Terraform Provider Hosts
a terraform provider to work with hosts-files
Prerequisites
To build:
- GNU make
- Golang >= v1.13
- Terraform plugin SDK ~= v1.0.0
To use:
- Terraform >= v0.12.9
Optional:
- PSConsole for PowerShell
Building The Provider
-
Clone the git-repository on your machine
mkdir -p $my_repositories cd $my_repositories git clone git@github.com:stefaanc/terraform-provider-hosts
$my_repositoriesmust point to the directory where you want to clone the repository -
Build the provider
cd $my_repositories/terraform-provider=hosts make release
This will build the provider and put it in
%AppData%\terraform.d\pluginson Windows$HOME\.terraform.d\pluginson Linux
💡
The makefile provides more commands:tidy,test,log,report,testacc,build, ...
Installing The Provider
-
Download the provider to your machine
- go to the releases tab on github
- download the file that is appropriate for your machine
-
Move the provider from your
Downloadsfolder to%AppData%\terraform.d\pluginson Windows$HOME\.terraform.d\pluginson Linux
💡
Alternatively, you can try our latest release-in-progress under thereleasesfolder. No guarantee though this will be a fully working provider.
Using The Provider
💡
You can find the following examples (and more) under theexamplesfolder
provider "hosts"
Defines a provider for a hosts-file.
provider "hosts" {
file = "./hosts-test.txt"
zone = "myzone"
}| Arguments | Description | |
|---|---|---|
file |
Optional | The path to the hosts-file - defaults to "C:\Windows\System32\drivers\etc\hosts" on Windows or "/etc/hosts2 on LinuxThe default file is usually good for production, but a different file can be specified for testing of your terraform configuration. |
zone |
Optional | The name of the zone in the hosts-file - defaults to "external" A zone is a concept that was introduced to clearly split the records in the hosts-file in one or more sections that are managed by terraform and a section that is not managed by terraform. See Using Zones for more information. The default "external" zone only allows you to use "datasources". If you want to create and maintain "resources", then a zone-name (different from "external") will need to be specified. |
Data-sources
data "hosts_record"
Reads a record from the hosts-file. Records in a hosts-file look something like 1.1.1.1 myhost1 myhost1.local # server myhost1
data "hosts_record" "myhost1" {
name = "myhost1"
}| Arguments | Description | |
|---|---|---|
name |
Required | A name of the record that is to be read. A records can have multiple names, but only one of the names of the record should be enough to identify the record (provided no other records with the same name has been manually added by mistake). In the illegal case where there are multiple records with the same name, the provider will not be able to find a single matching record. |
| Exports | Description | |
|---|---|---|
record_id |
Computed | An internal record_id for the record that is read, for instance 1Remark that the internal record_id does not persist over different terraform action. It can change as records are added to or deleted from the hosts-file. |
address |
Computed | The address of the record that is read, for instance "1.1.1.1". |
names |
Computed | An array of names for the record that is read, for instance [ "myhost1", "myhost1.local" ]. |
comment |
Computed | The comment of the record that is read, for instance " server myhost"`. |
💡
It may be a good idea to add analiasto your provider configuration and aproviderto your data-source configuration. This avoids terraform going to the default "production"hosts-file when you (per accident) delete your provider configuration and runterraform refresh(orterraform planorterraform apply). Not doing this may silently update your terraform state with unwanted information from the "production"hosts-fileinstead of deleting the information.provider "hosts" { alias = "external" file = "./hosts-test.txt" } data "hosts_record" "myhost1" { provider = hosts.external name = "myhost1" }When you now apply this config, then delete both the provider and datasource from the config, and then run
terraform refresh(orterraform planorterraform apply), you will get the following error
Resources
resource "hosts_record"
Manages a record in the hosts-file. Records in a hosts-file look something like 111.111.111.111 myhost111 myhost111.local # server myhost111
resource "hosts_record" "myhost111" {
address = "111.111.111.111"
names = [ "myhost111", "myhost111.local" ]
comment = "server myhost111"
notes = "a first test-server"
}| Arguments | Description | |
|---|---|---|
address |
Required | The IP address of the record that is to be created. When changing the address of a record, the old record will be deleted and a new record will be created. |
names |
Required | An array of names for the record that is to be created Remark that names are always converted to lower-case when written to the hosts-file and when written to the terraform state. When changing one of the names of a record, or when adding or dropping a name to the record, the old record will be deleted and a new record will be created. |
comment |
Optional | The comment for the record that is to be created - defaults to "" |
notes |
Optional | Notes about the record that is to be created - defaults to "" Remark that notes are not saved in the hosts-file. This means that when you add notes, this will lead to a harmless terraform update action in order to save them in the terraform state, and do this every time you apply your configuration. |
| Exports | Description | |
|---|---|---|
record_id |
Computed | An internal record_id for the record that is read, for instance 1Remark that the internal record_id does not persist over different terraform action. It can change as records are added to or deleted from the hosts-file. |
💡
Remark that it is perfectly legal to have multiple records with the sameaddress, but it is illegal to have multiple records with the samename. The terraform"hosts_record"-resource doesn't allow to create records with such conflicting names. However, externally managed records may have them by mistake.
