Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/mantl/terraform.py
Ansible dynamic inventory script for parsing Terraform state files
https://github.com/mantl/terraform.py
Last synced: 7 days ago
JSON representation
Ansible dynamic inventory script for parsing Terraform state files
- Host: GitHub
- URL: https://github.com/mantl/terraform.py
- Owner: mantl
- License: apache-2.0
- Archived: true
- Created: 2015-06-02T14:18:39.000Z (over 9 years ago)
- Default Branch: master
- Last Pushed: 2019-02-06T21:33:36.000Z (almost 6 years ago)
- Last Synced: 2024-05-23T02:31:44.240Z (6 months ago)
- Language: Python
- Size: 213 KB
- Stars: 450
- Watchers: 40
- Forks: 122
- Open Issues: 20
-
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- License: LICENSE
Awesome Lists containing this project
- awesome-ansible - terraform.py - Ansible dynamic inventory script for parsing Terraform state files. (Tools)
- awesome-tf - terraform.py - Ansible dynamic inventory script for parsing Terraform state files. :skull: (Tools / Community providers)
README
# Terraform.py
[](https://travis-ci.org/mantl/terraform.py)
**Table of Contents**
- [Terraform.py](#terraformpy)
- [Installation](#installation)
- [Usage](#usage)
- [Releases](#releases)
- [Adding a new provider](#adding-a-new-provider)
- [Common Utilities](#common-utilities)
- [`parse_attr_list`](#parseattrlist)
- [`parse_dict`](#parsedict)
- [`parse_list`](#parselist)
- [License](#license)
`terraform.py` is a dynamic Ansible inventory script to connect to systems by
reading Terraform's `.tfstate` files. It currently supports:
- AWS ([`aws_instance`](https://www.terraform.io/docs/providers/aws/r/instance.html))
- Google Cloud ([`google_compute_instance`](https://www.terraform.io/docs/providers/google/r/compute_instance.html))
- Openstack ([`openstack_compute_instance_v2`'](https://www.terraform.io/docs/providers/openstack/r/compute_instance_v2.html))
- DigitalOcean ([`digitalocean_droplet`](http://terraform.io/docs/providers/do/r/droplet.html))
- Azure ([`azure_instance`](https://www.terraform.io/docs/providers/azure/r/instance.html))
- AzureRM ([`azure_virtual_machine`](https://www.terraform.io/docs/providers/azurerm/r/virtual_machine.html))
- VMware vSphere ([`vsphere_virtual_machine`](https://www.terraform.io/docs/providers/vsphere/r/virtual_machine.html))
- CenturyLinkCloud ([`clc_server`](https://www.terraform.io/docs/providers/clc/r/server.html))
- SoftLayer ([`softlayer_virtualserver`](https://github.com/finn-no/terraform-provider-softlayer)) (Unofficial)
- Dimension Data CloudControl ([`ddcloud_server`](https://github.com/DimensionDataResearch/https://github.com/DimensionDataResearch/dd-cloud-compute-terraform)) (Unofficial)
For terraform >= 0.9.0, it also supports s3 remote state (and it should be trivial to add other backing stores)
## Installation
```
git clone [email protected]:mantl/terraform.py.git
pipsi install terraform.py # basically, it needs to be on your path when you run ansible
```
In your inventory, you use a shell script to wrap this so that the inventory name is correctly passed to ati:
```
INVENTORY_DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
ati "$@" --root $INVENTORY_DIR
```
## Usage
Make sure that you've annotated your resources with "tags" that correspond to the sshUser for the machine.
Example, for EC2 resources, add a [tags](https://www.terraform.io/docs/providers/aws/r/instance.html#tags) entry of "sshUser" equal to "ec2-user":
tags {
Name = "cheese"
sshUser = "ec2-user"
}
Example, for AzureRM resources, add [tags](https://www.terraform.io/docs/providers/azurerm/r/virtual_machine.html#tags) entries for ssh_user, role and ssh_ip based on the [Network Interface](https://www.terraform.io/docs/providers/azurerm/r/network_interface.html) you plan to access the instance from:
tags {
ssh_user = "azurerm-user"
ssh_ip = "${azurerm_network_interface.my_nic.private_ip_address}"
role = "myrole"
}
So, if you have ansible and terraform in the same directory, and you call ansible from the top level directory, like, so:
```
.
