Zonal Shift is a free service from AWS, which allows users to disable an Availability Zone (AZ) for resources. In this post, we will walk through what it does and observe the results.
Tag: terraform
Terraform resource config – inline or standalone
Settings for some resources can be defined inline or as standalone resources. In this article, we will see how they behave differently.
Terraform and time_sleep
Sometimes it takes a while to provision resource A, and resource B can only be deployed after. Here I’ll demonstrate how to use time_sleep to set up the wait and dependency.
OpenTofu 1.7.0 state encryption
Introduced in OpenTofu 1.7.0 is the ability to encrypt the state file. Here is how to use it.
External modules on Terraform
External terraform modules can speed up IAC deployments, promote code reuse, and let us do things more consistently. In this post, I will demonstrate 2 ways to use an external module.
Terraform and segregated permissions
Recently, there is an initiative to tighten up security control on terraform deployment. In this post, I will demo how to use provider alias and tell terraform to switch role for resource management
jq transformation
I was working on a terraform module that creates cloudwatch alarms. AWS uniquely identifies metric with dimensions. All dimensions must be supplied to select the metric. In this case, the dimension comes from CWAgent and terraform external data source is used to obtain the dimension. A bit of jq work is needed to transform the…
Terraform module: Delete default VPCs
Terraform itself does not have the capability to delete default VPCs. In this example, I will use terraform and a shell script to perform the deletion.
Create security groups with terraform using a map
If you have 10s of security group rules, it’s not effective to use aws_security_group_rule directly. Here I use a map and feed it to a module.
Terraform conditional resource and blocks
In this example, I will first demonstrate how to conditionally create a terraform resource. Then how to add a configuration block inside a resource conditionally.