Terraform: Difference between revisions
(3 intermediate revisions by the same user not shown) | |||
Line 39: | Line 39: | ||
=== Syntax === | === Syntax === | ||
* https://www.terraform.io/docs/configuration-0-11/syntax.html | * https://www.terraform.io/docs/configuration-0-11/syntax.html | ||
=== Resource === | |||
==== Resource behavior ==== | |||
A resource block describes a user's intent for a particular infrastructure object to exist with the given settings. If the user is writing a new configuration for the first time, the resources it defines will exist only in the configuration, and will not yet represent real infrastructure objects in the target platform. | |||
Applying a Terraform configuration is the process of creating, updating, and destroying real infrastructure objects in order to make their settings match the configuration. | |||
When Terraform create a new infrastructure object represented by a resource block, the identifier for that real object is saved in Terraform's state, allowing it to be updated and destroyed in response to future changes. For resource blocks that already have an associated infrastructure object in the state, Terraform compares the actual configuration of the object with the arguments given in the configuration and, if necessary, updates the object to match the configuration. | |||
This general behavior applies for all resources, regardless of type. The details of what it means to create, update, or destroy a resource type, but this standard set of verbs is common across them all. | |||
The meta-arguments within resource blocks, documented in the sections below, allow some details of this standard resource behavior to be customized on a per-resource basis. | |||
* https://www.terraform.io/docs/configuration/resources.html#resource-behavior | |||
==== lifecycle ==== | |||
=== Provider === | === Provider === | ||
Line 47: | Line 64: | ||
region = "us-central1" | region = "us-central1" | ||
} | } | ||
</pre> | |||
=== Environment Variables === | |||
==== TF_LOG ==== | |||
로그 레벨을 설정한다. | |||
* TRACE | |||
* DEBUG | |||
* INFO | |||
* WARN | |||
* ERROR | |||
<pre> | |||
$ export TF_LOG=TRACE | |||
</pre> | </pre> | ||
Line 76: | Line 105: | ||
* README | * README | ||
: The root module and any nested modules should have README files. This file should be named README or README.md. The latter will be treated as markdown. There should be a description of the module and what it should be used for. If you want to include an example for how this module can be used in combination with other resources, put it in an example directory. Consider including a visual diagram depicting the infrastructure resources the module may create and their relationship. | : The root module and any nested modules should have README files. This file should be named README or README.md. The latter will be treated as markdown. There should be a description of the module and what it should be used for. If you want to include an example for how this module can be used in combination with other resources, put it in an example directory. Consider including a visual diagram depicting the infrastructure resources the module may create and their relationship. | ||
A minimal recommended module following the standard structure is shown below. While the root module is the only required element, we recommend the structure below as the minimum. | |||
<pre> | |||
$ tree minimal-module/ | |||
. | |||
├── README.md | |||
├── main.tf | |||
├── variables.tf | |||
├── outputs.tf | |||
</pre> | |||
=== See also === | === See also === |
Latest revision as of 08:44, 26 June 2020
Overview
Terraform 내용 정리.
CLI
Usage: terraform [-version] [-help] <command> [args] Common commands: apply Builds or changes infrastructure console Interactive console for Terraform interpolations destroy Destroy Terraform-managed infrastructure env Workspace management fmt Rewrites config files to canonical format get Download and install modules for the configuration graph Create a visual graph of Terraform resources import Import existing infrastructure into Terraform init Initialize a Terraform working directory output Read an output from a state file plan Generate and show an execution plan providers Prints a tree of the providers used in the configuration refresh Update local state file against real resources show Inspect Terraform state or plan taint Manually mark a resource for recreation untaint Manually unmark a resource as tainted validate Validates the Terraform files version Prints the Terraform version workspace Workspace management All other commands: 0.12upgrade Rewrites pre-0.12 module source code for v0.12 debug Debug output management (experimental) force-unlock Manually unlock the terraform state push Obsolete command for Terraform Enterprise legacy (v1) state Advanced state management
Configurations
Syntax
Resource
Resource behavior
A resource block describes a user's intent for a particular infrastructure object to exist with the given settings. If the user is writing a new configuration for the first time, the resources it defines will exist only in the configuration, and will not yet represent real infrastructure objects in the target platform.
Applying a Terraform configuration is the process of creating, updating, and destroying real infrastructure objects in order to make their settings match the configuration.
When Terraform create a new infrastructure object represented by a resource block, the identifier for that real object is saved in Terraform's state, allowing it to be updated and destroyed in response to future changes. For resource blocks that already have an associated infrastructure object in the state, Terraform compares the actual configuration of the object with the arguments given in the configuration and, if necessary, updates the object to match the configuration.
This general behavior applies for all resources, regardless of type. The details of what it means to create, update, or destroy a resource type, but this standard set of verbs is common across them all.
The meta-arguments within resource blocks, documented in the sections below, allow some details of this standard resource behavior to be customized on a per-resource basis.
lifecycle
Provider
provider "google" { credentials = "${file("account.json")}" project = "my-project-id" region = "us-central1" }
Environment Variables
TF_LOG
로그 레벨을 설정한다.
- TRACE
- DEBUG
- INFO
- WARN
- ERROR
$ export TF_LOG=TRACE
Module
A module is a container for multiple resources that are used together. Modules can be used to create lightweight abstractions, so that you can describe your infrastructure in terms of its architecture, rather than directly in terms of physical objects.
The '.tf' files in your working directory when you run 'terraform plan' or 'terraform apply' together form the root module. That module may call other modules and connect them together by passing output values from one to input values of another.
Structure
- Input variables to accept values from the calling module.
- Output variables to return results to the calling module, which it can then use to populate arguments elsewhere.
- Resources to define one or more infrastructure objects that the module will manage.
To define a module, create a new directory for it and place one or more .tf files inside just as the user would do for a root module. Terraform can load modules either from local relative paths or from remote repositories; if a module will be re-used by lots of configurations you may wish to place it in its own version control repository.
Modules can also call other modules using a module block, but the recommendation is keeping the module tree relatively flat and using module composition as an alternative to a deelpy-nested tree of modules, because this makes the individual modules easier to re-use in different combinations.
When to write a module
In principle any combination of resources and other constructs can be factored out into a module, but over-using modules can make your overall terraform configuration harder to understand and maintain.
A good module should raise the level of abstraction by describing a new concept in your architecture that is constructed from resource types offered by providers.
Standard module structure
The standard module structure is a file and directory layout we recommend for reusable distributed in separate repositories. Terraform tooling is built to understand the standard module structure and use that structure to generate documentation, index modules for the module registry, and more.
- Root module
- This is the only required element for the standard module structure. Terraform files must exist in the root directory of the repository. This should be the primary entrypoint for the module and is expected to be opinionated.
- README
- The root module and any nested modules should have README files. This file should be named README or README.md. The latter will be treated as markdown. There should be a description of the module and what it should be used for. If you want to include an example for how this module can be used in combination with other resources, put it in an example directory. Consider including a visual diagram depicting the infrastructure resources the module may create and their relationship.
A minimal recommended module following the standard structure is shown below. While the root module is the only required element, we recommend the structure below as the minimum.
$ tree minimal-module/ . ├── README.md ├── main.tf ├── variables.tf ├── outputs.tf