Skip to content

joestack/tfc-api-bootstrap-script

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

99 Commits
.gitignore
.gitignore
 
 
README.md
README.md
 
 
environment.conf.example
environment.conf.example
 
 
tfcli.sh
tfcli.sh
 
 
variables.csv.example
variables.csv.example
 
 

Repository files navigation

tfc-api-bootstrap-script

Using the Terraform Enterprise/Cloud API to generate a Workspace, injecting Variables, connect VCS repository, assigning Policies, and trigger a run.

This allows a very simple Continuous Infrastructure Automation (CIA) pipeline consisting of only two components - A version control system and Terraform Cloud/Enterprise.

This enables:

  • Programmatic generation of Terraform Workspaces and Landing Zones, respectively.
  • The secure injection of secrets like cloud credentials as workspace variables (the secret-zero that enables the workflow).
  • The segregation of responsibilities in the form of CIA Pipleline Publisher (admin) and Pipeline Consumer (IaC developer).

Content of this repository:

File Description
README.md This README
tfcli.sh The script that contains the TF[C/E] API abstractions
environment.conf.example Briefly documented example of an environment.conf declaration
variables.csv.example Briefly documented example of a variables.csv to be injected as workspace variables

environment.conf

to customize your specific needs in terms of workspace to be generated, VCS repo to be assigned, policies to be used, etc...

variables.csv

to assign your specific terraform and environment variables. Mark them as sensitive if needed so that nobody else will ever see them. The format is: Key,Value,terraform or environment variable,HCL true/false, sensitive true/false

Finally run the tfcli.sh -b script to create or re-create your infrastructure/workload based on the IaC declaration that resides in a version control system.

Quick HowTo

a) Clone the repo on your local machine (Linux/Mac)

git clone https://github.com/joestack/tfc-api-bootstrap-script.git

b) Copy the tfcli.sh script into a folder that is part of your $PATH i.e. /usr/local/bin to make the script globally available on your system. You can also skip that step and run the script directly from its local folder.

cd tfc-api-bootstrap-script
chmod 755 tfcli.sh 
sudo mv tfcli.sh /usr/local/bin

c) Define your specific environments.conf and variables.csv within a folder and run the script to bootstrap the environment.

tfcli.sh -b

$> tfcli.sh -OPTION

[-h]   Print this help message
[-b]   Bootstrap the environment based on environment.conf and variables.csv
[-x]   Destroy run on Workspace to delete all resources
[-X]   Delete Workspace (DANGER!!! Be sure no unmanaged resources are left)
[-d]   Print Debug output
[-V]   Version Info
HASHICORP INTERNAL (can be ignored):
[-c]   Inject AWS cloud credentials to Workspace via Doormat (AWS only)
[-C]   Inject AWS cloud credentials as Variable-Set via Doormat (AWS only)

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

14 stars

Watchers

2 watching

Forks

9 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages