Typically, when working with Terraform, there are multiple ways to achieve the same result, which can be particularly useful with more complex AWS configurations. In this blog post, I will show different approaches to defining S3 bucket lifecycle rules with…
When you start working on new solution most likely you would have at least two separate AWS accounts one for testing (e.g. sandbox) and one for production. Managing infrastructure across multiple accounts can get messy and it is crucial to…
Delivering new versions of AWS Lambda functions and Lambda layers can get tricky, especially when you have a lot of native dependencies such as psycopg2 and multiple functions. This blog shows how, with a minimal setup, you can create production-ready…
AWS API Gateway integrated with Cognito is perfect approach for exposing Lambda or other computing services. It offers a secure and scalable solution also for serverless applications. In this blog post, we will explore how to integrate API Gateway with…
When working with Terraform often you need to manage dynamic infrastructure across multiple availability zones or resources and that requires looping. In order to do this effectively you need to learn how to use Terraform count, length, element and tolist.…
Sometimes when deploying infrastructure the default behaviour when creating, destroying or even updating resources isn’t ideal. In order to successfully manage this you can utilize Terraform Lifecycle Policies. In this blog post we will explore various policies and how to…
Stream CloudWatch Metrics to third party with Terraform
There are specific situations in Terraform when you need to manually recreate resource even nothing in the code has changed such as incomplete script, resource drift, provisioner failed etc. When resources changed outside of Terraform management of the state file…
There are some situations when deploying infrastructure that Terraform doesn’t handle everything automatically. For example if you need to run a script or copy a file provisioners comes to the story because they let you run commands or transfer files…
In large Terraform ecosystems the risk that someone might accidentally (or intentionally 🙂 ) change something grows. Access control in Terraform is always the first line of defense and it’s not just about IAM roles, but also how to structure…
