aws configure list: list current aws configurations and masked credentials. These details are stored in~/.aws/credentials
terraform init: pick up and download providers for configuration files present in directoryterraform plan: more less a dry run of the changes. shows a diffterraform apply: apply changesterraform fmt: format fileterraform validate: validate fileterraform state list: list states for manual state managementterraform show: show current state of deployed resource as stated interraform.tfstateterraform apply [-var region=us-west-2 |-var-file-"secret.tfvars"]: input variables can be passed using the var flag or variable files a lot like .env files or as envs of the formTF_VAR_<variable-name>terraform output ip: query the output variable of configuration file.
- Applying a config to using the wrong ids eg. the AMI ids in the wrong region would work but not create the instance at all...i.e. it fails quietly
- AWS regions can be a bitch!
- Make sure your S3 bucket name is unique across all AWS or else you get:
Error creating S3 bucket: AuthorizationHeaderMalformed: The authorization header is malformed; the region 'us$
east-1' is wrong; expecting 'us-west-2'
- Provisioners only run when a resource is created/updated/destroyed. If there's nothing to change on the resource they don't run.
- Remove spaces before policy json brackets to avoid errors
- Function will return
nullif function is not async or doesn't usecallback - Lamdas have to begin access to SQS queues via policies
.tffiles should be committed to vcs.tfstatefiles shouldn't be committed to vcs. They should only be shared with trusted be people who are to manage the resources defined. For production it should be stored remotely using Terraform Cloud TFC- provisioners are only meant to be bootstrappers.