avatarBhargav Bachina

Summary

The provided content outlines a method for building multiple Azure environments using Terraform, with a focus on organizing infrastructure code using folders for different environments like development, QA, and production.

Abstract

The article discusses the necessity of having distinct environments such as development, QA, and production for applications deployed on Azure. It emphasizes the use of Terraform, an Infrastructure as Code (IaC) tool, to streamline the creation and management of these environments through code. The author guides readers through the prerequisites for working with Azure and Terraform, including hands-on experience with Azure cloud services, understanding of resource groups and subscriptions, and familiarity with Terraform and its configuration language, HCL. The article provides an example project that demonstrates how to configure Terraform's backend for state management, create infrastructure for a single environment, and extend this to multiple environments using separate folders for isolation. It also covers the setup of a Microsoft Azure Account, creation of a subscription, and the use of a code editor like VSCode. The author illustrates the process of initializing Terraform, planning and applying configurations, and verifying the creation of resources in the Azure portal. The article concludes by summarizing the importance of different environments and the advantages of using Terraform for their creation, while also hinting at future exploration of other methods like workspaces and Terragrunt.

Opinions

  • The author suggests that Terraform's state management is crucial for determining the actions on resources during the apply command.
  • Using separate folders for each environment is presented as a best practice for isolating Terraform environments when running scripts from a local machine.
  • The article implies that having a separate environment for regression testing, in addition to development, QA, and production, is beneficial and can be easily accommodated with Terraform's approach to infrastructure management.
  • The author expresses a preference for Visual Studio Code (VSCode) due to its good extensions and support from Microsoft.
  • The use of Azure's resource groups and subscriptions is highlighted as an effective way to organize and bill for resources in different environments on Azure.
  • The author advocates for the use of Terraform workspaces or different folders as efficient methods for creating multiple environments, with a promise to delve into these and other methods in future posts.

Azure — Building Different Environments With Terraform Using Folders

An Example Project using Azure Resource Groups

Every application needs different environments for different purposes and each application needs at least 3 environments. For example, we need a Development environment for the developers to push the code and test it themselves, a QA environment for testers to test the app before we put that into production, a prod environment for the live users.

We need to build these environments before we deploy our applications. We can even have a separate one for regression testing and we can have as many environments as we want. It all depends on our needs.

Terraform is an Infrastructure as a code tool that can build these environments with one command. In Azure, we can build these environments using resource groups and subscriptions. In this post, we will see how we can build different environments on Azure using Terraform.

  • Prerequisites
  • Example Project
  • Configuring Backend
  • Creating Infrastructure For One Environment
  • Create Multiple Environments
  • Summary
  • Conclusion

Prerequisites

Let’s see what are some prerequisites before going through this post.

Azure

You need to have hands-on experience on the Azure cloud at least you need to understand how resource groups work on Azure. If you are not familiar with the resource groups or subscriptions and how these things are important when you are building different environments on Azure, check out the below post.

How To Create Different Environments on Azure

How To Provision Infrastructure on Azure With Terraform

Terraform

Terraform is the infrastructure as a Code offering from HashiCorp. It is a tool for building, changing, and managing infrastructure in a safe, repeatable way. Operators and Infrastructure teams can use Terraform to manage environments with a configuration language called the HashiCorp Configuration Language (HCL) for human-readable, automated deployments. Go through the below post if you are not familiar with it.

How To Get Started With Terraform

Terraform — 5 Ways To Create Infrastructure in Multiple Environments

VSCode

Any code editor is fine, but this has very good extensions and maintained by Microsoft. Here is the link for it.

Azure Prerequisites

Once you install the necessary components and run the terraform on your local machine. It’s time to create a Microsoft Azure Account checkout this link

You can see the below dashboard once you create your account.

Azure Dashboard

Create a subscription

You need to create a subscription that’s how It serves as a single billing unit for Azure resources in that services used in Azure are billed to a subscription

Pay-As-You-Go Subscription

Install the Azure CLI and authenticate with Azure with the following command. Make sure you have the right subscription account by default.

az login
az account list --output=table

Example Project

Here is an example project that you can clone and use to create infrastructure from your local machine.

