Terraform

Question 1

What is infrastructure as code?

Answer 1

Is provisioning infrastructure through software to achieve consistent and predictable environments.

Question 2

What is the difference between declarative and imperative?

Answer 2

Imperative = step-by-step on how to do a task
Declarative = I want the state X (declaring what I want).

Question 3

What is idempotency?

Answer 3

If I run the same task twice I won’t have a duplicated item.

Question 4

What is the difference between push and pull?

Answer 4

Push: a server actively pushes configs;
Pull: a client actively pulls configs;

Question 5

Is terraform push-type-model?

Answer 5

Yes. A server pushes the configs.

Question 6

What is workflow that terraform imposes?

Answer 6

Provisioning resources;
Planning Updates;
Using Source Control;
Reusing Templates;

Question 7

What are the four components of terraform?

Answer 7

terraform executable, terraform files, terraform plugins and terraform state.

Question 8

What is a terraform plugin?

Answer 8

Is an extension of terraform that allows interacting with providers (e.g: azure, aws etc.

Question 9

What is the terraform state?

Answer 9

Keeps track of what the current state looks like

Question 10

what is the data type?

Answer 10

a data-source

Question 11

what a tf file contains?

Answer 11

terraform code itself.

Question 12

what a tfvars file contain?

Answer 12

input to variables

Question 13

how to reference a var?

Answer 13

var.my_var_name

Question 14

What is a triplet?

Answer 14

resourceType.resourceName.property.

Question 15

Does terraform support function? examples?

Answer 15

yes… file(path)

Question 16

what does the output type do?

Answer 16

outputs the content of a variable

Question 17

how to declare a var in a tfvar file?

Answer 17

variable “image_id” {
type = string
}

Question 18

what is the caveat with backslash in a windows environment?

Answer 18

it’s escape… use double: \

Question 19

What does terraform init do?

Answer 19

It checks the config files looking for providers (plugins) and download the necessary files.

Question 20

What does terraform plan do?

Answer 20

Loads the config files (.tf) and variables (.tfvars) and compare against an existing state (if any) then shows what needs to be done to achieve the desired state.

Question 21

what does terraform plan -out myplan.tfplan?

Answer 21

shows the plan and store it in the tfplan file for future usage (apply) / inspection.

Question 22

what is “known after apply” value that shows in the plan?

Answer 22

stuff that will be known only after the resource is applied (such as IDs)

Question 23

What does terraform apply “myplan.tfplan” do?

Answer 23

Will apply the plan (actually provision stuff)

Question 24

Which file is created after the first time I do an apply?

Answer 24

a tfstate file will be created

Question 25

What does the terraform destroy do?

Answer 25

destroy the resources that are stored in the state file

Question 26

what is the format of tfstate? Should I manually change it?

Answer 26

JSON. DO NOT TOUCH IT.

Question 27

what the tfstate file contain?

Answer 27

resource mappings and general metadata. locking, location…

Question 28

what is a workspace in terraform?

Answer 28

each workspace has a state… so it is a separation.

Question 29

what happens if the installed version of terraform is lower than the one that created the state file (someone else created it, for example)?

Answer 29

terraform won’t allow interactions on it (you’ll need to upgrade terraform)

Question 30

what is the serial number of tfstate?

Answer 30

an incremental number that is increased when the state file is updated.

Question 31

why is the serial number of tfstate necessary?

Answer 31

to match up the version I have in the plan and the one in the state (so that you can’t apply an old plan)

Question 32

does the tfstate contain the output information that we define and see in the prompt?

Answer 32

yes.

Question 33

What is the golden rule of terraform?

Answer 33

Only change stuff via terraform (DO NOT CHANGE RESOURCES MANUALLY).

Question 34

What in detail terraform planning do?

Answer 34

inspects the state, do the dependency graph and calculates the additions updates and deletions. Do stuff in parallel.

Question 35

When the tfplan file is the most useful?

Answer 35

on teams where stuff needs to be approved before applied… e.g: in my PR I can have the plan but on master it actually applies it.

Question 36

Can I access triplet’s property index? e.g: access the first item on an array?

Answer 36

yes… resourceType.resourceName.property[0]

Question 37

What is a provisioner in the tf file? what does it require first?

Answer 37

allows executing arbitrary scripts. requires a ssh connection

Question 38

How the Terraform syntax is called?

Answer 38

HashiCorp configuration language.

Question 39

Why using hashicorp configuration language instead of json or yaml?

Answer 39

because they wanted to introduce functions, conditionals and templates which was not available in the first two.

Question 40

What is a block in terraform? How a black inside a block is called?

Answer 40

the simplest structure we can have. It is called embedded block.

Question 41

How to declare a block?

Answer 41

block_type label_one label_two {}

Question 42

how many primitive types we had up to terraform .12? What happened after?

Answer 42

string only. it was added: number, bool, list and map (key value pairs)

Question 43

what is a local?

