ghndrx/terraform
1
0
Fork 0
mirror of https://github.com/ghndrx/terraform.git synced 2026-02-10 06:45:01 +00:00
Code Issues Packages Projects Releases Wiki Activity

update syntax

Browse Source
This commit is contained in:
gregory hendrickson
2023-11-15 14:41:24 -08:00
parent c1e1e9feaf
commit fa947830fe
1 changed files with 51 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

58
terraform.md
View File

@@ -405,6 +405,7 @@ Alternatives to Provisioners:
* Cloud-init * Cloud-init
***Cloud-init supports chef and puppet, so you can just use cloud-init*** ***Cloud-init supports chef and puppet, so you can just use cloud-init***
```
#cloud-config #cloud-config
puppet: puppet:
install: true install: true
@@ -422,6 +423,7 @@ Alternatives to Provisioners:
conf: conf:
agent: agent:
server: "puppetserver.example.org" server: "puppetserver.example.org"
```
## Local-exec ## Local-exec
* Local-exec is used to run scripts on the machine running Terraform * Local-exec is used to run scripts on the machine running Terraform
@@ -482,6 +484,7 @@ Remote Commands have three different modes:
* Scripts * Scripts
* Scripts commands are specified as a remote script path * Scripts commands are specified as a remote script path
```
resource "aws_instance" "web" { resource "aws_instance" "web" {
# ... # ...
provisioner "remote-exec" { provisioner "remote-exec" {
@@ -491,7 +494,9 @@ Remote Commands have three different modes:
] ]
} }
} }
```
```
resource "aws_instance "web" { resource "aws_instance "web" {
# ... # ...
provisioner "remote-exec" { provisioner "remote-exec" {
@@ -510,6 +515,7 @@ Remote Commands have three different modes:
} }
} }
} }
```
## File Provisioner ## File Provisioner
* File provisioner is used to copy files or directories from the machine executing Terraform to the newly created resource * File provisioner is used to copy files or directories from the machine executing Terraform to the newly created resource
@@ -518,6 +524,8 @@ Remote Commands have three different modes:
* File provisioner is not recommended and should be avoided if possible * File provisioner is not recommended and should be avoided if possible
* More complex tasks its recommended to use Cloud-Init, and strongly recommended in all cases to bake an image with Packer or EC2 Image Builder * More complex tasks its recommended to use Cloud-Init, and strongly recommended in all cases to bake an image with Packer or EC2 Image Builder
***May need a connection block to specify the connection type, user, and private key*** ***May need a connection block to specify the connection type, user, and private key***
```
resource "aws_instance" "web" { resource "aws_instance" "web" {
# ... # ...
provisioner "file" { provisioner "file" {
@@ -525,7 +533,9 @@ Remote Commands have three different modes:
destination = "/etc/app.conf" destination = "/etc/app.conf"
} }
} }
```
```
resource "aws_instance" "web" { resource "aws_instance" "web" {
# ... # ...
provisioner "file" { provisioner "file" {
@@ -533,7 +543,9 @@ Remote Commands have three different modes:
destination = "/etc/" destination = "/etc/"
} }
} }
```
```
resource "aws_instance" "web" { resource "aws_instance" "web" {
# ... # ...
provisioner "file" { provisioner "file" {
@@ -546,6 +558,7 @@ Remote Commands have three different modes:
} }
} }
} }
```
## Connection ## Connection
* A connection block tells a provisioner or resource how to connect to the resource * A connection block tells a provisioner or resource how to connect to the resource
@@ -564,6 +577,7 @@ With SSH you can connect through a bastion host, eg:
* bastion_host_key * bastion_host_key
* bastion_certificate * bastion_certificate
```
provisioner "file" { provisioner "file" {
source = "conf/app.conf" source = "conf/app.conf"
destination = "/etc/app.conf" destination = "/etc/app.conf"
@@ -575,7 +589,9 @@ With SSH you can connect through a bastion host, eg:
host = "${aws_instance.web.public_ip}" host = "${aws_instance.web.public_ip}"
} }
} }
```
```
provisioner "file" { provisioner "file" {
source = "conf/app.conf" source = "conf/app.conf"
destination = "c:/app/app.conf" destination = "c:/app/app.conf"
@@ -587,6 +603,7 @@ With SSH you can connect through a bastion host, eg:
host = "${var.host}" host = "${var.host}"
} }
} }
```
## Null Resources ## Null Resources
* null_resource is a placeholder resource that have no specific association to a provider resources * null_resource is a placeholder resource that have no specific association to a provider resources
@@ -594,11 +611,14 @@ With SSH you can connect through a bastion host, eg:
Triggers is a map of values which should cause this set of provisioners to re-run. Triggers is a map of values which should cause this set of provisioners to re-run.
Values are meant to be interpolated references to other resources in the configuration. Values are meant to be interpolated references to other resources in the configuration.
```
resource "aws_instance" "cluster" { resource "aws_instance" "cluster" {
count = 3 count = 3
# ... # ...
} }
```
```
resource "null_resource" "example" { resource "null_resource" "example" {
triggers = { triggers = {
cluster_instance_ids = "${join(",", aws_instance.cluster.*.id)}" cluster_instance_ids = "${join(",", aws_instance.cluster.*.id)}"
@@ -607,11 +627,13 @@ Values are meant to be interpolated references to other resources in the configu
command = "echo ${aws_instance.web.private_ip} >> private_ips.txt" command = "echo ${aws_instance.web.private_ip} >> private_ips.txt"
} }
} }
```
