Using the Terraform Enterprise GUI is perfect to start working with Terraform as a human, but it's not when implementing a machine to machine interaction. Joern will present some examples of how to demystify the Terraform Enterprise API.
Using the Terraform Enterprise GUI is perfect to start working with Terraform as a human, but it's not when implementing a machine to machine interaction. Joern will present some examples of how to demystify the Terraform Enterprise API.
멀티 어카운트 환경의 보안과 가시성을 높이기 위한 전략 - AWS Summit Seoul 2017
Ähnlich wie Using the Terraform Enterprise GUI is perfect to start working with Terraform as a human, but it's not when implementing a machine to machine interaction. Joern will present some examples of how to demystify the Terraform Enterprise API.
Why Startups Need Automated InfrastructuresAdam Jacob
Ähnlich wie Using the Terraform Enterprise GUI is perfect to start working with Terraform as a human, but it's not when implementing a machine to machine interaction. Joern will present some examples of how to demystify the Terraform Enterprise API. (20)
Using the Terraform Enterprise GUI is perfect to start working with Terraform as a human, but it's not when implementing a machine to machine interaction. Joern will present some examples of how to demystify the Terraform Enterprise API.
4. Agenda
What we are going to cover
▪ Terraform Enterprise from a workflow perspective
▪ The three ways to perform a “run workflow”
▪ Business needs -> Business Process -> Workflow
▪ API Authentication
▪ Demo 1) Five steps to setup a VCS driven workflow
▪ Demo 2) Seven steps to deploy IaC via API
11. Three ways to perform a “run workflow”
VCS/UI
CLI>
{API}
In the UI/VCS workflow, every workspace is associated
with a specific branch of a VCS repo. A VCS commit on
that repository automatically queues a Terraform run.
The OSS way on TFE. You plan/apply your code locally on
your system while using the “remote backend” provider
to utilize TFE.
The CI/CD way. Capable of abstracting your workflow up
to the highest level but needs external tooling around it.
16. The role of IT operations is to
ensure a continuous, fast, and
reliable flow of tasks that supports
the overall business process.
17. The Second Way
Create fast and continuous
feedback from Operations to
Development.
Measure and React
The First Way
Let us understand how we can
ensure the fast flow of work
from Development to
Operation.
Processes -> Workflow ->
Automation
The Third Way
The technical practices of
continual learning and
experimentation.
Culture and Habit
DevOps: The 3 Ways
22. Business Process Requirements
▪ Continuous Deployment pipeline for practitioners
– VCS driven workflow for IaC
▪ Automatically setup Terraform Cloud environment
– API driven workflow to create: Workspace, Variables, VCS, Policy, ...
▪ Ensuring governance and control
– Secure assignment of credentials and Sentinel policies
▪ Fire and forget
– Remove and re-create with a push of a button
23. High Level Workflow of our Demo
Using the API to setup a VCS orientated “run workflow”
24. The definition of Flow
Logical order of the 5 underlying API steps
Create
Workspace
Assign
Variables to
Workspace
Create
policy-set
Attach
policy-set to
Workspace
Assign VCS
repo to
Workspace
and trigger
run
01)
Create a
workspace
within your TFC
organization
02)
Assign
credentials and
variables to
Workspace
03)
Create policy-set
based on a
pre-existing VCS
repository
04)
Attach policy-set
to the prior
created
workspace
05)
Assign pre-existing
VCS repository to
workspace and
change to:
- auto-queue
- auto-apply
SEC
PaC
OPS
IaC
39. Business Process Requirements
▪ Deploy IaC out of an ITSM tool, a CI/CD,
or any other API aware tool
▪ This is more a snippet than an entire
process
40. The definition of Flow
Logical order of the 7 underlying API steps
Create
Workspace
Assign
Variables to
Workspace
Create
Config-
Version
Upload
Config
Perform
Run
(trigger
plan)
Parse Run
Result
Apply Run
variables.csv config.tar.gz
workspace-id
workspace-id
workspace-id
upload-url
configversion-id
run-id
ok
yes
no
run-id