helper/schema feature: nestable resources #57
Comments
|
🙌 |
|
How about child resources to define dependencies on parent resources instead? So following is possible: Because
Note that |
|
Is there any update available on this? I've got an issue at the moment where I create a bulk of a route table (and it's routes) via the |
ConceptI was thinking something similar to this. It would be nice if some resources could have child resources that are opaque in the configuration, but behaved sort of like submodules in the plan. I actually arrived to this conclusion that nested resources would be beneficial to Terraform after reading The Idea of Lisp on the Practical Developer. Therein is discussed the idea that lisp Macros are simply functions built in lisp that return lisp code, thereby providing a fluid extension point for writing additional language features. My thinking is you could have "macro resources", which behave as a resource - being defined by the plugin and not imported as a configuration - but return multiple sub-resources to be included in the graph and applied to the plan and stored individually in the state file. I think the key difference between this idea and that of submodules is that nested resources would be defined by the provider plugin, and not by user configuration. Configuration BenefitsExamples of where this would be useful are things like assignments and security group rules, where there is already an option on the resource, and a separate resource entity, and they are not compatible. State BenefitsHaving the separate resource entity as a child resource might allows something like User Experience BenefitsNested resources as a concept simplifies the complex relationships between some resources by allowing "associative" resources to be used in compatibility with config blocks on parent resources. This would specifically provide a nice bridge from beginner to power-user. I have a theory that a beginner would use config blocks attached to the parent resource until they run into a limitation of that configuration style, and then transition to what power users would be more likely to use - the separate resource, and make submodules to compose resources together. |
|
Oh... it would also be kind of neat if the sub-resources did not have to come from the same provider. Ie, you could do a meta-resource like "dns_record" that took configuration common to a bunch of the DNS providers, and a property that said which one to use, making it simpler to switch between providers when used in submodules. For example, some of my projects have different DNS providers just because of who my clients work with. That would allow me to share my VM configuration submodule between clients without having to write a some hacky thing with a count of zero, etc. I do imagine the implementation of such an idea would require non-computed fields much like count does now, but would delegate a portion of the graph builder to the provider plugin to determine what sort of resource a particular node would be. |
|
If I wasn't bound by current limitations and conventions (WIP), I may have approached the Linode Instance resource differently. I think you would want to be able to access your parent's attributes within these sub-resources (explicitly and implicitly within plugins for the parent.ID)). The API required order for this example schema to be applied would be:
// The instance can be created with a simple API call
// This automatically creates physical 'config' and 'disk' sub-resources
// TF parent resources *should* have the ability to import child resources.
resource "linode_instance" "simple" {
region = "us-east"
type = "g6-nanode-1"
image = "linode/debian9.1"
}
// .. more complex configurations require more API calls and CRUD operations on
// REST sub-resources /instance/123/config/456, /instance/123/disk/456
resource "linode_instance" "complex" {
region = "us-east"
type = "g6-nanode-1"
// the instance can be created bare and unpowered, but provisioners need it running
// creating the disk, via API, requires the instance be created but not running
disk "diskA" {
label = "diskA"
size=1000
image = "linode/debian9.1"
}
disk "scratch" {
count = 3
label = "scratch${count.index}"
size=1000
}
config "configA" {
// ...
devices = {
sda = { disk_id = "${self.disk.diska.id}" }
sdb = { disk_id = "${self.disk.scratch.0.id}" }
sdc = { disk_id = "${self.disk.scratch.1.id}" }
sdd = { disk_id = "${self.disk.scratch.2.id}" }
}
}
config "configsB" {
label = "configb-${count.index}"
count = "3"
devices = {
sda = { disk_id = "${self.disk.diska.id}" }
sdb = { disk_id = "${element(self.disk.scratch.*.id, count.index)}" }
}
}
boot_config_id = "${self.config.configsB.2.id}"
} |
|
Going to merge this to #220 0.12 supports "named blocks", and once that is supported in the SDK, it should cover some of the use cases described here. Anything more significant, including handling of resources invoking other resources, is probably better left to upstream Terraform. If the usecase for the true nesting of real resources is just about code reusability, we can achieve that in other ways. |
|
I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further. |
ghost
locked and limited conversation to collaborators
I've talked about this feature on several threads now. Time to centralize the conversation!
Background
The context: some resources are so closely related to each other that they are nearly always considered together: Security Group / Rule, DNS Zone / Record, IAM Group / User, etc.
The legacy implementation: it was common to model these as "sub-resources" in the schema, e.g. Security Group Rules Sub-Resource
The problem: "sub-resources" are bug-prone, difficult for provider implementors to work with, and require that all details be known at resource definition time.
Interim solution: lean on top-level resources for their simplicity in implementation and their flexibility (e.g. Security Group Rule Top-Level Resource)
Remaining problem: top-level resources are clunky and verbose to work with in configs
Proposed Solution
Add a
helper/schemafeature I'm calling "nestable resources", allowing provider authors to configure places to nest top-level resources into the definition of a related resource.A sketch of what this might look like from the provider implementation side, using Security Group Rules as an example:
This would make the following two configs equivalent:
The text was updated successfully, but these errors were encountered: