Associate Exam Flashcards

Question

How local path must begin for local module

Answer 1

"./" or "../"

Answer 2

- object - list

Answer 3

terraform providers

Answer 4

Automatic unlocking failed

Answer 5

- User reference - Input to other resources being created via terraform

Answer 6

Resource block

Answer 7

The output will provide all the attributes associated with the resource

Answer 8

A way to output specific attributes of a resource

Answer 9

- Environment variables - Command Line Flags - From a File - Variable Defaults

Answer 10

the type argument in a variable block allows you to restrict the type of value that will be accepted as the value for a variable

Answer 11

Sequential list of values identified by their position. Starts with 0 [ "apple", "orange", "pear" ]

Answer 12

a group of values identified by name labels, like { name = "Mabel", age = "52" }

Answer 13

var.[position (i.e. 1)]

Answer 14

A local value assigns a name to an expression, allowing it to be used multiple times within a module without repeating it.

Answer 15

function(argument 1, argument 2)

Answer 16

Numeric String Collection Encoding Filesystem Date and Time Hash and Crypto IP Network Type Conversion

Answer 17

terraform console

Answer 18

retrieves the value of a single element from a map, given its key. If the given key does not exist, a the given default value is returned instead.

Answer 19

retrieves a single element from a list.

Answer 20

Data sources allow data to be fetched or computed for use elsewhere in Terraform configuration.

Answer 21

You can set TF\_LOG to one of the log levels

Answer 22

by exporting the logs and setting a verbosity level from the local console - export TF\_LOG=

Answer 23

by specifying a log path to export the TF logs to - export TF\_LOG\_PATH=

Answer 24

terraform validate

Answer 25

The state allows terraform to map real world resources to existing configuration. Terraform stores the state of the infrastructure in TF files

Answer 26

The specific configuration defined in a resource block is what creates a desired state

Answer 27

Terraform refresh fetches the latest information about the current state of your infrastructure.

Answer 28

Match the desired state with the current state

Answer 29

Shows all information within the terraform state file

Answer 30

.terraform/plugins directory

Answer 31

Yes by providing a version statement in the provider configuration block

Answer 32

They are automatically downloaded during terraform init

Answer 33

Manually installed locally

Answer 34

- ~/.terraform.d/plugins directory - All manual plugins should be copied into the above directory - Terraform init will read from the ~/.terraform/plugins directory

Answer 35

Provides the ability to configure an added resource using a defined script

Answer 36

- local-exec - remote-exec

Answer 37

local-exec provisioners allow us to invoke local executable after resource is created

Answer 38

Remote-exec provisioners allow to invoke scripts directly on the remote server

Answer 39

connection block with login information

Answer 40

- Creation-Time Provisioner - Destroy-Time Provisioner

Answer 41

- creation time provisioners are only run during creation, not during updating or any other lifecycle - If a creation-time provisioner fails, the resource is marked as tainted

Answer 42

destroy provisioners are run before the resource is destroyed

Answer 43

when = destroy is added to the provisioner block

Answer 44

Ignore the error and continue with creation or destruction

Answer 45

Dont Repeat Yourself

Answer 46

modules that have already been written by the TF community

Answer 47

check the registry Note and Inputs section of the resource group

Answer 48

Terraform allows us to have multiple workspaces, with each of the workspaces we can have different set of environment variables associated.

Answer 49

terraform workspace

Answer 50

- delete - list - new - select - show

Answer 51

what environment you are in

Answer 52

Whenever you are performing a write operation, terraform would lock the state file.

Answer 53

integrate dynamodb

Answer 54

Update the configuration file to include the new resources.

Answer 55

The terraform refresh command is used to reconcile the state Terraform knows about (via its state file) with the real-world infrastructure. This can be used to detect any drift from the last-known state, and to update the state file. This does not modify infrastructure, but does modify the state file.

Answer 56

the resource is marked as tainted

Answer 57

force-unlock

Answer 58

terraform login

Answer 59

terraform show

Answer 60

postgresql

Answer 61

TF\_VAR\_name

Answer 62

terraform init -plugin-dir=PATH

Answer 63

terraform force-unlock [options] LOCK\_ID [DIR]

Answer 64

- azurerm - gcs

Answer 65

tarraform refresh

Answer 66

Terraform uses local backend.

