Upgrade to Pro — share decks privately, control downloads, hide ads and more …

tfschemaの仕組み / How tfschema works

Masayuki Morita
August 01, 2019
Programming
2
480

tfschemaの仕組み / How tfschema works

Terraformプロバイダから動的に型定義情報を取得する「tfschema」というツールを趣味で作ってます。

https://github.com/minamijoyo/tfschema

- Terraformのコアと同じgo-pluginプロトコルを使って、Terraformプロバイダから動的に型定義情報を取得できます。
- リソースタイプの一覧が取得できます。
- このリソースタイプの一覧を使ってbash/zshでコマンド引数の補完も可能。
- なので、このリソースタイプの一覧補完を使ってシュッと公式ドキュメントを開くこともできる。
- Terraform v0.11/v0.12 両方サポート

これがどういう仕組で動いてるのか、内部構造を簡単に解説します。

Masayuki Morita

August 01, 2019
Tweet

More Decks by Masayuki Morita

See All by Masayuki Morita
.terraform.lock.hcl 完全に理解した / How to update .terraform.lock.hcl efficiently
minamijoyo
14
9.8k
SRE Lounge#2: SRE at CrowdWorks
minamijoyo
1
2.1k
BigData-JAWS #9: Data Analytics Infra for CrowdWorks
minamijoyo
3
400
20170605_make_and_learn_minimum_golint.pdf
minamijoyo
0
37
make and learn minimum golint
minamijoyo
0
5k
private_homebrew_20170525.pdf
minamijoyo
0
31
非公開な社内限のCLIツールを Homebrewで配布したい
minamijoyo
2
820

Other Decks in Programming

See All in Programming
How Skylight was created / Techniques for constructing URL Entity.
penpenpng
0
110
Prompt Engineering 勉強会 / 2023.03.21 GPT-4 Prompt 報告会
smiyawaki0820
19
8.8k
Lightweight Architectures With Angular's Latest Innovations
manfredsteyer
PRO
0
420
基盤システムへのマイクロフロントエンドの活用事例
sainu
2
160
積もってく会議メモをどうにかしたかった
kazutan
0
110
CSC308 Lecture 26
javiergs
PRO
0
120
ブラウザの向こう側で「200 OK」を返すまでに何が起きているのか調べてみた #phperkaigi
akase244
5
1.3k
Flaky Tests - Fighting Nightmares
leichteckig
0
200
SymfonyLive Paris 2023: Scheduler
fabpot
3
1.8k
改めて整理するWebアプリのビルド・デプロイの基本【コンテナ編】
os1ma
2
340
個人開発で挫折する人を救いたい
youliangdao
1
140
一緒にスクラム開発___GPT-4と人間が共創するプロダクトの進化.pdf
itohiro73
6
6.6k

Featured

See All Featured
Code Reviewing Like a Champion
maltzj
508
38k
Happy Clients
brianwarren
90
5.9k
The World Runs on Bad Software
bkeepers
PRO
59
5.8k
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
smashingmag
239
19k
Mobile First: as difficult as doing things right
swwweet
213
7.9k
Pencils Down: Stop Designing & Start Developing
hursman
114
10k
Design and Strategy: How to Deal with People Who Don’t "Get" Design
morganepeng
110
16k
Principles of Awesome APIs and How to Build Them.
keavy
119
16k
The Invisible Side of Design
smashingmag
292
49k
Statistics for Hackers
jakevdp
785
210k
Designing for humans not robots
tammielis
245
24k
The Cult of Friendly URLs
andyhume
70
5.2k

Transcript

  1. tfschemaͷ࢓૊Έ
    Terraform meetup tokyo #1
    2019/08/01
    @minamijoyo

    View Slide

  2. ࣗݾ঺հ
    • ৿ా ਅ೭ (Masayuki Morita)
    • Twitter/GitHub: @minamijoyo
    • SRE at CrowdWorks Inc.
    • झຯ: Terraform
    • ίʔυಡΜͩΓ
    • issueΛړͬͨΓ
    • ݟ͚ͭͨόάΛ࣏ͯ͠ΈͨΓ
    • αʔυύʔςΟͷπʔϧ࡞ͬͯ༡ΜͩΓ

    View Slide

  3. tfschemaͱ͸

    View Slide

  4. • https://github.com/minamijoyo/tfschema
    • TerraformͷϓϩόΠμ͔Βܕఆٛ৘ใΛऔಘ͢Δπʔϧ
    tfschemaͱ͸
    $ echo 'provider "aws" {}' > main.tf
    $ terraform init
    Πϯετʔϧ(Macͷ৔߹)
    ϓϩόΠμͷμ΢ϯϩʔυ(ྫͱͯ͠aws)
    $ tfschema -install-autocomplete
    ิ׬ͷ༗ޮԽ(γΣϧͷϦϩʔυඞཁ)
    $ brew install minamijoyo/tfschema/tfschema

