Create more flexible terraform wrapper script

lorenyu commented 1 month ago

The Makefile commands that wrap terraform are nice but pretty limited which forces devs to use the terraform commands sometimes. This makes it a leaky abstraction and also not as convenient. It would be nice to have a more flexible wrapper that can handle most or all of terraform's functionality.

Design and implementation notes

Adding all of it to Makefile would probably make the Makefile unweildy as Make isn't designed for that. Consider something like a bin/infra script that can be used like:

infra <layer> <command>

# Examples

# Accounts layer
# infra account <account_name> plan/apply

# update dev account
infra account dev apply

# Networks layer
# infra network <network_name> plan/apply

# update dev network
infra network dev apply

# Service layer
# infra service <app_name> <environment_name> apply

# update service layer
infra service app dev apply

# change workspace
infra service app dev workspace new my_workspace

Speeding up terraform by skipping initialization when possible

it would be nice if the script checked .terraform/terraform.tfstate | jq .backend.config to see if it is already the correct backend config and skip initialization if so to speed up terraform commands.

Autocomplete

autocomplete would be nice too:

the autocompletion options for infra_layer should be: network, build-repository, database, service
if the infra_layer parameter is network, the autocompletion options for backend_config_name should be the basename of the files in the directory infra/networks with the trailing .s3.tfbackend removed.
if the infra_layer parameter is build-repository, database, or service, the autocompletion options for app_name should be the names of the folders in the directory infra excluding the folders accounts, modules, networks, project-config, and test
if the infra_layer parameter is database, the autocompletion options for backend_config_name should be the basename of the files in the directory infra/$app_name/database with the trailing .s3.tfbackend removed.
if the infra_layer parameter is service, the autocompletion options for backend_config_name should be the basename of the files in the directory infra/$app_name/service with the trailing .s3.tfbackend removed.
if the infra_layer parameter is database or service, the autocompletion options for environment should be the basename of the files in the directory infra/$app_name/app-config with the trailing .tf removed, ignoring the files main.tf, outputs.tf, and feature-flags.tf
The autosuggestions for the rest of the arguments passed to iac (i.e. the "${args[@]}") variable, should use the autosuggestions from the terraform plugin of oh-my-zsh.

rocketnova commented 1 month ago

Somewhat related, but should ultimately be split into a separate issue:

The script should check .terraform/terraform.tfstate | jq .backend.config to see if it is already the correct backend config and skip initialization if so to speed up terraform commands.

Can we make jq a requirement for working with the platform templates? It would simplify a lot of our scripts.

lorenyu commented 1 month ago

Can we make jq a requirement for working with the platform templates? It would simplify a lot of our scripts.

Yeah I was avoiding adding dependencies at first but I realize now that it's a light, common, and robust enough dependency that it's worth it at this point given how much it'd simplify things

navapbc / template-infra