Upgrade to Pro — share decks privately, control downloads, hide ads and more …

tfschemaの仕組み / How tfschema works

Masayuki Morita
August 01, 2019
Programming
2
680

tfschemaの仕組み / How tfschema works

Terraformプロバイダから動的に型定義情報を取得する「tfschema」というツールを趣味で作ってます。

https://github.com/minamijoyo/tfschema

- Terraformのコアと同じgo-pluginプロトコルを使って、Terraformプロバイダから動的に型定義情報を取得できます。
- リソースタイプの一覧が取得できます。
- このリソースタイプの一覧を使ってbash/zshでコマンド引数の補完も可能。
- なので、このリソースタイプの一覧補完を使ってシュッと公式ドキュメントを開くこともできる。
- Terraform v0.11/v0.12 両方サポート

これがどういう仕組で動いてるのか、内部構造を簡単に解説します。

Masayuki Morita

August 01, 2019
Tweet

More Decks by Masayuki Morita

See All by Masayuki Morita
.terraform.lock.hcl 完全に理解した / How to update .terraform.lock.hcl efficiently
minamijoyo
16
19k
SRE Lounge#2: SRE at CrowdWorks
minamijoyo
1
2.6k
BigData-JAWS #9: Data Analytics Infra for CrowdWorks
minamijoyo
3
560
20170605_make_and_learn_minimum_golint.pdf
minamijoyo
0
53
make and learn minimum golint
minamijoyo
0
5.6k
private_homebrew_20170525.pdf
minamijoyo
0
64
非公開な社内限のCLIツールを Homebrewで配布したい
minamijoyo
3
1k

Other Decks in Programming

See All in Programming
Develop Faster With FrankenPHP
dunglas
2
3.3k
Do Dumb Things
mitsuhiko
0
430
[NG India] Event-Based State Management with NgRx SignalStore
markostanimirovic
1
150
Defying Front-End Inertia: Inertia.js on Rails
skryukov
0
480
Bedrock×MCPで社内ブログ執筆文化を育てたい!
har1101
6
1k
地域ITコミュニティの活性化とAWSに移行してみた話
yuukis
0
240
Code smarter, not harder - How AI Coding Tools Boost Your Productivity | Webinar 2025
danielsogl
0
130
List とは何か? / PHPerKaigi 2025
meihei3
0
860
The Evolution of the CRuby Build System
kateinoigakukun
0
700
「影響が少ない」を自分の目でみてみる
o0h
PRO
2
1.1k
On-the-fly Suggestions of Rewriting Method Deprecations
ohbarye
1
1.8k
Lambda(Python)の リファクタリングが好きなんです
komakichi
3
190

Featured

See All Featured
Cheating the UX When There Is Nothing More to Optimize - PixelPioneers
stephaniewalter
280
13k
The Power of CSS Pseudo Elements
geoffreycrofte
75
5.8k
CoffeeScript is Beautiful & I Never Want to Write Plain JavaScript Again
sstephenson
160
15k
How GitHub (no longer) Works
holman
314
140k
Visualization
eitanlees
146
16k
Become a Pro
speakerdeck
PRO
27
5.3k
Stop Working from a Prison Cell
hatefulcrawdad
268
20k
Sharpening the Axe: The Primacy of Toolmaking
bcantrill
41
2.2k
Improving Core Web Vitals using Speculation Rules API
sergeychernyshev
13
670
How STYLIGHT went responsive
nonsquared
99
5.5k
Building a Scalable Design System with Sketch
lauravandoore
462
33k
KATA
mclloyd
29
14k

Transcript

  1. tfschemaͷ࢓૊Έ Terraform meetup tokyo #1 2019/08/01 @minamijoyo

  2. ࣗݾ঺հ • ৿ా ਅ೭ (Masayuki Morita) • Twitter/GitHub: @minamijoyo •

    SRE at CrowdWorks Inc. • झຯ: Terraform • ίʔυಡΜͩΓ • issueΛړͬͨΓ • ݟ͚ͭͨόάΛ࣏ͯ͠ΈͨΓ • αʔυύʔςΟͷπʔϧ࡞ͬͯ༡ΜͩΓ

  3. tfschemaͱ͸

  4. • https://github.com/minamijoyo/tfschema • TerraformͷϓϩόΠμ͔Βܕఆٛ৘ใΛऔಘ͢Δπʔϧ tfschemaͱ͸ $ echo 'provider "aws" {}'

    > main.tf $ terraform init Πϯετʔϧ(Macͷ৔߹) ϓϩόΠμͷμ΢ϯϩʔυ(ྫͱͯ͠aws) $ tfschema -install-autocomplete ิ׬ͷ༗ޮԽ(γΣϧͷϦϩʔυඞཁ) $ brew install minamijoyo/tfschema/tfschema