    View Slide

  5. $ tfschema resource show aws_iam_user
    +----------------------+-------------+----------+----------+----------+-----------+
    | ATTRIBUTE | TYPE | REQUIRED | OPTIONAL | COMPUTED | SENSITIVE |
    +----------------------+-------------+----------+----------+----------+-----------+
    | arn | string | false | false | true | false |
    | force_destroy | bool | false | true | false | false |
    | id | string | false | true | true | false |
    | name | string | true | false | false | false |
    | path | string | false | true | false | false |
    | permissions_boundary | string | false | true | false | false |
    | tags | map(string) | false | true | false | false |
    | unique_id | string | false | false | true | false |
    +----------------------+-------------+----------+----------+----------+-----------+
    $ tfschema resource list aws | grep aws_iam_user
    aws_iam_user
    aws_iam_user_group_membership
    aws_iam_user_login_profile
    aws_iam_user_policy
    aws_iam_user_policy_attachment
    aws_iam_user_ssh_key
    ܕఆٛͷऔಘ
    ϦιʔελΠϓҰཡ
    ଐੑ஋ͷܕ΍
    ඞਢ͔Ͳ͏͔
    ͳͲ͕෼͔Δ

    View Slide

  6. tfschemaͷ࢓૊Έ

    View Slide

  7. tfschemaͷ࢓૊Έ
    • ௒ͬ͘͟Γ3ߦͰ·ͱΊΔͱ
    1. providerͷόΠφϦΛ୳ࡧͯ͠ىಈ
    2. GetSchemaؔ਺ͰϦιʔεͷܕఆٛΛऔಘ
    3. ͍͍͔Μ͡ʹ੔ܗͯ͠දࣔ

    View Slide

  8. TerraformͱProvider
    • providerͱ͸aws/google/azurermͳͲͷϓϥάΠϯ
    • ී௨ʹTerraform࢖ͬͯΔͱɺ͋Μ·Γҙࣝ͠ͳ͍͔΋Ͱ͢
    ͕ɺterraformίϚϯυͱ͸όΠφϦ͕෼͔ΕͯΔ
    • terraform initͰproviderͷόΠφϦΛμ΢ϯϩʔυ
    • terraform plan/applyͳͲͷλΠϛϯάͰprovider͕֤छΫ
    ϥ΢υͷAPIΛݺͼग़ͯ͠Δ

    View Slide

  9. providerͷόΠφϦͷ୳ࡧ
    • tfschema͸terraformίϚϯυ͕ಈ͘σΟϨΫτϦͰಈ͘Α͏ʹͳͬͯΔ
    • ී௨ʹterraform init͢Δͱ .terraformϑΥϧμ഑Լʹprovider͕μ΢ϯϩʔυ͞ΕΔɻ
    • tfschema͸terraformͱ͍͍ͩͨಉ͡ϧʔϧͰproviderΛ୳͢ʢݫີʹ͸2ͱ7͕ҧ͏ʣ
    • ۩ମతʹ͸ҎԼͷ৔ॴͰproviderͷόΠφϦΛ୳͢
    1. ΧϨϯτσΟϨΫτϦ
    2. tfschemaͷόΠφϦ͕͋ΔσΟϨΫτϦ(terraformͷόΠφϦͷ৔ॴ͸γΣϧґଘ)
    3. ϕϯμσΟϨΫτϦ terraform.d/plugins/_
    4. ࣗಈΠϯετʔϧσΟϨΫτϦ .terraform/plugins/_
    5. άϩʔόϧϓϥάΠϯσΟϨΫτϦ $HOME/.terraform.d/plugins
    6. άϩʔόϧϓϥάΠϯσΟϨΫτϦ $HOME/.terraform.d/plugins/_
    7. $GOPATH/bin (σόοά͢ΔͷʹศརͳͷͰೖͬͯΔ)

    View Slide

  10. go-pluginͱ͸
    • terraformίϚϯυͱprovider͸go-pluginϓϩτίϧͰ௨৴
    ͍ͯ͠Δ
    • https://github.com/hashicorp/go-plugin
    • Go੡ͷπʔϧʹϓϥάΠϯͷ࢓૊ΈΛఏڙ͢ΔϥΠϒϥϦ
    • HashiCorpͷ֤छπʔϧ(Packer/Terraform/Nomad/Vault)
    Ͱ࢖ΘΕͯΔ
    • RPCϕʔεͳͷͰɺϓϥάΠϯͷόΠφϦ͕෼͔Εͯͯ
    ΋ɺී௨ʹؔ਺Λݺͼग़͢Α͏ʹ࢖͑Δ

