stackoom
  简体   繁体   中英

How to reference a resource created in one file in another file in terraform

 原文  2019-01-22 08:11:02       terraform

Question

terraform/env/res/main.tf : 

resource "aws_security_group" "allow_all" {
  name        = "allow_all"
  description = "Allow all inbound traffic"
  vpc_id      = "${aws_vpc.main.id}"

  ingress {
    from_port   = 0
    to_port     = 0
    protocol    = "-1"
    cidr_blocks = ["0.0.0.0/0"]
  }

  egress {
    from_port       = 0
    to_port         = 0
    protocol        = "-1"
    cidr_blocks     = ["0.0.0.0/0"]
  }
}

terraform/mod/sec/main.tf : 

resource aws_elb "elb" { 
  name = "elb-example"
  subnets         = ["${data.aws_subnet_ids.all.ids}"]
  security_groups = ["${aws_security_group.allow_all.id}"] # SG 
  internal        = false
  listener = [
    {
      instance_port     = "80"
      instance_protocol = "HTTP"
      lb_port           = "80"
      lb_protocol       = "HTTP"
    },
    {
      instance_port     = "8080"
      instance_protocol = "HTTP"
      lb_port           = "8080"
      lb_protocol       = "HTTP"
    },
  ]

  health_check = [
    {
      target              = "HTTP:80/"
      interval            = 30
      healthy_threshold   = 2
      unhealthy_threshold = 2
      timeout             = 5
    },
  ]
  access_logs = [
    {
      bucket = "my-access-logs-bucket"
    },
  ]
  lifecycle {
    prevent_destroy = true
  }
}

Running into error undefined variable aws_security_group.allow_all in variable aws_security_group.allow_all_id .

Also, is it possible to verify a string and add an additional security group? Ternary conditional is what I can think of. Can you suggest any other alternatives?

1 answers

solution1
 14  2019-02-01 05:48:40

It looks like you have two modules, one is terraform/mod/sec and the other is terraform/env/res . The former defines an aws_security_group resource and the latter uses that security group id to create a aws_elb resource.

I'm assuming you're running terraform from the res directory which is incorrect. Instead what should be done is output the security group id in the res module

output "sg_id" {
  value = aws_security_group.allow_all.id
}

and then reference the res module within the sec module.

module "res" {
  source = "../../env/res"

  # ... additional inputs
}

resource "aws_lb" "default" {
  name            = "lb-example"
  subnets         = [data.aws_subnet_ids.all.ids]
  security_groups = [module.res.sg_id] # uses the module output to insert SG
  internal        = false

  listener = [
    # ...
  ]

  # ... additional inputs
}

Then this can be run

cd terraform/mod/sec
terraform init
terraform plan

and that should apply the new security group in the res module which outputs the security group id using sg_id , which is then used by the sec module as an input to the aws_lb resource.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question In Terraform how to reference ID's of one resource in another resource? How can I move one AWS resource (say, S3 bucket) created by terraform file of one project into another project, without deleting the resource? How to reference a resource created by a Terraform module Terraform For_Each: How to reference created resource ID How do I use local_file resource to save pem file to disk which was created by tls_private_key resource in Terraform? Terraform How to use for each values from one resource in another resource Terraform -- access resource which is created in the same main.tf file how to use template_file resource in terraform Pass terraform output from one file to another Terraform: How to pass output from one resource to another?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM