Terraform Modules/Workspaces Flashcards
What to use terraform modules?
Aimed at reducing repetition, reduce possible changes due to provider updates, lack of standardization, difficult to manage, and difficult for devs to use.
How do you reference modules in Terraform?
module “name” {}
*The module block must contain source argument that contains location to the referenced module.
Are there some infrastructure resources that you can directly use a module calling code and the entire infrastructure will be created for you? If so what’s an example
Yes
Ex: ec2-instance
Whats an example of a module that requires additional input before completing?
module “eks” will throw an error because it requires additional details.
Ex: the EKS module requires subnet ID’s and a cluster name. Once submitted, the terraform plan will complete.
Can module structures be different
Yes, some module pages in GitHub can contain multiple sets of modules together for different features.
What’s the criteria on which module you should download/use?
- Check the # of downloads.
- Check GitHub Page of Modules for information related to contributors, recent changes, and pending issues being worked on.
- Avoid modules maintained/written by individual participant (changes/updates might not be fixed in timely manner)
- Analyze module documentation
- Check version history of module (indicates updates occurring/not occurring)
- Analyze the code (look for clean/well structured code)
- Community feedback (# of stars and forks)
- Modules maintained by hashicorp partner.
Should you try random Terraform modules that arent actively maintained and look shady (primarily by sole individual contributors)
Absolutely not as it could contain malicious code that sends info about your environment to a hacker.
What modules do orgs use?
They mostly have private modules, creating forks from strong modules , and modifying them to their use case.
Whats the structure of a module if you create your own?
- First, a base “modules” folder.
- a sub-folder containing name for each module.
- Each sub-folder contains the actual module terraform code that other projects can reference (ex. main.tf)
How is a module referenced using a local path?
Local parts are used to reference to modules that are available in local file system.
A local path must begin with either ./ or ../ to indicate that its a local path.
module ec2 {}
source = “../modules/ec2”
How is a module referenced using a git respository?
source = “git::https://example.com/vpc.git”
Can a specific module have multiple versions?
Yes, you can reference specific versions with the version block
module “eks” {
source = ..
version = ..
}
What are challenges with module code?
- Hardcoded values (if dev is calling modules, he will have to stick with same values. AVOID if possible
* Dev can’t override values - Provider improvements; avoid hardcoding region in the module code.
Fix: use required_provider block with version constraints for module to work
Whats the workout around for hardcoded values in modules?
Use variables to allow the value to be overrided.
Ex:
ami = var.ami
instance_type = var.instance_type
Whats the workout around hardcoded provider blocks?
Make use of required_providers block
*In doing so you can set a version requirement where the current code is working.
Module outputs, what are they?
They make info about your infra available on the cmd line, and can expose info for other terraform configs to use.
If you want to create a source that has independency on an infrastructure created through a module, you won’t be able to implicitly it without what?
The use of output values.
Ensure to include output, values in the module code for better flexibility and integration with other resources and projects.
Format: module.module.outputnamee
Whats the difference between root module and child module?
Root modules reside in the main working directory of your terraform configuration. this is the entry point for your infrastructure definition.
Child modules are modules that have been called by another module.
What is the standard module structure?
The standard structure is a file and directory layout Hashicorp recommends for reusable modules.
Whats the minimum recommended module structure?
$ tree minimal-module/
.
README.md
main.tf
variables.tf
outputs.tf
Whats the best practice for writing modules for larger orgs?
After determining org’s requirements, split up into categories.
Ex: networking module, security, routing, web module, database, app module.
