Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Taming Terraform Workflow Using Terraform Modul...

Anubhav Mishra
August 03, 2017
Technology
2
1.6k

Taming Terraform Workflow Using Terraform Modules and Github

Abstract

Today’s cloud infrastructure is really complex. What if you could truly make this infrastructure a black box?
What if you could mutate this infrastructure safely and easily? See how to use Terraform efficiently across
hundreds of developers while leveraging a simple Github workflow and Terraform modules.

Additional info

Hootsuite was one of the early adopters of Terraform and faced some challenges early on with Terraform workflow.
* This session will cover how Hootsuite uses Terraform modules and leverages them to bridge the gap between devs and
operations.
* We will discuss how we came up with our own state management system that helps us safely mutate the state of our
infrastructure from one state to the other. How you can organize your Terraform states across multiple tiers of your
infrastructure. We will also talk about our own HTTP remote state store on top of S3 that enables us to edit states
and rollback.
* Most importantly, we came up with our own Terraform workflow that uses github pull requests to do approvals and
state locking so we don’t corrupt Terraform states for our infrastructure.

Proposal: https://github.com/cfgmgmtcamp/2017-pdx-cfp/blob/master/presentations/taming-terraform-workflow.md

Anubhav Mishra

August 03, 2017
Tweet

More Decks by Anubhav Mishra

See All by Anubhav Mishra
Service Mesh - Beyond the Hype (Distributed Systems Meetup)
anubhavmishra
0
48
Collaborative Application and Infrastructure workflow using GitHub Actions and HashiCorp Terraform
anubhavmishra
1
1.1k
Service Mesh - Beyond the Hype
anubhavmishra
1
180
Taming Infrastructure Workflow at Scale (RootConf Hyderabad)
anubhavmishra
0
1.1k
HCL: A human-friendly language for developers and operators
anubhavmishra
0
1.9k
Intro: Virtual Kubelet
anubhavmishra
0
1.6k
Introduction into Virtual Kubelet
anubhavmishra
1
100
Scheduling Applications at Scale with Nomad
anubhavmishra
0
1.4k
Building a Serverless Continuous Integration and Delivery Pipeline
anubhavmishra
5
7.6k

Other Decks in Technology

See All in Technology
Amazon Personalizeの レコメンドシステム構築、実際何するの? 〜大体10分で具体的なイメージをつかむ〜
kniino
1
100
Amplify Gen2 Deep Dive / バックエンドの型をいかにしてフロントエンドへ伝えるか #TSKaigi #TSKaigiKansai #AWSAmplifyJP
tacck
PRO
0
370
いざ、BSC討伐の旅
nikinusu
2
780
透過型SMTPプロキシによる送信メールの可観測性向上: Update Edition / Improved observability of outgoing emails with transparent smtp proxy: Update edition
linyows
2
210
Lambda10周年!Lambdaは何をもたらしたか
smt7174
2
110
Making your applications cross-environment - OSCG 2024 NA
salaboy
0
180
なぜ今 AI Agent なのか _近藤憲児
kenjikondobai
4
1.3k
[CV勉強会@関東 ECCV2024 読み会] オンラインマッピング x トラッキング MapTracker: Tracking with Strided Memory Fusion for Consistent Vector HD Mapping (Chen+, ECCV24)
abemii
0
220
TanStack Routerに移行するのかい しないのかい、どっちなんだい! / Are you going to migrate to TanStack Router or not? Which one is it?
kaminashi
0
570
適材適所の技術選定 〜GraphQL・REST API・tRPC〜 / Optimal Technology Selection
kakehashi
1
150
[FOSS4G 2024 Japan LT] LLMを使ってGISデータ解析を自動化したい!
nssv
1
210
第1回 国土交通省 データコンペ参加者向け勉強会③ - Snowflake x estie編 -
estie
0
120

Featured

See All Featured
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
rmw
31
2.7k
The Psychology of Web Performance [Beyond Tellerrand 2023]
tammyeverts
44
2.2k
Why Our Code Smells
bkeepers
PRO
334
57k
Writing Fast Ruby
sferik
627
61k
Designing Experiences People Love
moore
138
23k
Fight the Zombie Pattern Library - RWD Summit 2016
marcelosomers
232
17k
Mobile First: as difficult as doing things right
swwweet
222
8.9k
[RailsConf 2023 Opening Keynote] The Magic of Rails
eileencodes
28
9.1k
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
mongodb
42
9.2k
Templates, Plugins, & Blocks: Oh My! Creating the theme that thinks of everything
marktimemedia
26
2.1k
Being A Developer After 40
akosma
86
590k
Put a Button on it: Removing Barriers to Going Fast.
kastner
59
3.5k

