1: Evolution of Cloud and Infrasructure as Code
Examine the evolution of virtualization technologies from bare metal, virtual machines, and containers and the tradeoffs between them.
2: Terraform Overview & Set Up
Install terraform and configure it to work with AWS
3: Basic Terraform Usage
Learn the common terraform commands and how to use them
•Terraform Plan, Apply, Destroy
4: Variables and Outputs
Use Terraform variables and outputs to improve make our configurations more flexible
5: Additional HCL Features
Explore HCL language features in Terraform to create more expressive and modular infrastructure code.
6: Terraform Modules
Learn to break your code into modules to make it flexible and reuseable
7: Managing Multiple Environments
Overview of two primary methods for managing multiple Terraform environments
8: Testing Terraform Code
Techniques for testing and validating Terraform code
9: Developer Workflows
Covers how teams generally work with Terraform, including automated deployment with CI/CD
Testing Terraform Code (Theory)
In this lesson, we will discuss the importance of testing your Terraform code to ensure that your infrastructure-as-code configurations maintain high quality and continue to perform as expected.
We will also explore various testing techniques to prevent code rot in your infrastructure.
Code Rot
Code rot refers to the gradual degradation of a codebase over time due to external dependencies changing, other changes in the codebase impacting specific functions, or unapplied changes. In the context of Terraform and infrastructure, code rot may occur due to:
- Out-of-band changes.
- Unpinned versions of providers.
- Deprecated external modules or resource types.
- Unapplied changes to Terraform configurations.
Preventing Code Rot with Testing
To prevent code rot, we can perform various types of tests on our Terraform code:
-
Static checks: Run built-in Terraform commands like
terraform fmt,terraform validate, andterraform planto check the formatting, validate configurations, and compare the desired state with the actual state, respectively. Use custom validation rules to further validate your infrastructure configurations. -
Third-party tools: Use tools like
tflint,checkov,tfsec, andterrascanto perform additional checks on your codebase. Terraform Sentinel, available only for enterprise customers, provides security and compliance guarantees. -
Manual testing: Follow the standard Terraform workflow, running
terraform init,terraform apply, andterraform destroyto test your configuration manually. -
Automated testing: Automate the manual testing steps using a shell script or a more robust method, such as utilizing a testing framework like TerraTest with Go to write complex tests and make assertions about your infrastructure.