Terraform AWS provider
terraform {
required_providers {
aws = {
source = "hashicorp/aws"
}
}
}
Creating a provider.tf file in a dev environment is done by creating a text document and naming it “provider.tf”. This file can then be placed in the root directory of the development project. Once the file is created, you can copy and paste the code provided above into the file.
When creating the provider.tf file, it is important to remember to remove the version information from the code. This will allow the file to be used for different versions of the software being developed.
Shared Credential files provider
provider "aws" {
region = "us-east-1"
shared_credentials_files = "~/.aws/credentials"
profile = "vscode"
}
Copy and paste it in the providers.tf and change the
In order to open a new terminal and enter the command "terraform init," follow these steps:
1 Open the terminal by pressing Ctrl + Shift + `
- Enter the command "
terraform init" - Press the Enter key to execute the command.
You should see a confirmation message that the initialization succeeded. You can now use terraform to create and manage resources.
In VS Code, we need to add resources to a file called main.tf. To do this, we can use the following code:
resource "aws_vpc" "ct_vpc" {
cidr_block = "10.123.10.10/16"
enable_dns_hostnames = true
enable_dns_support = true
tags = {
Name = "dev"
}
}
To execute the above code, we will use Terraform Plan. This will provide us with data regarding the resources that will be deployed in the AWS Dev environment. This information will include the type of resources, such as EC2 instances, Auto Scaling groups, S3 buckets, etc., as well as the necessary configurations for those resources. This data will be used to ensure that the deployment of the resources is successful and that the end result is as expected. The Terraform Plan will also provide us with a preview of the resources that will be created in the AWS Dev environment, so we can review and validate the changes before the deployment is completed. Once the Terraform Plan is executed, the resources will be deployed in the AWS Dev environment.
Running the terraform apply command will initiate the actual execution of the Terraform code written in the configuration files. This command will create or modify the resources according to the configuration files. It will begin by displaying a plan of the planned operations and will then prompt for confirmation before proceeding further. After confirmation, it will create the necessary resources. Terraform will then display the state of the resources after execution.
To connect to your AWS resources and manage them using VS Code, you'll need to open the AWS icon on the left menu of VS Code. From there, select the appropriate profile for the resources you want to manage. If you want to manage an Amazon Elastic Compute Cloud (EC2) Virtual Private Cloud (VPC), select the AWS::EC2::VPC profile. Once you've connected to the resource, you'll be able to see important information, such as the VPC ID and other details related to the VPC.
After successfully connecting to the resource, you will be able to see the VPC ID, which is a unique identifier assigned to the Virtual Private Cloud. With this information, you can then access and manage other important aspects of the VPC such as the subnets, security groups, and route tables. Additionally, you can also view the VPC's IP address range, which defines the range of IP addresses used by the VPC. This range can be customized to fit the specific needs of your organization, providing greater control and flexibility over your network infrastructure.
Type terraform state list to show all the resources in AWS.
Terraform show is a command that displays the current state of your infrastructure resources. This includes the resources that are currently being managed by Terraform, such as Amazon Web Services (AWS) resources. It can show the details of the resources by retrieving their attributes from the current state. By using this command, you can check the configuration of the resources that Terraform is managing and ensure that they are up to date and in line with your desired state. Furthermore, you can use the output of the Terraform show command to help troubleshoot any issues that may arise with your infrastructure resources. Therefore, it is a useful command to know and utilize as a part of your infrastructure management toolkit.
To create a public subnet using Terraform, follow these steps:
- Define the VPC and subnet resources in your Terraform code.
- Set the "map_public_ip_on_launch" attribute of the subnet to "true".
- Associate the subnet with a route table that has an internet gateway as a target.
- Apply the Terraform code to create the subnet.
After these steps, you should have a public subnet in your infrastructure that can be used for hosting resources with public-facing IP addresses.
resource "aws_subnet" "ct_public_subnet" {
vpc_id = aws_vpc.ct_vpc.id
cidr_block = "10.123.1.0/24"
map_public_ip_on_launch = true
availability_zone = "us-east-1a"
tags = {
Name = "dev-public"
}
}
Run terraform run and check whether the given parameters are present.
After verifying the resources run terraform apply to run resources on the instance This will create the resources specified in the terraform configuration.
AWS can be accessed from the left menu of VS code. Select resources and click on settings, then add AWS::EC2::subnetNetworkAclAssociation and then click on OK.
now add internet gateway to the vpc by adding resource of igw to the main.tf file. enter the below terraform code to add resources. Run terraform plan and terraform apply to see the changes
resource "aws_internet_gateway" "ct_internet_gateway" {
vpc_id = aws_vpc.ct_vpc.id
tags = {
Name = "dev-igw"
}
}
You can now run the Terraform plan and apply to add resources. To view the details of the route table, add the route table to the menu of the Amazon Web Services resources in Visual Studio Code.
A very important resource is now being added to AWS and it is the security group.
Add the following code to main.tf for incoming and outgoing traffic For ingress, we need to use the IP address of the access computer, which can be a user's IP address, and egress should be 0.0.0.0/0 for outbound traffic to any machine. and run terraform plan and apply respectively.
We now need to add an EC2 instance to our AWS account, so I'm using an Ubuntu server running on EC2. To do this, we must copy the ami ID, which is underlined in the image below.
paste the ami id under ec2→AMIs and search. now copy the owner number.
copy the ami name from details below.
Now create a new file in vs code as datasources.tf and copy the below code in vs code and change owner according to you and paste AMI name in filter value and change the ending server number with * . After making changes run terraform plan and terraform apply.
data "aws_ami" "server_ami" {
most_recent = true
owners = ["099720109477"]
filter {
name = "name"
values = ["ubuntu/images/hvm-ssd/ubuntu-jammy-22.04-amd64-server-*"]
}
}
Lets create a public key using built-in key generator by using following command
type as:
C:\\Users\\Chait/.ssh/"any name" hit enter.
ssh-keygen -t ed25519hit enter.
add user data as below mentioned into a new file and name it as userdata.tpl to vs code for installation of docker on ec2 instance.
ssh into the ec2 instance using below command.
ssh -i C:\\Users\\Chait\\.ssh\\ctkey [ubuntu@100.26.150.177]
create a new file for configuration name it as windows-ssh-config.tpl
add-content -path c:/users/Chait/.ssh/config -value @'
Host ${hostname}
hostName ${hostname}
User ${user}
IdentityFile ${identityfile}
'@
In main.tf add provisioner in that add hostname, user and identityfile as mentioned below
provisioner "local-exec" {
command = templatefile("windows-ssh-config.tpl", {
hostname = self.public_ip,
user = "ubuntu",
identityfile = "~/.ssh/ctkey"
})
interpreter = ["Powershell", "-command"]
}
}
after making changes run the terraform code as terraform apply -replace aws_instance.dev_node
now in terminal enter command as cat ~/.ssh/config
User can see that vs code had ssh into the Ec2 instance.
now users can share files remotely and has full access to ec2 instance.
hit on trust and user can view the directory of ubuntu files
here is my Ec2 Instance connected to the vs code.
after completing the whole process destroy the resource which we have create for that enter the command as terraform destroy -auto-approve
we have now successfully created developer environment using AWS and terraform.