  5. $ tfschema resource show aws_iam_user +----------------------+-------------+----------+----------+----------+-----------+ | ATTRIBUTE | TYPE

    | REQUIRED | OPTIONAL | COMPUTED | SENSITIVE | +----------------------+-------------+----------+----------+----------+-----------+ | arn | string | false | false | true | false | | force_destroy | bool | false | true | false | false | | id | string | false | true | true | false | | name | string | true | false | false | false | | path | string | false | true | false | false | | permissions_boundary | string | false | true | false | false | | tags | map(string) | false | true | false | false | | unique_id | string | false | false | true | false | +----------------------+-------------+----------+----------+----------+-----------+ $ tfschema resource list aws | grep aws_iam_user aws_iam_user aws_iam_user_group_membership aws_iam_user_login_profile aws_iam_user_policy aws_iam_user_policy_attachment aws_iam_user_ssh_key ܕఆٛͷऔಘ ϦιʔελΠϓҰཡ ଐੑ஋ͷܕ΍ ඞਢ͔Ͳ͏͔ ͳͲ͕෼͔Δ

  6. tfschemaͷ࢓૊Έ

  7. tfschemaͷ࢓૊Έ • ௒ͬ͘͟Γ3ߦͰ·ͱΊΔͱ 1. providerͷόΠφϦΛ୳ࡧͯ͠ىಈ 2. GetSchemaؔ਺ͰϦιʔεͷܕఆٛΛऔಘ 3. ͍͍͔Μ͡ʹ੔ܗͯ͠දࣔ

  8. TerraformͱProvider • providerͱ͸aws/google/azurermͳͲͷϓϥάΠϯ • ී௨ʹTerraform࢖ͬͯΔͱɺ͋Μ·Γҙࣝ͠ͳ͍͔΋Ͱ͢ ͕ɺterraformίϚϯυͱ͸όΠφϦ͕෼͔ΕͯΔ • terraform initͰproviderͷόΠφϦΛμ΢ϯϩʔυ •

    terraform plan/applyͳͲͷλΠϛϯάͰprovider͕֤छΫ ϥ΢υͷAPIΛݺͼग़ͯ͠Δ

  9. providerͷόΠφϦͷ୳ࡧ • tfschema͸terraformίϚϯυ͕ಈ͘σΟϨΫτϦͰಈ͘Α͏ʹͳͬͯΔ • ී௨ʹterraform init͢Δͱ .terraformϑΥϧμ഑Լʹprovider͕μ΢ϯϩʔυ͞ΕΔɻ • tfschema͸terraformͱ͍͍ͩͨಉ͡ϧʔϧͰproviderΛ୳͢ʢݫີʹ͸2ͱ7͕ҧ͏ʣ •

    ۩ମతʹ͸ҎԼͷ৔ॴͰproviderͷόΠφϦΛ୳͢ 1. ΧϨϯτσΟϨΫτϦ 2. tfschemaͷόΠφϦ͕͋ΔσΟϨΫτϦ(terraformͷόΠφϦͷ৔ॴ͸γΣϧґଘ) 3. ϕϯμσΟϨΫτϦ terraform.d/plugins/<OS>_<ARCH> 4. ࣗಈΠϯετʔϧσΟϨΫτϦ .terraform/plugins/<OS>_<ARCH> 5. άϩʔόϧϓϥάΠϯσΟϨΫτϦ $HOME/.terraform.d/plugins 6. άϩʔόϧϓϥάΠϯσΟϨΫτϦ $HOME/.terraform.d/plugins/<OS>_<ARCH> 7. $GOPATH/bin (σόοά͢ΔͷʹศརͳͷͰೖͬͯΔ)

  10. go-pluginͱ͸ • terraformίϚϯυͱprovider͸go-pluginϓϩτίϧͰ௨৴ ͍ͯ͠Δ • https://github.com/hashicorp/go-plugin • Go੡ͷπʔϧʹϓϥάΠϯͷ࢓૊ΈΛఏڙ͢ΔϥΠϒϥϦ • HashiCorpͷ֤छπʔϧ(Packer/Terraform/Nomad/Vault)

    Ͱ࢖ΘΕͯΔ • RPCϕʔεͳͷͰɺϓϥάΠϯͷόΠφϦ͕෼͔Εͯͯ ΋ɺී௨ʹؔ਺Λݺͼग़͢Α͏ʹ࢖͑Δ

  11. ܕఆٛͷऔಘ • provider͕ຬͨ͢΂͖interface͸ҎԼͰఆٛ͞Ε͍ͯΔ(v0.12ͷ৔߹) • github.com/hashicorp/terraform/providers.Interface • plan/applyʹඞཁͳؔ਺ͷଞʹɺϦιʔεͷܕఆٛΛऔಘ͢Δ GetSchemaؔ਺͕͋Δ • GetSchemaؔ਺ͷ݁Ռ͸GetSchemaResponseܕ