    View Slide

  11. ܕఆٛͷऔಘ
    • provider͕ຬͨ͢΂͖interface͸ҎԼͰఆٛ͞Ε͍ͯΔ(v0.12ͷ৔߹)
    • github.com/hashicorp/terraform/providers.Interface
    • plan/applyʹඞཁͳؔ਺ͷଞʹɺϦιʔεͷܕఆٛΛऔಘ͢Δ
    GetSchemaؔ਺͕͋Δ
    • GetSchemaؔ਺ͷ݁Ռ͸GetSchemaResponseܕ
    • HCLΛղऍ͢Δͷʹඞཁͳconfigschema.Blockؚ͕·ΕΔ
    • HCLͷσʔλߏ଄ʹ͍ͭͯ࿩࢝͠ΊΔͱ௕͘ͳΔͷͰׂѪ
    • tfschema͸Ұ୴಺෦දݱʹม׵ͯ͠ɺ͍͍͔Μ͡ʹ੔ܗͯ͠දࣔͯ͠Δ

    View Slide

  12. providerͷιʔείʔυݟͨ͜ͱ͋Δਓʹ͸ͳΜͱͳ͘఻ΘΔͱࢥ͏͚Ͳɺ
    Πϝʔδͱͯ͠͸ˣʹ૬౰͢Δ৘ใ͕ಘΒΕΔʢݫີʹ͸ͪΐͬͱҧ͏͚Ͳʣ
    ※஫: ͜Ε͸terraform-provider-awsͷιʔείʔυͷൈਮͰ͢ɻGetSchemaResponseͰ͸͋Γ·ͤΜɻ
    func resourceAwsIamUser() *schema.Resource {
    return &schema.Resource{
    Schema: map[string]*schema.Schema{
    "arn": {
    Type: schema.TypeString,
    Computed: true,
    },
    "name": {
    Type: schema.TypeString,
    Required: true,
    ValidateFunc: validateAwsIamUserName,
    },
    func Provider() terraform.ResourceProvider {
    return &schema.Provider{
    Schema: map[string]*schema.Schema{ … },
    DataSourcesMap: map[string]*schema.Resource{ … },
    ResourcesMap: map[string]*schema.Resource{
    "aws_iam_user": resourceAwsIamUser(),
    “aws_iam_user_login_profile": resourceAwsIamUserLoginProfile(),
    ϦιʔελΠϓҰཡ
    ଐੑ஋ͷܕ΍
    ඞਢ͔Ͳ͏͔
    ͳͲ

    View Slide

  13. Ҿ਺ͷิ׬
    • tfschemaʹ͸Ҿ਺ͷϦιʔελΠϓΛิ׬͢Δػೳ͕͋Δ
    • https://github.com/posener/complete
    • Go੡ͷCLIπʔϧͷิ׬ϥΠϒϥϦ
    • bash/zshͷิ׬ީิΛฦ͢ϩδοΫΛGoͰॻ͚Δ
    • TerrafromͰ΋࢖ͬͯΔmitchellh/cli ʹ૊Έࠐ·ΕͯΔ
    • ิ׬ީิΛऔಘ͢ΔͨΊʹɺtfschemaࣗ਎ͷόΠφϦΛݺͼग़
    ͯ͠ɺཪͰGetSchemaؔ਺Λݺͼग़ͯ͠Δ
    • ಈతʹϦιʔελΠϓͷҰཡऔಘ͍ͯ͠ΔͷͰɺproviderͷ
    όʔδϣϯ্͕͕ͬͯ΋tfschemaଆ͸ϝϯςφϯεϑϦʔ

    View Slide

  14. ެࣜυΩϡϝϯτͷࢀর
    $ tfschema resource browse aws_iam_user
    ϒϥ΢β͕։͘

    View Slide

  15. ެࣜυΩϡϝϯτURLͷੜ੒
    • HashiCorp͕ϝϯς͍ͯ͠ΔϝδϟʔͳproviderͷެࣜυΩϡϝϯ
    τͷURL͸Ұఆͷϧʔϧʹͳ͍ͬͯΔ
    • ϧʔϧΛܾΊଧͪͨ͠ΘΓͱࡶͳ࡞Γ͕ͩɺ͜ΕͰେମ։͚Δ
    • ͜ͷϧʔϧʹͳͬͯͳ͍ͷΛݟ͚ͭͨΒɺެࣜυΩϡϝϯτଆʹҰ
    ؏ੑ͕ͳ͍ͬͯissueΛཱͯΑ͏w
    • ϦιʔελΠϓΛิ׬ͭͭ͠ɺެࣜυΩϡϝϯτ͕γϡοͱ։͚Δ
    ͷͰ஍ຯʹ΂ΜΓ
    https://www.terraform.io/docs/providers/aws/r/iam_user.html
    $ tfschema resource browse aws_iam_user ҰఆͷϧʔϧʹͳͬͯΔ

    View Slide

  16. ॴײ
    • https://github.com/minamijoyo/tfschema
    • GetSchemaؔ਺Λ׬શʹཧղͨ͠
    • αʔυύʔςΟͷπʔϧ࡞ΔͱTerraformͷ಺෦࣮૷
    ʹৄ͘͠ͳͬͯͨͷ͍͠
    ؾʹೖͬͨΒ˒ͯ͠Ͷ

    View Slide