I have a Terraform module that creates an Azure AKS cluster and outputs kube config to allow connecting to it (see below, available as module.kubernetes_cluster.kube_config).
To the script instantiating this module I added the following:
I'm not able to terraform apply it as is. Both terraform plan and terraform apply fail with an error message suggesting that the kube config is missing. That's fair, before the apply there's indeed no config available on the disk, it's only getting generated during the apply. But, helmfile_release_set expects it to be there to do the diff.
Running terraform apply -target=local_file.kube_config first resolves the issue but ideally Terraform scripts shouldn't require splitting them into "stages". I came up with this setup after reading the discussion in #20. Maybe I'm missing something and it isn't supposed to fail if implemented properly? If I understand correctly, the problem here is that Helmfile is executed during terraform plan or the first part of terraform apply to calculate the diff. It shouldn't be necessary to calculate the diff during the resource creation, so if there was a way to suppress it, it would help.
It seems like providers can be configured with outputs of resources created in the same script. This probably means that the initialization of the provider and all resources associated with it are postponed until those outputs become available. If it's the case, then it should be possible within this provider to generate a temp file for kube config based on those outputs and feed it to Helmfile during terraform plan or terraform apply.
Any advice on this is highly appreciated. And please let me know if you need to see how other pieces are implemented for fuller picture.
I have a Terraform module that creates an Azure AKS cluster and outputs kube config to allow connecting to it (see below, available as
module.kubernetes_cluster.kube_config).To the script instantiating this module I added the following:
I'm not able to
terraform applyit as is. Bothterraform planandterraform applyfail with an error message suggesting that the kube config is missing. That's fair, before the apply there's indeed no config available on the disk, it's only getting generated during the apply. But,helmfile_release_setexpects it to be there to do the diff.Running
terraform apply -target=local_file.kube_configfirst resolves the issue but ideally Terraform scripts shouldn't require splitting them into "stages". I came up with this setup after reading the discussion in #20. Maybe I'm missing something and it isn't supposed to fail if implemented properly? If I understand correctly, the problem here is that Helmfile is executed duringterraform planor the first part ofterraform applyto calculate the diff. It shouldn't be necessary to calculate the diff during the resource creation, so if there was a way to suppress it, it would help.Also, in #20 and #51 the idea of adding configuration options to the provider was brought up. It does seem like this is the standard way of doing it in Terraform. For example, we can find this snippet in the officials docs: https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/kubernetes_cluster
It seems like providers can be configured with outputs of resources created in the same script. This probably means that the initialization of the provider and all resources associated with it are postponed until those outputs become available. If it's the case, then it should be possible within this provider to generate a temp file for kube config based on those outputs and feed it to Helmfile during
terraform planorterraform apply.Any advice on this is highly appreciated. And please let me know if you need to see how other pieces are implemented for fuller picture.