    • HCLΛղऍ͢Δͷʹඞཁͳconfigschema.Blockؚ͕·ΕΔ • HCLͷσʔλߏ଄ʹ͍ͭͯ࿩࢝͠ΊΔͱ௕͘ͳΔͷͰׂѪ • tfschema͸Ұ୴಺෦දݱʹม׵ͯ͠ɺ͍͍͔Μ͡ʹ੔ܗͯ͠දࣔͯ͠Δ

  12. providerͷιʔείʔυݟͨ͜ͱ͋Δਓʹ͸ͳΜͱͳ͘఻ΘΔͱࢥ͏͚Ͳɺ Πϝʔδͱͯ͠͸ˣʹ૬౰͢Δ৘ใ͕ಘΒΕΔʢݫີʹ͸ͪΐͬͱҧ͏͚Ͳʣ ※஫: ͜Ε͸terraform-provider-awsͷιʔείʔυͷൈਮͰ͢ɻGetSchemaResponseͰ͸͋Γ·ͤΜɻ func resourceAwsIamUser() *schema.Resource { return &schema.Resource{

    Schema: map[string]*schema.Schema{ "arn": { Type: schema.TypeString, Computed: true, }, "name": { Type: schema.TypeString, Required: true, ValidateFunc: validateAwsIamUserName, }, func Provider() terraform.ResourceProvider { return &schema.Provider{ Schema: map[string]*schema.Schema{ … }, DataSourcesMap: map[string]*schema.Resource{ … }, ResourcesMap: map[string]*schema.Resource{ "aws_iam_user": resourceAwsIamUser(), “aws_iam_user_login_profile": resourceAwsIamUserLoginProfile(), ϦιʔελΠϓҰཡ ଐੑ஋ͷܕ΍ ඞਢ͔Ͳ͏͔ ͳͲ

  13. Ҿ਺ͷิ׬ • tfschemaʹ͸Ҿ਺ͷϦιʔελΠϓΛิ׬͢Δػೳ͕͋Δ • https://github.com/posener/complete • Go੡ͷCLIπʔϧͷิ׬ϥΠϒϥϦ • bash/zshͷิ׬ީิΛฦ͢ϩδοΫΛGoͰॻ͚Δ •

    TerrafromͰ΋࢖ͬͯΔmitchellh/cli ʹ૊Έࠐ·ΕͯΔ • ิ׬ީิΛऔಘ͢ΔͨΊʹɺtfschemaࣗ਎ͷόΠφϦΛݺͼग़ ͯ͠ɺཪͰGetSchemaؔ਺Λݺͼग़ͯ͠Δ • ಈతʹϦιʔελΠϓͷҰཡऔಘ͍ͯ͠ΔͷͰɺproviderͷ όʔδϣϯ্͕͕ͬͯ΋tfschemaଆ͸ϝϯςφϯεϑϦʔ

  14. ެࣜυΩϡϝϯτͷࢀর $ tfschema resource browse aws_iam_user ϒϥ΢β͕։͘

  15. ެࣜυΩϡϝϯτURLͷੜ੒ • HashiCorp͕ϝϯς͍ͯ͠ΔϝδϟʔͳproviderͷެࣜυΩϡϝϯ τͷURL͸Ұఆͷϧʔϧʹͳ͍ͬͯΔ • ϧʔϧΛܾΊଧͪͨ͠ΘΓͱࡶͳ࡞Γ͕ͩɺ͜ΕͰେମ։͚Δ • ͜ͷϧʔϧʹͳͬͯͳ͍ͷΛݟ͚ͭͨΒɺެࣜυΩϡϝϯτଆʹҰ ؏ੑ͕ͳ͍ͬͯissueΛཱͯΑ͏w •

    ϦιʔελΠϓΛิ׬ͭͭ͠ɺެࣜυΩϡϝϯτ͕γϡοͱ։͚Δ ͷͰ஍ຯʹ΂ΜΓ https://www.terraform.io/docs/providers/aws/r/iam_user.html $ tfschema resource browse aws_iam_user ҰఆͷϧʔϧʹͳͬͯΔ

  16. ॴײ • https://github.com/minamijoyo/tfschema • GetSchemaؔ਺Λ׬શʹཧղͨ͠ • αʔυύʔςΟͷπʔϧ࡞ΔͱTerraformͷ಺෦࣮૷ ʹৄ͘͠ͳͬͯͨͷ͍͠ ؾʹೖͬͨΒ˒ͯ͠Ͷ