Terraform 3 of 10: Input Variables using AWS Cloud9

Background

This hands-on shows how input variables can be used with Terraform, giving you more flexibility than hardcoded values.

1 of 19. Open Terraform documentation on aws_s3_bucket

Terraform Registry > Providers > AWS > Documentation >S3 (Simple Storage) > aws_s3_bucket

Resource: aws_s3_bucket

2 of 19. Open your AWS Cloud9 environment

Open your terraform.tf, resources.tf, and the terminal

Creating An Integrated Developer Environment (IDE) in the Cloud in Two Minutes!: AWS Cloud9(Step-by-Step)

3 of 19. Edit the terraform.tf, deleting Aure

Remove this part of the file, then save:

azurerm = { source = "hashicorp/azurerm" version = "=3.0.0" }

4 of 19. Update the resources.tf file, You'll now make a few aws s3 buckets using the example documentation as a reference

Note: This is NOT the most efficient way to do this. A more efficient method will be revealed in a future part of this series. Reminder: S3 bucket names should be globally unique, so you'll have to come up with your own names. The resources.tf should look similar to the image, with it only containing lines referring to three S3 buckets.

resource "aws_s3_bucket" "example1" { bucket = "humangov-tf-test-bucket1xlewis" tags = { Application = "HumanGov" ProjectId = "HGV20392" } } resource "aws_s3_bucket" "example2" { bucket = "humangov-tf-test-bucket2xlewis" tags = { Application = "HumanGov" ProjectId = "HGV20392" } } resource "aws_s3_bucket" "example3" { bucket = "humangov-tf-test-bucket3xlewis" tags = { Application = "HumanGov" ProjectId = "HGV20392" } }

5 of 19. Browse to your terraform directory, and run init, and plan with the out option.

Remember: The out option saves the plan to a file. You should be familiar with running 'terraform init' by now. Notice that you do not get the error about not saving the plan.

terraform init terraform plan -out=tcb-plan

6 of 19. Apply the plan.

Notice that because the plan was provided, you did not have to agree to apply the plan.

terraform apply tcb-plan

7 of 19. View the created buckets under S3 console.

If you check the buckets you will see the tags you applied.

8 of 19. Open terraform documentation on Input Variables

Define Input Variables

9 of 19. Create a file: variables.tf.

You decide that you want to use a variable for the application and ProjectID, because they are identical across all the buckets.

variable "application" { default = "HumanGov" } variable "projectid" { default = "HGV20392" }

10 of 19. Update resources.tf to use variables

Application = var.application ProjectId = var.projectid

11 of 19. Attempt to update your tcb-plan file.

Notice that there are no changes, because the variables worked as well as the hard-coding.

terraform plan -out=tcb-plan

12 of 19. Modify variables.tf to not include values for the variable.

Notice that I have commmented the variables in the variables.tf

variable "application" { #default = "HumanGov" } variable "projectid" { #default = "HGV20392" }

13 of 19. Run your plan -out again.

You should be prompted to provide values for the variables. Because the variables I provided did not match what was already provisioned, notice that the plan is tracking changes to the tags on each bucket.

14 of 19. Use environment variables (TF_VAR) in Terraform

Export the environment variable, the run the plan out again. You should be prompted ONLY for the projectID, as the variable you exported will be used for the application tag.

export TF_VAR_application=HumanGov3 terraform plan -out=tcb=plan

15 of 19. Use command line to pass the variable.

Try a couple commands, one will pass one variable, the other passes both variables.

terraform plan -var="application=HumanGov4" -out=tcb-plan terraform plan -var="application=HumanGov005" -var="projectid=HGV000005" -out=tcb-plan

16 of 19. Use the terraform.tfvars file to pass the variables.

Create a file called terraform.tfvars and place variables in the file. Run the plan -out again. Notice that this will also update the file.

application = "HumanGov007" projectid = "HGV007" terraform plan -out=tcb-plan

17 of 19. Lets try another way, with the -var-file command line option

Create a new file, testing.tfvars, and run the -out again. The variables will come from the file passed at the command line.

application = "HumanGovg00898765" projectid = "HGV00898765" terraform plan -var-file="testing.tfvars" -out=tcb-plan

18 of 19. Let's apply that last plan we created

If you check your S3 buckets, they should have updated tags.

terraform apply tcb-plan

19 of 19. Cleanup

Destroy the created resources. Check your S3 console, and validate the buckets are gone.

terraform destroy

Reference

Define Input Variables

Resource: aws_s3_bucket

Creating An Integrated Developer Environment (IDE) in the Cloud in Two Minutes!: AWS Cloud9(Step-by-Step)

TF_VAR_name

Input Variables

Variable Definitions (.tfvars) Files

Comments

Post a Comment

Popular posts from this blog

Orphaned No More: Adopting AWS Lambda

Image
Background HumanGov is a Model Automated Multi-Tenant Architecture (MAMA) that is meant to be used by the 50 states for personnel tracking. Currently the architecture is fully automated on AWS. The architecture is not ready for go-live. All actions so far are for a proof-of-concept that is presented to the Chief Technical Officer (CTO) for review. During the weekly team meeting, Ko (User Experience Lead) reports that his team has performed thousands of tests against the infrastructure, with moves, adds, and changes, and is not finding any issues in the application user interface. Woo (Infrastructure Lead) reports that there are hundreds of 'orphaned' files in the S3 bucket. (These files are considered 'orphaned' because they do not have corresponding records in the DynamoDB table.) Kim (Tech Lead) reports that there is not a trigger to delete the file from the bucket when a user is deleted from the DynamoDB database. Brady (Lawyer) reports that not deleting t
Read more

Containing the Chaos! | A Three-Part Series Demonstrating the Usefulness of Containerization to HumanGov

Background HumanGov is a Model Automated Multi-Tenant Architecture (MAMA) that is meant to be used by the 50 states for personnel tracking. Currently the architecture requires Amazon Elastic Compute Cloud (EC2) instances that are maintained by the HumanGov systems administrators. The systems administrators handle all the patching, operations, etc. Due to states wanting their data separate from each other, each state gets a separate set of EC2 instances, which means that as the application scales from one state up to 50 states, the systems administrators will have to patch 50x as many EC2 instances. The system administrators report that they have begun to schedule more and more overtime to handle the maintenance windows for updating the EC2 instances. The lead developer remarked that it was taking longer and longer for new application deployments to get rolled out as the infrastructure grew and more states came on board. By the way, the development environment does not have standa
Read more

Ansible is the Answer! | A Three-Part Series Demonstrating the Usefulness of Ansible to HumanGov

This is a three (3) part series that demonstrates how Ansible can be useful/leveraged for configuring your infrastructure. The background story here is that HumanGov is a multi-tenant cloud application that requires that each of the fifty (50) states has its own separate infrastructure. The HumanGov Infrastructure Engineers are trying to figure out how they can get it done, and they are considering using Ansible to help them deploy the application. Part 1 sets up the base infrastructure for the scenario. The HumanGov Infrastructure Engineers are accustomed to using Terraform to efficiently deploy infrastructure, but they are not very experienced with Ansible. Part 1 of 3: HumanGov: Ansible is the Answer! | Terraform | AWS Cloud9 | AWS IAM | AWS EC2 | AWS DynamoDB | AWS S3 Part 2 attempts to setup HumanGov via a MANUAL process. Part 2 goes through the steps to MANUALLY install Python, Nginx AND application files as well as MANUALLY configuring the firewall in Ubuntu. After g
Read more