Answer 67

**Purpose and Scope: **Terraform CLI Workspaces: These are used to manage multiple state files within a single working directory, providing isolated environments for different configurations or stages of an infrastructure project (e.g., development, staging, production) [3]. Terraform Cloud Workspaces: These are designed for managing infrastructure in a more collaborative and scalable way, offering additional features such as remote state management, VCS integration, and policy enforcement. Terraform Cloud workspaces are better suited for long-lived environments and team collaboration [1, 5]. **State Management:** Terraform CLI Workspaces: State is stored locally or remotely (e.g., in an S3 bucket) but managed from the local CLI environment. Terraform Cloud Workspaces: State is stored and managed remotely in Terraform Cloud, providing built-in state locking and history for enhanced safety and collaboration [1].

Answer 68

provider.tf – containing the terraform block, s3 backend definition, provider configurations, and aliases. main.tf – containing the resource blocks which define the resources to be created in the target cloud platform. variables.tf – containing the variable declarations used in the resource blocks. output.tf – containing the output that needs to be generated on successful completion of “apply” operation. *.tfvars – containing the environment-specific default values of variables.

Answer 69

By services – the team may include all the components required to support a particular business service in one file. This file includes all the databases, compute resources, network configs, etc., in a single file. The file is named as per the service being supported. Thus, while doing the root cause analysis (RCA), we already know which Terraform file needs to be investigated. By components – it may be decided to segregate the resource blocks based on the nature of the components used. A Terraform project may have a single file to manage all the databases. Similarly, all network configurations, compute resources, etc., are managed in their individual files.

Answer 70

Terraform supports three primary types of provisioners: **File Provisioner:** Used for copying files from the local machine to the newly created resource. Example use case: Deploying a configuration file to a remote server [3]. **Local-Exec Provisioner: **Executes commands on the local machine where Terraform is run. Example use case: Running a script to configure infrastructure after creation [3]. **Remote-Exec Provisioner: **Runs commands on the remote resource after it is created. Example use case: Running configuration management tools on a remote server [5]. Provisioners are typically used for tasks that cannot be accomplished directly through Terraform's resource model, such as running custom scripts or commands during the provisioning process

Answer 71

We can use any name for a variable except for: source, version, providers, count, for_each, lifecycle, depends_on and locals. We have used the variable name as "providers". This is not a valid identifier

Answer 72

No, you cannot delete the default Terraform workspace. The default workspace is a special workspace that is always present and cannot be deleted. Terraform starts with a single workspace called "default," and this workspace cannot be removed to ensure that there is always a workspace available for managing state [1]. If you attempt to delete the default workspace, Terraform will fail with an error, as it requires the default workspace to be present [3].

Answer 73

For local state, Terraform stores the workspace states in a directory called terraform.tfstate.d. Within this directory, it creates sub-directories for each workspace to manage multiple states with a single configuration directory

Answer 74

The valid sub-commands of the Terraform state command include: terraform state list: Lists all resources in the state file or specific resources matching given addresses [1]. terraform state show: Displays detailed state information about a single resource [2]. terraform state mv: Moves an item in the state file [2]. terraform state pull: Pulls the current state and outputs it in JSON format [4]. terraform state push: Updates remote state from a local state file [2]. terraform state rm: Removes items from the state file [3]. terraform state replace-provider: Replaces provider references in the state [2].

Answer 75

Terraform state show "Address"

Answer 76

Terraform Sentinel is a policy-as-code framework developed by HashiCorp that allows you to enforce policies on Terraform configurations, states, and plans. It provides a way to define, enforce, and manage compliance and governance policies as code. Here are some key features of Terraform Sentinel: Policy Enforcement: Sentinel can enforce rules on Terraform plans and configurations before any infrastructure changes are applied. This ensures that all changes comply with organizational policies and standards [1]. Integration with Terraform Enterprise: Sentinel is tightly integrated with Terraform Enterprise, enabling centralized policy management and enforcement across your infrastructure deployments [2]. Policy Language: Sentinel uses a custom policy language that allows you to create complex policies. It includes useful functions and imports to define rules and evaluate Terraform configurations [1].

Answer 77

keywords in the same module

Answer 78

The for_each meta-argument in Terraform accepts the following inputs: Map: A collection of key-value pairs. Set: A collection of unique values. These inputs are used to iterate over a data structure to configure a set of similar resources, modules, or data blocks. Unlike most arguments, the value for for_each must be known before Terraform performs any remote operations [1].

