21 - Terraform Lab - By Houssem Dellai

-

 TERRAFORM - BY HOUSSEM DELLAI

  •  Install Terraform - Chocolatey on Windows
    • https://learn.hashicorp.com/tutorials/terraform/install-cli
    • https://terraform.io
  • Download Azure CLI
    • https://docs.microsoft.com/en-us/cli/azure/install-azure-cli-windows?tabs=azure-cli
  • Create an Azure Account
  • Download Visual Studio Code 
    • https://code.visualstudio.com/download
    • Install Terraform Extension
  • Download Source Code/ Template 
    • https://github.com/HoussemDellai/terraform-course



Deploy Infra in the Cloud using Terraform

01 - Resource Group

vi main.tf
# valid for terraform version 0.13
# provider "azurerm" {
#   version = "=2.40.0"
#   features {}
# }

# valid for terraform version 0.14
provider "azurerm" {
  features {}
}

terraform {
  required_providers {
azurerm = {
  source  = "hashicorp/azurerm"
  version = "2.40.0"
}
  }
}

resource "azurerm_resource_group" "rg" {
  name     = "myFirstResourceGroup"
  location = "westeurope"
}


   Commands 
   # Login to Azure Cloud
   $ az login --use-device-code

   # get terraform version
  terraform version

   # get terraform commands
   terraform

   # init terraform's Azure provider (main.tf)
   terraform init

   # plan and preview terraform changes
   terraform plan

   # deploy terraform infra
   terraform apply

   # destroy infra
   terraform destroy

   # validate syntax
   terraform validate

   # Formatting codes
   terraform fmt


02 - Web App
       ** tranaform upgrade from 2.36 to 2.40
terraform init -upgrade

** create variable file 
=> variables.tf
variable "resource_group_name" {
default = "example-resource"
type = string
description = "RG name in Azure"
}
variable "resource_group_location" {
default = "West Europe"
type = string
description = "RG location in Azure"
}
variable "app_serevice_plan_name" {
default = "example-appserviceplan"
type = string
description = "Ap Service in Azure"
}
** modify main.tf
resource "azurerm_resource_group" "example" {
  name     = var.resource_group_name
  location = var.resource_group_location
.....
.....
- Overriding variable with .tfvars
  
  ** Another way to define variables
  => terraform.tfvars
resource_group_name     = "example-resource"
resource_group_location = "West Europe"
app_serevice_plan_name  = "example-appserviceplan"
app_service_name        = "terraform-demo"


- Output variables
  
  => output.tf
  output "webapp_url" {
    value = azurerm_app_service.example.default_site_hostname
  }

  output "webapp_ips" {
    value = azurerm_app_service.example.outbound_ip_addresses
  }

03 - Execution Plan

# plan and save the infra changes into tfplan file
terraform plan -out tfplan

# show the tfplan file
terraform show -json tfplan
terraform show -json tfplan >> tfplan.json

# apply the infra changes
terraform apply tfplan

# delete the infra
terraform destroy


  terraform init  ---->   terraform plan  ----> teraform apply
     main.tf                      .tfplan                     .tfstate
                            (changes)              (current state)
 
Terraform State -> when working as a team and every developer working on local machines and own tfstate file. it will start conflict if working same project with own tfstate file.
   
Solution => Centralized location of tfstate file and every developer access same file.
Lock this file during implementation apply
   How => 1. Create Resource Group
          2. Create Storage Account 
- RG name = terraform-rg
- Storage name = terraformrg
- location = Central US
- Peformance = standard 
Storage V2 -> Locally-redundant
  3. Go to Storage Account
Add - Containers
-> tfstate
 
4. create backend.tf file
terraform {
  backend "azurerm" {
resource_group_name   = "terraform-rg"
storage_account_name  = "terraformrg"
container_name  = "tfstate"
key  = "terraform.tfstate"
  }
}

5. terraform apply
    Acquiring state lock. This may take a few moments

- Deploy container service  ( AKS )

# plan and save the infra changes into tfplan file
terraform plan -out tfplan

# show the tfplan file
terraform show -json tfplan
terraform show -json tfplan >> tfplan.json
# show only the changes
cat tfplan.json | jq -r '(.resource_changes[] | [.change.actions[], .type, .change.after.name]) | @tsv'
cat tfplan.json | jq '[.resource_changes[] | {type: .type, name: .change.after.name, actions: .change.actions[]}]' 

# apply the infra changes
terraform apply tfplan

# delete the infra
terraform destroy

# cleanup files
rm terraform.tfstate
rm terraform.tfstate.backup
rm .terraform.lock.hcl
rm tfplan
rm tfplan.json
rm -r .terraform/



Comments

Post a Comment

Popular posts from this blog

05 - Docker - Containers

-
Image
 Docker - Containers - Container is operating system-level virtualization  ( Linux Kernal ) Allow for multiple isolated user-space instances called containers They share a single kernel Can be added or removed any times - Containers consist of a self-contained Linux file system Can be from any Linux distribution which is compatible with the host kernel Usually contain a single application such as a server - Operating  Is often used in Cloud Computing Docker Architecture Docker is available in two editions: Community Edition (CE) - open-source Enterprise Edition (EE) Docker uses a client-server architecture Client REST API  (   the primary user interface which communicates ) Over HTTP Over local Unix Socket Docker CLI docker build docker pull docker run Servers (Docker_Host) Is the Docker daemon Responsible for building, running, and distributing containers Docker daemon Container Images Registry (docker.io , DockerHub) Responsible for the storage, management, and delivery of Docker im
Read more

08 - PUPPET - Configuration Management

-
Image
 PUPPET - Configuration Management A Configuration Management Tool A framework for Systems Automation A Declarative Domain Specific Language (DSL) An Open Source software is written in Ruby Works on Linux, Unix (Solaris, AIX, *BSD), macOS, Windows |Supported Platforms) Developed by Puppet Labs Puppet Agent Required SSL certificate Default fatches after 60 minutes noop - dry run Puppet Open Source or Enterprise Puppet Langauge Declarative - Domain Specific Langauge (DSL) define STATES (No procedures) Puppet code is written in manifest ( .pp extension ) In the code, we declare resources that affect elements of the system (files, packages, services ... ) Resources are grouped into classes Classes and configuration files are organized in modules Puppet Resource Abstraction Layers Puppet Catalog Certificate Management Server Resources Facter Puppet Manifest Puppet Resources Resource Types Reference Puppet Nodes Roles Define Policy Puppet Virtual Resources Puppet Lab   Pu
Read more

06 - Docker Swarm - Container Orchestration

-
Image
 Docker Swarm - Container Orchestration Create Cluster Build & Deployment automated Rolling Deployment Update Version Docker Swarm is clustering for Docker It turns several Docker hosts into a single virtual Docker host The Swarm is controlled by Swarm Manager Each Docker code communicates with the manager It can be installed manually or by using Docker Machine Scheduler Service Discover Consul -> provide DNS Zookeeper - configuration management tools Cheat Sheet => https://lzone.de/cheat-sheet/Docker%20Swarm LAB mkdir DockerSwarm cd DockerSwarm mkdir manager vm1 vm2  *** Manager Node **** cd manager vagrant ssh sudo su - hostnamectrl set-hostname managernode.unix.in bash vi /etc/hosts 192.168.33.14 managernode.unix.in 192.168.33.15 workernode1.unix.in 192.168.33.16 workernode1.unix.in ## Install Docker C curl -fsSL get.docker.com | sh ## Add user Vagrant in Docker group sudo usermod -aG docker vagrant id vagrant ## Start Docker Service
Read more