├── inventory
│ ├── dev
│ │ ├── dev.inventory
│ │ ├── group_vars -> ../group_vars
│ │ └── terraform_inventory.sh -> ../terraform_inventory.sh
│ ├── group_vars
│ │ ├── dev
│ │ ├── prod
│ ├── prod
│ │ ├── group_vars -> ../group_vars
│ │ ├── prod.inventory
│ │ └── terraform_inventory.sh -> ../terraform_inventory.sh
│ ├── terraform_inventory.sh
└── terraform
├── dev
│ ├── dev.tf
│ ├── dev.tfvars
│ ├── .terraform
│ └ └── terraform.tfstate
├── prod
│ ├── prod.tf
│ ├── prod.tfvars
│ ├── .terraform
│ └ └── terraform.tfstate
├── README.rst
└── variables.tf
```
then from the top level directory(.), you can call ansible as:
`ansible all -i inventory/dev --list-hosts`
and it will only list hosts from `terraform/dev`, and will also sucessfully list hosts stored only in remote state with terraform >= 0.9.0
## Releases
`terraform.py` is with matching versions of
[mantl](https://github.com/CiscoCloud/mantl). Run `terraform.py --version` to
report the current version.
## Adding a new provider
To add a new provider, you need to implement a parser for that provider's
resources in `terraform.py`. Parsers should only be implemented for resources
that Ansible can connect to and modify (instances, nodes, whatever your platform
calls them.) A parser is a function that takes a resource (a dictionary
processed from JSON) and outputs a tuple of `(name, attributes, groups)`. The
parser should be decorated with the `parses` decorator, which takes the name of
the resource (EG `aws_instance`). It should also be decorated with
`calculate_mantl_vars`.
As a guideline, `terraform.py` should require no resources outside the Python
standard distribution so it can just be copied in wherever it's needed.
### Common Utilities
Terraform's state files represent node attributes as a flat dictionary, but
contain nested information within them. This tends to look something like this:
...
"disk.#": 1,
"disk.0.auto_delete": "true",
"disk.0.device_name": ""
...
It's much easier to work with nested information in Ansible, so `terraform.py`
has three sub-parsers to transform these structures:
#### `parse_attr_list`
`parse_attr_list` takes a dictionary, a prefix, and an optional separator and
returns a list of dictionaries. The limited "disk" example above would become:
[{"auto_delete": "true", "device_name": ""}]
#### `parse_dict`
`parse_dict` takes a dictionary, a prefix, and an optional separator and returns
a dictionary. Given keys like this and the prefix "metadata":
...
"metadata.#": "3",
"metadata.dc": "gce-dc"
...
`parse_dict` would return something like this:
{"dc": "gce-dc"}
#### `parse_list`
Lists are rarer in Terraform states, but still occur in things like tag lists.
`parse_list` takes a dictionary, a prefix, and an optional separator and returns
a list. Given keys like this and the prefix "keys":
...
"tags.#": "2",
"tags.2783239913": "mantl",
"tags.3990563915": "control",
...
`parse_list` would return this:
["mantl", "control"]
## Contributing
For contributions, please do at least the following:
* Run py.test before and after your updates. Try and make sure the code coverage stays at
at least at the same level.
* Run pydocstyle, and make sure that any code you've touched passes.
* py.test will also run flake8, so that should take care of itself.
## License
Copyright © 2015 Cisco Systems, Inc.
Licensed under the
[Apache License, Version 2.0](http://www.apache.org/licenses/LICENSE-2.0) (the
"License").
Unless required by applicable law or agreed to in writing, software distributed
under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR
CONDITIONS OF ANY KIND, either express or implied. See the License for the
specific language governing permissions and limitations under the License.