You're reading from Terraform Cookbook Master Infrastructure as Code efficiency with real-world Azure automation using Terraform

Product type Paperback

Published in Aug 2023

Publisher Packt

ISBN-13 9781804616420

Length 634 pages

Edition 2nd Edition

Tools

Azure

Concepts

DevOps

Author (1):

Mikael Krief

View More author details

Table of Contents (20) Chapters

Preface

1. Setting Up the Terraform Environment

2. Writing Terraform Configurations FREE CHAPTER

3. Scaling Your Infrastructure with Terraform

4. Using Terraform with External Data

5. Managing Terraform State

6. Applying a Basic Terraform Workflow

7. Sharing Terraform Configuration with Modules

8. Provisioning Azure Infrastructure with Terraform

9. Getting Starting to Provisioning AWS and GCP Infrastructure Using Terraform

10. Using Terraform for Docker and Kubernetes Deployment

11. Running Test and Compliance Security on Terraform Configuration

12. Deep-Diving into Terraform

13. Automating Terraform Execution in a CI/CD Pipeline

14. Using Terraform Cloud to Improve Team Collaboration

15. Troubleshooting Terraform Errors

16. Other Books You May Enjoy

17. Index

Appendix A: Terraform Cheat Sheet

1. Appendix B: Terraform Resources

Managing Terraform resource dependencies

One of Terraform’s main features is to allow the parallelization of operations while considering resource dependencies.

In this recipe, we will learn how to create dependencies between resources. We will do this using both implicit and explicit dependencies.

Let’s get started!

Getting ready

To start this recipe, we will use the following Terraform configuration to provision an Azure resource group and, inside it, one Azure virtual network.

Here is the basic configuration:

resource "azurerm_resource_group" "rg" {
  name     = "rgdep"
  location = "westeurope"
}
resource "azurerm_virtual_network" "vnet" {
  name                = "vnet"
  location            = "westeurope"
  resource_group_name = "rgdep"
  address_space       = ["10.0.0.0/16"]
}

The problem with the above configuration is that there are no Terraform dependencies between the resource group and the virtual network. Since Terraform executes its operations according to its dependency graph calculation, during the apply execution the virtual network can be created before the resource group. However, this isn’t acceptable because the virtual network must be created after the resource group.

The goal of this recipe is to learn how to create dependencies between the Azure virtual network and the Azure resource group.

Find out more about the concept of dependencies at https://www.terraform.io/language/resources/behavior#resource-dependencies.

The source code of this recipe is available at https://github.com/PacktPublishing/Terraform-Cookbook-Second-Edition/tree/main/CHAP02/dep.

How to do it…

Perform the following steps:

To create implicit dependencies, update the azurerm_virtual_network resource with the following code:

resource "azurerm_virtual_network" "vnet" {
  name                = "vnet"
  location            = "westeurope"
  resource_group_name = azurerm_resource_group.rg.name
  address_space       = ["10.0.0.0/16"]
}

To create explicit dependencies, update the azurerm_virtual_network resource with the following code:

resource "azurerm_virtual_network" "vnet" {
  name                = "vnet"
  location            = "westeurope"
  resource_group_name = "rgdep"
  address_space       = ["10.0.0.0/16"]
  depends_on = [azurerm_resource_group.rg]
}

How it works…

In the first configuration, we use an implicit dependency. By using the resource_group_name = azurerm_resource_group.rg.name property, Terraform creates a dependency that is waiting for the creation of the resource so it can know its name and pass it to the virtual network.

In the second configuration, we use an explicit dependency by using the depends_on meta-argument, which contains the list of resources that must be created before this current resource. Here, we explicitly set that the Azure resource group must be created before creating the Azure virtual network.

Finally, we execute the terraform apply command. The following image shows that this execution has dependencies:

Une image contenant texte Description générée automatiquement

Figure 2.17: Terraform uses implicit and explicit dependency

We can see the order of resource creation: the Azure resource group [1] is created before the Azure virtual network [2].

And when we run the terraform destroy command, the Azure virtual network is destroyed before the Azure resource group.

There’s more…

If we have the choice between using an implicit or explicit dependency, it’s recommended to use an implicit dependency as explained in this documentation: https://www.terraform.io/language/meta-arguments/depends_on#processing-and-planning-consequences

It is possible to display the Terraform resources graph’s dependencies by using the terraform graph command, which we will learn about in detail in Chapter 6, Applying a Basic Terraform Workflow, in the Generating the graph dependencies recipe.