Answer 79

terraform init

Answer 80

When the provider version is not specified in the terraform block, Terraform will use the latest version available. This behavior can lead to unexpected changes in the provider version used by your configuration, potentially causing compatibility issues if the latest version introduces breaking changes. It's recommended to always specify the provider version explicitly in the terraform block to ensure predictable behavior and avoid compatibility issues.

Answer 81

**description**: This argument is used to provide a description of the output value. It is helpful for documenting the purpose and content of the output. output "example" { value = aws_instance.example.public_ip description = "The public IP address of the example instance." } sensitive: When set to true, this argument marks the output value as sensitive. Sensitive values will be hidden in the CLI output to avoid displaying sensitive information. output "example_password" { value = aws_db_instance.example.password sensitive = true } **depends_on: **This argument allows you to specify dependencies explicitly. This ensures that the output value is only calculated after the specified dependencies are fully created or updated. hcl Copy code output "example" { value = aws_instance.example.public_ip depends_on = [aws_instance.example] }

Answer 82

No, you cannot use dynamic blocks to generate meta-argument blocks such as lifecycle and provisioner blocks. Dynamic blocks are specifically designed to generate repeated nested blocks of configuration, like those for defining multiple AWS instances or Google Cloud Storage buckets. Meta-argument blocks, on the other hand, are used to configure special behaviors of resources (like lifecycle for resource lifecycle management or provisioner for defining provisioners) and are not supported for dynamic generation. These blocks must be explicitly defined in the resource configuration.

Answer 83

True In the UI and VCS workflow, every workspace is associated with a specific branch of a VCS repo of Terraform configurations. Terraform Cloud registers webhooks with your VCS provider when you create a workspace, then automatically queues a Terraform run whenever new commits are merged to that branch of workspace's linked repository.

Answer 84

Resource Attributes: resource_type.resource_name.attribute_name, where resource_type is the type of the resource, resource_name is the name of the resource, and attribute_name is the attribute you want to reference. Example: aws_instance.example.public_ip Variable Attributes: var.variable_name, where variable_name is the name of the variable you want to reference. Example: var.region Output Attributes: output.output_name, where output_name is the name of the output you want to reference. Example: output.ip_address Data Source Attributes: data.data_source_name.attribute_name, where data_source_name is the name of the data source and attribute_name is the attribute you want to reference. Example: data.aws_ami.ubuntu.id

Answer 85

A dynamic block can only generate arguments that belong to the resource type, data source, provider or provisioner being configured. It is not possible to generate meta-argument blocks such as lifecycle and provisioner blocks , since Terraform must process these before it is safe to evaluate expressions.

Answer 86

-refresh=false

Answer 87

The lifecycle meta-argument in Terraform allows users to control the behavior of resource creation, updates, and deletion. The available arguments within a lifecycle block are: create_before_destroy: Ensures that a new resource is created before the old resource is destroyed. This is useful for resources where downtime needs to be minimized. prevent_destroy: Prevents Terraform from destroying the resource. If a terraform destroy or any plan that would result in destruction is applied, it will fail. ignore_changes: Specifies attributes of a resource that should be ignored during updates. This is useful when certain attributes are managed outside of Terraform. replace_triggered_by: Forces resource replacement when a specified attribute or resource changes. This can include references to other resources or attributes within the same resource [1], [2], [6]. These arguments help manage the resource lifecycle more effectively, providing greater control over infrastructure changes and stability.

Answer 88

Update Backend Configuration: Modify your Terraform configuration file to include the remote backend configuration. For example, if you are migrating to an S3 backend, your configuration might look like this: terraform { backend "s3" { bucket = "my-terraform-state-bucket" key = "path/to/my/key" region = "us-west-2" } } **Initialize the New Backend: **Run terraform init -reconfigure. This command will prompt Terraform to initialize the new backend and migrate your existing state. terraform init -reconfigure Confirm State Migration: During the terraform init -reconfigure process, you will be asked to confirm the migration of the existing state to the new backend. Confirm the prompt to proceed with the migration. Verify the Migration: After the initialization is complete, you can verify that the state has been successfully migrated to the remote backend. This can be done by checking the state file in the remote backend (e.g., S3 bucket) or by running terraform state list to ensure the state is consistent. Cleanup: Optionally, remove any local state files to avoid confusion, ensuring that your infrastructure state is managed exclusively by the remote backend.