Importing a hosts-record
You can import a record using any of the hosts-file's names as an import-ID.
-
Assuming you have an existing hosts-file.
##### Start Of Terraform Zone: myzone ########################################## 999.999.999.999 myhost999.local ##### End Of Terraform Zone: myzone ############################################💡
Remark that this will only work when the record is in a hosts-zone, because "external " records cannot be managed by terraform. -
Assuming you have a
host_recordresource configuration, and this resource is not yet/anymore in the terraform stateprovider "hosts" { alias = "myzone" file = "./hosts-test.txt" zone = "myzone" } resource "hosts_record" "myhost999" { provider = hosts.myzone address = "999.999.999.999" names = [ "myhost999", "myhost999.local" ] comment = "server myhost999" notes = "my lost server" }
When terraform tries to create it then this will fail since it already exists. You can edit the hosts-file and delete the resource, and then re-create it using terraform. However, this may be a bit more involved when you need to automate this. Alternatively you can import it.
-
Run the terraform command using any of the names in the hosts-file. The name doesn't have to be one of the names in the resource configuration.
terraform import -provider="hosts.myzone" "host_record.myhost999" "myhost999.local"
The resource will be imported from the hosts-file into the terraform state, and the usual lifecycle will be applied next time
terraform applyis run.💡
Remark that without specifying a provider option,terraform importwill use the default hosts provider (the provider without alias). If there is no default provider specified in your configuration (all your providers have an alias), a provider with default values will be used (the default path to the "production" hosts-file and the default "external" zone). Remark also that the provider used in the import command, does not have to be the same as the provider in the configuration of the resource. However, this will lead to errors when applying the configuration, since both providers are pointing to a hosts-file on the same server.
Using Zones
Zones in a hosts-file are used to clearly split managed from unmanaged records. It is bad practise to edit the managed zones manually, although it is the only way to clean them up when you loose the terraform state file. Re-applying terraform will re-create the zones and the records that are still in use.
1.1.1.1 myhost1 myhost1.local # externally managed
2.2.2.2 myhost2 myhost2.local # externally managed
3.3.3.3 myhost3 myhost3.local # externally managed
##### Start Of Terraform Zone: myzone1 #########################################
111.111.111.111 myhost111 myhost111.local
222.222.222.222 myhost222 myhost222.local
333.333.333.333 myhost333 myhost333.local
##### End Of Terraform Zone: myzone1 ###########################################
##### Start Of Terraform Zone: myzone2 #########################################
444.444.444.444 myhost444 myhost444.local
555.555.555.555 myhost555 myhost555.local
666.666.666.666 myhost666 myhost666.local
##### End Of Terraform Zone: myzone2 ###########################################
ℹ️
At this moment, zones are not automatically deleted when all its records are deleted. You will need to manually delete such zones if you want to get rid of them.
More Information
Resource lifecycle methods
API data structure
For Further Investigation
- delete a zone from the hosts-file when all records in the zone are deleted - this will be solved if/when we introduce
hosts_zoneresources - delete a hosts-file when all zones & records are deleted and no external records exist - this will be solved if/when we introduce
hosts_fileresources - working with hosts-files on remote servers
- provide a post create/delete action (the provisioners only work post-create), f.i. to restart a service that needs to be restarted after every change to the hosts-file
- add acceptance tests
- terraform-style documentation
- test for memory leaks