Terraform is a tool for safely and efficiently building, changing, and versioning infrastructure (infrastructure automation orchestration tool). Its goal is "Write, Plan, and create Infrastructure as Code". Terraform can support almost all cloud services available on the market. Specifically, it allows you to manage and maintain IT resources through code, automating tasks that previously required manual operations. The results are obvious: efficient and error-free.

Terraform provides flexible abstraction of resources and providers. This model allows representation of everything from physical hardware, virtual machines, and containers to email and DNS providers. Due to this flexibility, Terraform can be used to solve many different problems. This means there are many existing tools with overlapping functionality with Terraform. However, note that Terraform is not mutually exclusive with other systems. It can be used to manage different objects ranging from a single application to an entire data center.

About Terraform

Terraform is distributed as a single binary file. Install Terraform by extracting it and moving it to a directory included in the system path.

Download and Install

Terraform's official website is https://www.terraform.io, where you can easily find the download address: https://www.terraform.io/downloads.html

Prepare Environment

Note: I installed the Linux version. Other environments can be tested by yourself.

1: First check your Python environment

The default environment is 2.7.8, which is too low and needs to be upgraded to 3.6.8

2: Install Terraform

After extracting the Terraform file, it's a single file. Configure Terraform environment variables

3: Install aws-cli

Summary

At this point, the environment is ready. Let's enter the world of Terraform.

Create, Delete, and Modify S3 Bucket Using Terraform

(1). Each Terraform project needs its own separate directory space

(2). All *.tf files in the directory will be loaded by Terraform. Before initializing the Terraform workspace, there must be at least one *.tf file.

Terraform's configuration syntax is HashiCorp's proprietary HCL (HashiCorp configuration language), which is compatible with JSON format.

The provider "aws" section specifies which provider to use and authentication information.

(3) The resource "aws_s3_bucket" "s3_bucket" section

If bucket-test-bucket doesn't exist, running terraform apply will create it; otherwise, it will try to update the bucket.

(4) Initialize working directory

Before initializing the Terraform working directory, other commands like apply, plan are mostly unavailable, prompting you to initialize the working directory with the command: terraform init

(5). Execute Terraform management commands

With the previous preparations complete, you can finally start running Terraform management commands. Terraform provides an opportunity to preview the execution plan before actual execution, letting us clearly understand what will be done.

terraform plan

terraform apply

Summary

1. The basic operations of Terraform are just these few steps, very simple.
2. Create IAM Role that can operate Lambda, S3, and CloudWatch
3. Create IAM Policy with all EC2 operation permissions
4. Attach managed IAM policy to role
5. Create a Lambda function
6. Create a CloudWatch event rule to trigger Lambda function on schedule
7. Create Lambda permission to allow external sources to invoke Lambda function