## Terraform Data ## Terraform Data
* Similar to null_resource, data sources are used to define a resource that does not create anything * Similar to null_resource, data sources are used to define a resource that does not create anything
* Data sources are used to fetch data that is used by other resources * Data sources are used to fetch data that is used by other resources
```
resource "null_resource" "example" { resource "null_resource" "example" {
triggers = { triggers = {
version = var.version version = var.version
@@ -620,7 +642,11 @@ Values are meant to be interpolated references to other resources in the configu
command = "echo ${self.triggers.version}" command = "echo ${self.triggers.version}"
} }
} }
```
can be written as: can be written as:
```
resource "terraform_data" "example" { resource "terraform_data" "example" {
triggers = { triggers = {
version = var.version version = var.version
@@ -629,6 +655,7 @@ can be written as:
command = "echo ${self.triggers.version}" command = "echo ${self.triggers.version}"
} }
} }
```
## Terraform Providers ## Terraform Providers
* Terraform providers are responsible for understanding API interactions and exposing resources * Terraform providers are responsible for understanding API interactions and exposing resources
@@ -675,29 +702,36 @@ When creating a module you need to connect it to a version control system (VCS)
### Terraform Providers Command ### Terraform Providers Command
Get a list of the current providers you are using Get a list of the current providers you are using
```
terraform providers terraform providers
Providers required by configuration: Providers required by configuration:
. .
├── provider[registry.terraform.io/hashicorp/aws] ├── provider[registry.terraform.io/hashicorp/aws]
└── provider[registry.terraform.io/hashicorp/null] └── provider[registry.terraform.io/hashicorp/null]
```
Set an alternative provider Set an alternative provider
```
provider "aws" { provider "aws" {
region = "us-east-1" region = "us-east-1"
alias = "east" alias = "east"
} }
```
How to reference an alias provider How to reference an alias provider
```
resource "aws_instance" "web" { resource "aws_instance" "web" {
provider = aws.east provider = aws.east
# ... # ...
} }
```
How to set alias provider for a parent module How to set alias provider for a parent module
```
terraform { terraform {
required_providers { required_providers {
mycloud = { mycloud = {
@@ -707,17 +741,20 @@ How to set alias provider for a parent module
} }
} }
} }
```
***~>1.0.0 means any version greater than or equal to 1.0.0***
***~>1.0.0 means any version greater than or equal to 1.0.0***
How to set a alias provider for a child module How to set a alias provider for a child module
```
module "vpc" { module "vpc" {
source = "./vpc" source = "./vpc"
providers = { providers = {
aws = aws.east aws = aws.east
} }
} }
```
## Terraform Modules ## Terraform Modules
Terraform module is a group of configuration files that provide common functionality. Terraform module is a group of configuration files that provide common functionality.
@@ -760,14 +797,18 @@ Terraform Language consists of only a few basic elements:
* Expressions - represents a value, either literally or by referencing and combining other values * Expressions - represents a value, either literally or by referencing and combining other values
* They appear as values for arguments, or within other expressions. * They appear as values for arguments, or within other expressions.
```
resource "aws_vpc" "main" { resource "aws_vpc" "main" {
cidr_block = "var.base_cidr_block" cidr_block = "var.base_cidr_block"
} }
```
```
<BLOCK TYPE> "<BLOCK LABEL>" "<BLOCK LABEL>" { <BLOCK TYPE> "<BLOCK LABEL>" "<BLOCK LABEL>" {
# Block body # Block body
<IDENTIFIER> = <EXPRESSION> # Argument <IDENTIFIER> = <EXPRESSION> # Argument
} }
```
HCL is the low-level language that Terraform uses to parse and load configuration files. HCL is also used by other Hashicorp tools like Packer, Consul, Nomad, Vault, etc. HCL is the low-level language that Terraform uses to parse and load configuration files. HCL is also used by other Hashicorp tools like Packer, Consul, Nomad, Vault, etc.
* Hashicorp Configuration Language (HCL) is a configuration language built by Hashicorp * Hashicorp Configuration Language (HCL) is a configuration language built by Hashicorp
@@ -778,6 +819,7 @@ Alternate JSON Syntax
This syntax is useful when generating portions of a configuration programmatically, since it can be easier to generate JSON than HCL. This syntax is useful when generating portions of a configuration programmatically, since it can be easier to generate JSON than HCL.
```
{ {
"resource": { "resource": {
"aws_vpc": { "aws_vpc": {
@@ -787,6 +829,7 @@ This syntax is useful when generating portions of a configuration programmatical
} }
} }
} }
```
## Terraform Settings ## Terraform Settings
The special terraform configuration block type eg. terraform {...} The special terraform configuration block type eg. terraform {...}
@@ -796,6 +839,7 @@ The special terraform configuration block type eg. terraform {...}
* experimments - Specifies experimental features * experimments - Specifies experimental features
* provider_meta - Specifies provider meta-arguments * provider_meta - Specifies provider meta-arguments
```
terraform { terraform {
required_version = ">= 0.13" required_version = ">= 0.13"
required_providers { required_providers {
@@ -809,4 +853,4 @@ The special terraform configuration block type eg. terraform {...}
module_variable_optional_attrs = true module_variable_optional_attrs = true
} }
} }
```