Answer 89

ignore_changes (list of attribute names) - By default, Terraform detects any difference in the current settings of a real infrastructure object and plans to update the remote object to match configuration.

Answer 90

The general syntax for function calls involves specifying the function's name followed by parentheses (). If the function requires input values, known as parameters, they are placed within the parentheses. Here is the basic structure: function_name(parameter1, parameter2, ...); Example int result = add(5, 10); In this example: add is the function name. 5 and 10 are the parameters passed to the function

Answer 91

When provisioners fail to execute successfully in Terraform, several things can happen: Terraform Apply Failure: The entire terraform apply process will fail. Terraform treats a failed provisioner as a failure for the resource creation or modification, which results in the apply operation being halted [1, 4]. Provisioner Error Reporting: Terraform will report the specific error encountered by the provisioner. This can include issues like the script not being readable, network connectivity problems, or script execution errors [2, 6]. Resource State Impact: The state of the resource can be impacted if the provisioner fails. Terraform may leave the resource in an incomplete or inconsistent state, requiring manual intervention to resolve the issue before re-running terraform apply [3]. Retry and Troubleshooting: Users may need to troubleshoot and retry the provisioner. This can involve checking the provisioner script for errors, ensuring the remote machine is accessible, and verifying any dependencies or prerequisites are met [1, 5]. To handle provisioner failures more gracefully, Terraform allows the use of on_failure argument in the provisioner block to specify how to handle failures, such as continuing the operation or attempting retries.

Answer 92

module.. Here’s a step-by-step guide: Define the output in the module: Ensure the module has an output value defined in its outputs.tf file. output "example_output" { value = } Reference the output in the parent module: In the configuration where the module is called, access the output value using the module's name and the output's name. module "example" { source = "./path/to/module" # module inputs } output "module_output_value" { value = module.example.example_output }

Answer 93

Inside resource block Provisioners in Terraform are used to execute scripts or commands on a local or remote machine during resource creation or destruction. They are particularly useful for tasks that need to happen after the infrastructure is provisioned, such as configuring software, installing packages, or running configuration management tools.

Answer 94

Terraform starts with a single workspace named "default". This workspace is special both because it is the default and also because it cannot ever be deleted. If you've never explicitly used workspaces, then you've only ever worked on the "default" workspace.

Answer 95

Local values are created by a locals block (plural), but you reference them as attributes on an object named local (singular). Make sure to leave off the "s" when referencing a local value!

Answer 96

sensitive = true

Answer 97

ignore_changes (list of attribute names) - By default, Terraform detects any difference in the current settings of a real infrastructure object and plans to update the remote object to match configuration.

Answer 98

Provide a Sensible Default: The default value should be a reasonable and sensible value that the variable can fall back on if no other value is provided. This ensures that the Terraform configuration can proceed without errors if the user doesn't specify a value for the variable. Match the Variable Type: The default value must match the declared type of the variable. For instance, if the variable is of type string, the default value should also be a string. Be Optional: The presence of a default value makes the variable optional. Users can override the default value by providing their own value when calling the module or running a Terraform plan or apply. Improve Usability: Using default values can improve the user experience by reducing the number of required inputs and making the configuration more user-friendly. variable "instance_type" { description = "The type of instance to use" type = string default = "t2.micro" }

Answer 99

If supported by your backend, Terraform will lock your state for all operations that could write state. This prevents others from acquiring the lock and potentially corrupting your state.

Answer 100

Configuration drift occurs when systems and configurations deviate from their established baseline or standard over time. This drift can lead to several common issues: Application Failures: Inconsistencies between environments can cause applications to fail due to differences in configurations that the application depends on [3]. Increased Downtime: Unexpected changes or differences in configuration can lead to system outages or extended downtime as issues are diagnosed and resolved [3]. Security Vulnerabilities: Deviations from the baseline configuration can introduce security holes, making systems more susceptible to attacks [1]. Prolonged Development Lifecycles: Drift can cause delays in development and deployment processes, as developers spend more time troubleshooting and aligning environments [3]. Increased IT Support Tickets: Drift often leads to more frequent issues, resulting in an increased volume of support tickets and a greater burden on IT teams [3]. Manual Configuration Errors: Manual changes to configurations can introduce errors that lead to drift, making it harder to maintain consistent and reliable environments [5]. Inconsistent Performance: Variations in configurations can lead to inconsistent performance across different environments, complicating performance tuning and reliability [4].

