terraform to protect secrets
Getting a list of Azure resources in Terraform
Provisioning and configuring an Azure VM with Terraform
Building Azure serverless infrastructure with Terraform
Generating a Terraform configuration for existing Azure infrastructure
7
Deep Diving into Terraform
Deep Diving into Terraform
Technical requirements
Creating an Ansible inventory with Terraform
Testing the Terraform configuration using kitchen-terraform
Preventing resources from getting destroyed
Zero-downtime deployment with Terraform
Detecting resources deleted by the plan command
Managing Terraform configuration dependencies using Terragrunt
Using Terragrunt as a wrapper for Terraform
Building CI/CD pipelines for Terraform configurations in Azure Pipelines
Working with workspaces in CI/CD
8
Using Terraform Cloud to Improve Collaboration
Using Terraform Cloud to Improve Collaboration
Technical requirements
Using the remote backend in Terraform Cloud
Using Terraform Cloud as a private module registry
Executing Terraform configuration remotely in Terraform Cloud
Automating Terraform Cloud using APIs
Testing the compliance of Terraform configurations using Sentinel
Using cost estimation for cloud cost resources governance
9
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think

Executing local programs with Terraform

As we saw in the previous recipe regarding file manipulation, apart from infrastructure provisioning, Terraform also allows you to run programs or scripts that are located on the local workstation where Terraform has been installed.

In this recipe, we will learn how to execute a local program inside the Terraform configuration.

Getting ready

For this recipe, we will complete the Terraform configuration that we used in the previous recipe to write a file on the local machine. Our goal will be to execute a PowerShell command with Terraform that will read and display the contents of the file that we have written using Terraform.

Of course, we will have to run this Terraform script on a Windows operating system.

The source code for this recipe is available at https://github.com/PacktPublishing/Terraform-Cookbook/tree/master/CHAP02/files_local_exec.

How to do it…

Perform the following steps:

  1. In the main.tf file, which is in the files directory of the source code from the previous recipe, complete the Terraform configuration with the following code:
resource "null_resource" "readcontentfile" {
  provisioner "local-exec" {
   command = "Get-Content -Path ../mytextfile.txt"
   interpreter = ["PowerShell", "-Command"]
  }
}
  1. Then, in a command-line terminal, execute the Terraform workflow commands, as follows:
terraform init
terraform plan -out="app.tfplan"
terraform apply "app.tfplan"

How it works…

In this recipe, we used null_resource, which is a null provider resource. This resource doesn't allow us to create resources, but rather run programs locally.

In this resource, we have the provisioner block, which is of the local-exec type, which operates on our local machine. Then, in this block, we indicate the command to execute, which is the -Content command of PowerShell. With this, we are telling Terraform to use the PowerShell interpreter to execute this command.

When executing the respective Terraform commands, we get the following result:

As you can see, the text This is my text, which we had written in the file (in the local_file resource), is displayed in the Terraform runtime output.

There's more…

In this recipe, we looked at a simple local-exec command being executed with Terraform. It is also possible to execute several commands that are stored in a script file (Bash, PowerShell, and so on) with a sample Terraform configuration, as shown here:

resource "null_resource" "readcontentfile" {
  provisioner "local-exec" {
    command = "myscript.ps1"
    interpreter = ["PowerShell", "-Command"]
  }
}
The local-exec provisioner sets expectations on the local system, which may not be obvious. This is usually otherwise mitigated by cross-platform builds from providers and Terraform itself, where the implementation should generally work the same on any supported platform (macOS/Linux/Windows).

In addition, it is important to know that the local-exec provisioner, once executed, ensures that the Terraform state file cannot be executed a second time by the terraform apply command.

To be able to execute the local-exec command based on a trigger element, such as a resource that has been modified, it is necessary to add a trigger object inside null_resource that will act as the trigger element of the local-exec resource.

The following example code uses a trigger, based on timestamp, to execute the local-exec code at each execution step of Terraform:

resource "null_resource" "readcontentfile" {
  triggers = {
   trigger = timestamp()
  }
  provisioner "local-exec" {
   command = "Get-Content -Path ../mytextfile.txt"
   interpreter = ["PowerShell", "-Command"]
  }
}

In this example, the trigger is a timestamp that will have a different value each time Terraform is run.

We will look at another concrete use case of local-exec in the Executing Azure CLI commands in Terraform recipe in Chapter 6, Provisioning Azure Infrastructure with Terraform.

See also

The local-exec provisioner documentation is available at https://www.terraform.io/docs/provisioners/local-exec.html.

Previous Section
End of Section 14
Next Section