Preconditions and Postconditions #30401
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
alisdair
force-pushed
the
f-preconditions-postconditions-rebased
branch
from
9043ebd to
ba06388
Compare
This construct of a block containing a condition and an error message will be useful for other sorts of blocks defining expectations or contracts, so we'll give it a more generic name in anticipation of it being used in other situations.
This allows precondition and postcondition checks to be declared for resources and output values as long as the preconditions_postconditions experiment is enabled. Terraform Core doesn't currently know anything about these features, so as of this commit declaring them does nothing at all.
If a resource or output value has a precondition or postcondition rule then anything the condition depends on is a dependency of the object, because the condition rules will be evaluated as part of visiting the relevant graph node.
alisdair
force-pushed
the
f-preconditions-postconditions-rebased
branch
from
ba06388 to
904bb28
Compare
If the configuration contains preconditions and/or postconditions for any objects, we'll check them during evaluation of those objects and generate errors if any do not pass. The handling of post-conditions is particularly interesting here because we intentionally evaluate them _after_ we've committed our record of the resulting side-effects to the state/plan, with the intent that future plans against the same object will keep failing until the problem is addressed either by changing the object so it would pass the precondition or changing the precondition to accept the current object. That then avoids the need for us to proactively taint managed resources whose postconditions fail, as we would for provisioner failures: instead, we can leave the resolution approach up to the user to decide. Co-authored-by: Alisdair McDiarmid <alisdair@users.noreply.github.com>
This is not currently gated by the experiment only because it is awkward to do so in the context of evaluationStateData, which doesn't have any concept of experiments at the moment.
alisdair
force-pushed
the
f-preconditions-postconditions-rebased
branch
from
904bb28 to
cdae6d4
Compare
alisdair
changed the title
jbardin
approved these changes
Feb 2, 2022
There was a problem hiding this comment.
We also need to verify that there are no self-references via a full address in these blocks, as that will bypass the self check in preconditions and possibly cause cycles to crop up during apply. This otherwise LGTM if you want to tackle that extra validation in a separate PR.
|
Thanks! Good catch, and I'll handle that in a follow-up PR for easier review. |
|
Reminder for the merging maintainer: if this is a user-visible change, please update the changelog on the appropriate release branch. |
|
I'm going to lock this pull request because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active contributions. |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR introduces two new concepts to help document expectations and assumptions about resources, data sources, and outputs. By specifying
preconditionandpostconditionblocks, module authors can define explicit checks which must betruefor the configuration to be valid.Preconditions are checked before creating a resource, reading a data source, or recording a module output value. These can be thought of as documented assumptions about the referenced data, which are checked by Terraform on every plan and apply. Preconditions can refer to values elsewhere in the configuration (which may cause Terraform to reorder the operations on those dependencies).
Postconditions are checked after creating a resource or reading a data source. As such, they may refer to values in the resource or data source directly. These can be thought of as assertions about the referenced data, ensuring that the module adheres to an explicit contract.
In configuration, preconditions and postconditions look a lot like custom variable validation rules, and in fact use the same underlying code. Here's a brief example:
For more examples and further background, see the included documentation page.
This PR is a rebase and update of #27008, and as such most of the code was written by @apparentlymart, apart from the bugs which are probably mine.