Transcript

  1. Senior Developer - Production Operations and Delivery @anubhavm Taming Terraform

    Workflow Anubhav Mishra Using Terraform Modules and Github

  2. Anubhav Mishra @anubhavm

  3. None
  4. None

  5. Talk • Terraform at Hootsuite • Use of Terraform Modules

    (Dev <--> Ops) • Atlantis - Hootsuite’s Terraform Workflow • Live Demo

  6. Terraform at Hootsuite

  7. Numbers • 100+ developers • 20+ microservices • 2 cluster

    schedulers • 1000+ servers • 1000s of AWS resources

  8. Timeline • Mid 2015 - First Terraform Repo (v1) •

    Starting 2016 - Terraform (v2) • End of 2016 - Terraform “Advanced” Workflow

  9. Before Terraform

  10. None
  11. None
  12. None

  13. What is Terraform? • Terraform allows you to manage, build

    and visualize your infrastructure as code
  14. None
  15. None
  16. None

  17. First Attempt

  18. First Attempt

  19. First Attempt

  20. First Attempt staging != production

  21. Terraform State

  22. First Attempt

  23. None

  24. Problems with our first attempt • Environment drift • One

    massive state for every environment • Hard to collaborate on infrastructure

  25. Problems with our first attempt • Environment drift • One

    massive state for every environment • Hard to collaborate on infrastructure

  26. Terraform Version 2 (Second Attempt)

  27. Terraform Version 2 (Second Attempt)

  28. Terraform Version 2 (Second Attempt)

  29. Problems with our first attempt • Environment drift • One

    massive state for every environment • Hard to collaborate on infrastructure

  30. Problems with our first attempt • Environment drift • One

    massive state for every environment • Hard to collaborate on infrastructure

  31. Terraform Version 2 (Second Attempt) terraform.tfstate { "version": 3, "terraform_version":

    "0.8.8", "serial": 175, "lineage": "2cb11085-2e4e-40ff-bf81-e4ddf8bc8d5d", "modules": [ { "path": [ "root" ], "outputs": {}, "resources": { ....

  32. Terraform Version 2 (Second Attempt) terraform.tfstate { "version": 3, "terraform_version":

    "0.8.8", "serial": 175, "lineage": "2cb11085-2e4e-40ff-bf81-e4ddf8bc8d5d", "modules": [ { "path": [ "root" ], "outputs": {}, "resources": { ....

  33. Terraform Version 2 (Second Attempt) terraform.tfstate

  34. Terraform Version 2 (Second Attempt)

  35. Terraform Version 2 (Second Attempt)

  36. Terraform Version 2 (Second Attempt)

  37. None

  38. terraform.tfstate { "version": 3, "terraform_version": "0.8.8", "serial": 1, "lineage": "9e42c0ac-9e73-4910-8859-504934f2b499",

    "backend": { "type": "s3", "config": { "bucket": "terraform", "key": "foo-bar", "region": "us-east-1" }, .... "outputs": {}, "resources": { "null_resource.hello": { "type": "null_resource", "depends_on": [], "primary": { "id": "792399369485920658", "attributes": { "id": "792399369485920658" }, "meta": {}, ....

  39. stash

  40. None
  41. None
  42. None

  43. Problems with our first attempt • Environment drift • One

    massive state for every environment • Hard to collaborate on infrastructure

  44. Problems with our first attempt • Environment drift • One

    massive state for every environment • Hard to collaborate on infrastructure
  45. None
  46. None
  47. None

  48. module.server Let me make a generic server module I need

    2 servers. Now! Terraform Version 2 (Second Attempt)
  49. None

  50. Terraform Version 2 (Second Attempt)

  51. Terraform Version 2 (Second Attempt)

  52. Inputs Output

  53. Terraform Version 2 (Second Attempt)

  54. Terraform Version 2 (Second Attempt)

  55. Terraform Version 2 (Second Attempt)

  56. Terraform Version 2 (Second Attempt)

  57. Terraform Version 2 (Second Attempt) 139 Repositories

  58. • Multi Environment Terraform Projects • Isolated Terraform States for

    Services ◦ Smaller Failure Domain ◦ Rapid Iteration on Infrastructure • Use of Terraform Modules ◦ Environment Parity ◦ Increased Collaboration Between Ops and Dev

  59. Are we all done?

  60. None
  61. None
  62. None

  63. How do we continue to move fast while we add

    people?
  64. None

  65. atlantis A unified workflow for collaborating on Terraform through GitHub.

    https://github.com/hootsuite/atlantis

  66. Demo

  67. • atlantis - https://github.com/hootsuite/atlantis • cfgmgmtcamp-atlantis-demo - https://github.com/anubhavmishra/cfgmgmtcamp-atlantis-demo Links

  68. Thank You! Senior Developer - Production Operations and Delivery @anubhavm

    Anubhav Mishra