Answer 101

terraform version

Answer 102

terraform state List

Answer 103

Provisioners in Terraform are designed to execute scripts or commands on remote or local machines during the resource creation or destruction process. They are often used to prepare servers or other infrastructure objects for service. This includes tasks like installing software, configuring services, and setting up the environment. Provisioners can handle actions on both local and remote machines, contradicting the statement that they can only be used on remote machines. Examples of Provisioners: Remote-exec Provisioner: Executes commands on a remote machine using SSH or WinRM. Local-exec Provisioner: Executes commands on the machine running Terraform. These provisioners can perform various setup tasks necessary for the infrastructure to function correctly. Key Use Cases: Software Installation: Installing necessary software packages on servers. Configuration Management: Applying configuration changes to servers. Custom Scripts: Running custom scripts to perform specific actions during resource setup. Provisioners should be used cautiously as they introduce additional complexity and potential failure points in Terraform configurations [1].

Answer 104

The splat expression pattern var.list[*].id is not applicable in the following scenarios: Null or Empty Lists: The splat operator cannot be applied to a null value or an empty list. If var.list is null or empty, attempting to use the splat operator will result in an error [1][3]. Non-List Types: The splat operator is designed to work with lists, sets, or tuples. If var.list is of a different type (e.g., a string or a map), the splat expression will not be applicable [1]. Incorrect Resource References: If the items in the list do not have an id attribute, the splat expression var.list[*].id will not work. Each item in the list must have the specified attribute for the splat operator to function correctly [5].

Answer 105

Heavy usage of provisioners within your Terraform script can lead to several potential consequences: Resource Tainting: If a creation-time provisioner fails, the resource is marked as tainted. This means Terraform will plan to destroy and recreate the resource on the next apply, which can lead to unnecessary resource churn and potential downtime [2]. Error Handling Complexity: Provisioners add complexity in terms of error handling. If a provisioner fails during resource destruction, Terraform will continue with the destruction process, which might leave your infrastructure in an inconsistent state [3][4]. Operational Overhead: Provisioners can introduce operational overhead, as they require careful scripting and management. This overhead can lead to increased maintenance efforts and the potential for human error [1]. Performance Issues: Excessive usage of provisioners, especially with complex or long-running scripts, can negatively impact the performance of your Terraform runs. This can result in longer deployment times and a less efficient infrastructure management process [1]. Debugging Difficulties: Provisioners can make debugging Terraform configurations more difficult. Failures within provisioner scripts can be harder to diagnose and resolve compared to issues within Terraform's declarative configuration [1]. Reduced Portability: Heavy reliance on provisioners can reduce the portability of your Terraform configurations. Provisioners often contain environment-specific scripts and commands, which can make it challenging to reuse configurations across different environments without modification [1]. 🌐 Sources | https://spacelift.io/blog/terraform-provisioners https://github.com/hash

Answer 106

Both the root module and any child module can constrain the acceptable versions of Terraform and any providers they use. Terraform considers these constraints equal, and will only proceed if all of them can be met.

Answer 107

aws.west To use an alternate provider configuration for a resource or data source, set its provider meta-argument to a .

Answer 108

The correct command to list all existing workspaces in Terraform is: **terraform workspace list** This command will display all existing workspaces, and the current workspace will be indicated with an asterisk (*). | https://learning-ocean.com/tutorials/terraform/terraform-workspace/

Answer 109

🗒️ Answer The lifecycle block and its contents are indeed available for all resource blocks in Terraform, regardless of the resource type. This block allows you to control the creation, modification, and deletion of resources using various meta-arguments such as create_before_destroy, prevent_destroy, ignore_changes, and replace_triggered_by [1] [3]. | https://developer.hashicorp.com/terraform/language/meta-arguments/lifecy

