Configure Terraform State storage
Terraform State is a file with the .tfstate
extension that stores up-to-date information about the state of the infrastructure and the configurations in use.Terraform State is created when the terraform apply
command is first applied
and is updated each time changes are made to the configuration files. Terraform compares the actual infrastructure with its description in the Terraform State file. If Terraform finds discrepancies, it modifies the real infrastructure so that it matches the description in Terraform State again. For more information about Terraform State, see the Terraform State in HCP Terraform article and the State section of the HashiCorp documentation.
The Terraform State file is stored locally by default. To allow users to retrieve IDs of created resources and share infrastructure state, we recommend storing Terraform State remotely. For example, you can configure Terraform State storage in Selectel Object Storage.
Configure Terraform State storage in Selectel object storage
These instructions are for Terraform version 1.6.0 and higher.
-
In the configuration file, add a
backend
block:terraform {
required_providers {
selectel = {
source = "selectel/selectel"
version = "~> 6.0"
}
openstack = {
source = "terraform-provider-openstack/openstack"
version = "2.1.0"
}
}
backend "s3" {
endpoints = { s3 = "https://s3.ru-1.storage.selcloud.ru" }
key = "<file_name>.tfstate"
region = "ru-1"
skip_region_validation = true
skip_credentials_validation = true
skip_requesting_account_id = true
skip_s3_checksum = true
skip_metadata_api_check = true
}
}Specify
<file_name>
— the name of the Terraform state file in the object storage container. -
Create a
secret.backend.tfvars
file and add sensitive information to it that is required for authorization in the object store:bucket = "<container_name>"
access_key = "<access_key>"
secret_key = "<secret_key>"Specify:
<container_name>
— name of the container in the object store where the Terraform state file will be stored. You can look in control panel under Object Storage → Containers;<access_key>
— S3 key Access Key ID, which has been issued to the user;<secret_key>
— secret S3 Secret Access Key Secret Access Key.
-
Initialize the Terraform configuration changes:
terraform init -backend-config=secret.backend.tfvars