Answer 43

local var

Question 44

How does interpolation looks like in terraform?

Answer 44

taco_name = “The name is ${var.name}”

Question 45

how to access a list? what index it starts on ?

Answer 45

local.mylist[0]. starts on 0

Question 46

How to access a map?

Answer 46

local.mymap[“key”]

Question 47

What is a terraform provisioner and what happens if something goes wrong when deploying all your resources tied to this provisioner?

Answer 47

provisioner is a way to configure software (when you choose to not use ansible, for example). It will stop in the error one and what was created will remain created.

Question 48

what does the “&laquo_space;EOF” do?

Answer 48

it is a literal string block where crlf are kept.

Question 49

What does the remote-exec provisioner do?

Answer 49

executes command line in the remote computer.

Question 50

what does the output data type do? when to use?

Answer 50

outputs a value when the script is applied or when you do terraform output command. when values needs to be used somewhere else for convenience

Question 51

how is the syntax of a terraform function?

Answer 51

function(arg1, arg2…)

Question 52

is the terraform function args positional or named?

Answer 52

positional

Question 53

what are common functions bulitin on terraform?

Answer 53

lower, merge(map1, map2), file(path), timestamp()

Question 54

what is the command terraform console? when is it useful?

Answer 54

allows running functions independently. to test out results of summing, functions and etc

Question 55

what does the terraform fmt command does?

Answer 55

fixes formatting of the terraform files to match the canonical format

Question 56

what does the terraform taint and untaint does?

Answer 56

mark a resource to be recreated even though terraform thinks it is al good with it. untaint remove taint

Question 57

what does terraform validate does? will it ensure terraform apply will work?

Answer 57

will find syntax errors and other superficial errors. Does not guarantee a successful terraform apply.

Question 58

who writes the providers? which language?

Answer 58

usually the cloud vendors, community or hashicorp itself. needs to be written in go.

Question 59

what is a provider?

Answer 59

collection of resources and data sources (structures) that can be used in a terraform script.

Question 60

what does the alias property in a provider do? and why it exists?

Answer 60

allows specifying a specific provider. in case you have the same provider declared multiple times. needs to be referenced in the resources as well.

Question 61

What are the main terraform resource arguments?

Answer 61

depends_on, count, for_each and provider

Question 62

Will terraform figure out the dependencies between resources? When to use depends_on then?

Answer 62

Yes, when the dependency is not obvious to terraform.

Question 63

what does the count resource argument do?

Answer 63

allows you to create n resources (loop)

Question 64

what does the for_each resource argument do?

Answer 64

allows you to iterate over a map to create resources and etc

Question 65

what does the provider resource argument do?

Answer 65

allows you to define a provider to create the give resource when it is not clear to terraform which one to use.

Question 66

how to create a list based on another list’s specific property

Answer 66

my_ids = mylist[*].id

Question 67

what are the properties a variable can have in its declaration? Is it recommended to define a type?

Answer 67

name, type and default. yes, recommended.

Question 68

What are the three ways that terraform allow defining variables? Does the precedence count?

Answer 68

environment < file < command line. yes… environment the least powerful

Question 69

Is it common to split variables, resources and specific data types in different files?

Answer 69

yes.

Question 70

How to declare a variable type of a map of strings? can I define a default value for that?

Answer 70

variable “myvar” {
type = map(string)
}

yes.. just declare a map as default.

Question 71

what is the Hashicorp recommended way to deal with multiple environments (dev, test, prod)?

Answer 71

by using workspaces

Question 72

what are the four concerns we need to address in multiple environment terraform configuration?

Answer 72

state management, variables data, credentials management and complexity/overhead.

Question 73

if we couldn’t use workspaces to manage multiple environments, how could we handle it?

Answer 73

common scripts and folders holding specific environments stuff… see: https://pasteboard.co/JJY0e2G.png

Question 74

how to create a new workspace using terraform cli?

Answer 74

terraform workspace new dev

Question 75

Where does terraform workspace put the state files?

Answer 75

in a folder, states are separated.

Question 76

what does the value that terraform.workspace return? why is it useful?

Answer 76

the name of the workspace given during terraform workspace new. so that you can access map values using the workspace name as key

Question 77

which options can I use to store secrets?

Answer 77

environment variables, variables files or a secret management solution.

Question 78

What is a terraform module? What is the root module? Can it call “child” modules?

Answer 78

A terraform module is a reusable piece of configuration that is meant to be shared across different apps (mini terraform config). Root module is what terraform uses under the hood when you create terraform files. Yes.

Question 79

does modules support versioning?

Answer 79

yes.

Question 80

does module support count or do I need to list them out?

Answer 80

no, necessary to list the modules (meaning how many copies you want of that module)

Question 81

what are the three module components and how they interate?

Answer 81

variables are defined as input of the module.
resources are going to be created (based on the vars)
output are externalized so that the root module can use it.

Question 82

what is a template file?

Answer 82

is a file that support variable substitution.