Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Split infrastructure into components #847

Closed
danlester opened this issue Oct 11, 2021 · 3 comments
Closed

Split infrastructure into components #847

danlester opened this issue Oct 11, 2021 · 3 comments
Labels
needs: discussion 💬 Needs discussion with the rest of the team

Comments

@danlester
Copy link
Contributor

qhub deploy currently splits the infrastructure deployment into stages using Terraform resource targeting.

This is 'wrong' according to Terraform, and we should consider splitting it up into separate configurations instead and rolling them out in order.

If we had clear separate configs then this would also mean we can destroy in reverse order, and I think this might help with our timeout problems on tear down. (We could technically do this with target anyway, but only if all remaining targets are listed explicitly - our final deploy step just runs everything, including the initially-targeted items too.)

From HCL docs:

Once Terraform has selected one or more resource instances that you've directly targeted, it will also then extend the selection to include all other objects that those selections depend on either directly or indirectly.

This targeting capability is provided for exceptional circumstances, such as recovering from mistakes or working around Terraform limitations. It is not recommended to use -target for routine operations, since this can lead to undetected configuration drift and confusion about how the true state of resources relates to configuration.

Instead of using -target as a means to operate on isolated portions of very large configurations, prefer instead to break large configurations into several smaller configurations that can each be independently applied. Data sources can be used to access information about resources created in other configurations, allowing a complex system architecture to be broken down into more manageable parts that can be updated independently.
@dhirschfeld
Copy link

I found terraform support for large deployments pretty unworkable myself which is why I moved to using terragrunt - this use-case seems to be it's raison d'etre.

With terragrunt, dependencies between modules can be explicitly specified:
https://terragrunt.gruntwork.io/docs/reference/config-blocks-and-attributes/#dependency

@danlester
Copy link
Contributor Author

Note I have attempted to improve qhub destroy using terraform targets in the meantime: #948

@trallard trallard added area: architecture needs: discussion 💬 Needs discussion with the rest of the team labels Dec 17, 2021
@trallard trallard moved this to Needs Triage in QHub Project Mangement 🚀 Dec 17, 2021
@danlester danlester mentioned this issue Jan 14, 2022
Closed
@costrouc
Copy link
Member

Going to close this issue since it is implemented in #1003. We should definitely look into using terragrunt. Since right now the outputs from each module are being captured in python and being explicitly passed in via a var-files.

Repository owner moved this from Needs Triage 🔍 to Done 💪🏾 in QHub Project Mangement 🚀 Feb 12, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
needs: discussion 💬 Needs discussion with the rest of the team
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@danlester @dhirschfeld @costrouc @trallard