Answer 110

In Terraform, version constraints are used to specify the versions of Terraform, providers, and modules that are compatible with your configuration. The appropriate options for using version constraints include: Terraform Version: Specify the version of Terraform itself to ensure compatibility with your configuration. hcl Copy code terraform { required_version = ">= 1.0.0" } Provider Versions: Define the acceptable versions of providers, such as AWS, Azure, or Google Cloud, that your configuration can use. terraform { required_providers { aws = { source = "hashicorp/aws" version = "~> 3.0" } } } Module Versions: Restrict the versions of modules to ensure compatibility and stability within your infrastructure. module "vpc" { source = "terraform-aws-modules/vpc/aws" version = ">= 2.0.0, < 3.0.0" } | https://developer.hashicorp.com/terraform/language/expressions/version-c

Answer 111

Terraform Cloud utilizes three main workflows to manage Terraform runs: CLI-driven run workflow: This workflow allows users to initiate Terraform runs directly from the command line interface (CLI), providing flexibility and control for advanced users and scripts [1]. API-driven run workflow: This workflow is designed for integration with other systems and automation tools. It enables users to trigger and manage Terraform runs programmatically via API calls [2]. UI/VCS-driven run workflow: The primary mode of operation for most users, this workflow involves initiating Terraform runs through the Terraform Cloud user interface (UI) or via version control system (VCS) integrations. It is user-friendly and integrates well with existing development workflows [3]. ## Footnote [https://developer.hashicorp.com/terraform/cloud-docs/run/cli] https://developer.hashicorp.com/terraform/cloud-docs/run/ui

Answer 112

Modules in Terraform are the main way to package and reuse resource configurations. Modules allow you to encapsulate related resources, variables, and outputs, making it easier to manage and reuse configurations across different parts of your infrastructure or in different projects. With modules, you can create reusable building blocks for your infrastructure, promote code reusability, and maintain a consistent infrastructure configuration across your organization. | https://blog.gruntwork.io/how-to-create-reusable-infrastructure-with-ter ## Footnote https://developer.hashicorp.com/terraform/language/modules#:~:text=Modules%20are%20the%20main%20way,reuse%20resource%20configurations%20with%20Terraform.

Answer 113

Some providers define resource types that include multiple levels of blocks nested inside one another. You can generate these nested structures dynamically when necessary by nesting dynamic blocks in the content portion of other dynamic blocks. ## Footnote https://developer.hashicorp.com/terraform/language/expressions/dynamic-blocks#multi-level-nested-block-structures

Answer 114

You can dynamically construct repeatable nested blocks like setting using a special "dynamic block" type, which is supported inside "resource", "data", "provider", and "provisioner" blocks.

Answer 115

Use a secure remote backend: Storing your Terraform state files in a secure remote backend such as AWS S3 with encryption and access controls helps protect sensitive data [2]. Use environment variables: Storing secrets as environment variables rather than hard-coding them in Terraform files helps keep them secure. Store secrets in a secure external storage: Utilize secure secret management services like AWS Secrets Manager, HashiCorp Vault, or Azure Key Vault to manage and access secrets securely [3]. Encrypt sensitive data: Encrypting sensitive data using tools like KMS, PGP, or other encryption methods ensures that even if the data is accessed, it remains protected [2]. Secure the Terraform host: Ensure that the machine running Terraform is secure and follows best practices for security, such as restricting access and using secure communication channels [2]. | https://spacelift.io/blog/terraform-secrets ## Footnote https://blog.gruntwork.io/a-comprehensive-guide-to-managing-secrets-in-your-terraform-code-1d586955ace1

Answer 116

To override the default provider configuration. For example, the default configuration may be to deploy resources in the "us-east-1" region. If the requirement is to deploy resources in a different region, we can use the provider argument to override the default. In some cases, a configuration may need to use multiple versions of the same provider. For example - a resource that deploys to the "us-east-1" and another resource within the same configuration that deploys to the "us-west-2" region. | https://developer.hashicorp.com/terraform/language/meta-arguments/module

Answer 117

Local values are created by a locals block (plural), but you reference them as attributes on an object named local (singular). Make sure to leave off the "s" when referencing a local value!

Answer 118

To persist logged output you can set TF_LOG_PATH in order to force the log to always be appended to a specific file when logging is enabled. Note that even when TF_LOG_PATH is set, TF_LOG must be set in order for any logging to be enabled.

Associate Exam Flashcards

Prepare with these: https://medium.com/@faisalkuzhan/day-55-90-terraform-interview-questions-e8ff859220d5