// clone the project
git clone https://github.com/bbachi/terraform-azure-multi-env-folders.git
// init
terraform init
// plan
terraform plan 
// apply
terraform apply

Configuring Backend

Every Terraform project has a state and this state determines which resources to create, destroy, etc. Whenever you do the Terraform apply command it looks at this state and determines the action on the resources. By default, Terraform uses the “local” backend, which is the normal behavior of Terraform. This is not the case in the professional environment and you can’t use the local backend all the time since we work in a collaborative environment with teams. In Terraform, Backend is a way to configure a Terraform state in a remote place where everybody can access in a collaborative environment.

You can store the Terraform state in Azure Storage. The State allows Terraform to know what Azure resources to add, update, or delete. There are two steps to configuring Backend.

  • Creating a Storage Account and Blob Container for the terraform state
  • Include Backend Block in the Terraform scripts and run the command terraform init

Creating a Storage Account and Blob Container for the terraform state

The first thing you need to run this script with this command sh backend.sh so that it creates the resource group, storage account, and container in Azure.

Here is the output of the above script.

output

You can log in to the Azure portal and verify that the storage account is created or not.

portal

Include Backend Block in the Terraform scripts and run the command terraform init

You need the access key for the Terraform to provision infrastructure on Azure so you need to export that as an environment variable.

export ARM_ACCESS_KEY=MEkicUgawLyIWwFIfMDvP+dQy41qU5ruJY9FHobKSdJxAVlvogfrESYw1PNXHkr/agkWWaNADp51PpT2rA/53A==

Once you have this file all you need to do is that run the following command.

terraform init

Here is the out when we run the above command

Once you have this file all you need to do is that run the following command.

terraform init

Here is the out when we run the above command

terraform init

Creating Infrastructure For One Environment

Here is the main terraform file in which we define the provider first and then the resource group called rg-multienv-demo. We are creating a storage account with the status website and finally, we are adding the index.html content to the blob storage.

Once you have the file in place. You need to run the following commands

// init
terraform init
// plan
terraform plan
// apply
terraform apply

You will see the below output.

terraform apply

You can see that two resources are created in the portal and take the URL and hit it in the browser.

portal
static website created

We have put everything in one file, and it’s tough to create multiple environments. So, let’s separate the file into multiple files. The first thing we need to do is to create a provider file.

We have a variables file here to pass the values dynamically.

Here is the main terraform file that reads the variables like this var.location.

Here is the file that passes the actual values named terraform.tfvars.

The project structure at this point looks like below.

Project Structure

Create Multiple Environments

As we have seen in the above sections we can create multiple environments with resource groups. We have created a static website in one resource group and let’s extend that to multiple resource groups that represent multiple environments such as dev, QA, prod.

First, we need to create different folders that contain all the files. We have to duplicate the files in this method.

Project Structure

There are a number of ways to create multiple environments as we mentioned in the above sections but, when you are running the Terraform script from the local machine using workspaces or different folders is the best option since it isolates the terraform environment.

The first thing we need to do is that we have to create a separate backend key for each environment as below. Notice the key in each file and everything is same.

Dev Environment

Let’s run the following command to create infrastructure in a development environment.

// cd into folder
cd development
// init
terraform init
// plan
terraform plan
// apply
terraform apply
resources created

You can see in the portal that the dev environment is created. You can take the URL and hit it in the browser.

Dev Environment
Accessing the static site

QA Environment

We are in the development folder and we need to switch to qa folder. Let’s run the following command to create infrastructure in the QA environment.

// cd into folder
cd qa
// init
terraform init
// plan
terraform plan
// apply
terraform apply
resources created

You can see in the portal that the QA environment is created. You can take the URL and hit it in the browser.

QA Environment
Accessing the static site

Prod Environment

We are in the QA folder and we need to switch to the production folder. Let’s run the following command to create infrastructure in a production environment.

// cd into folder
cd production
// init
terraform init
// plan
terraform plan
// apply
terraform apply
resources created

You can see in the portal that the production environment is created. You can take the URL and hit it in the browser.

Production Environment
Accessing the static site

Here are the three environments deployed on Azure Cloud.

Environments

You can see three different keys for the three environments in the backend storage account.

Backends Terraform States

You can destroy all the environment with the following commands. You need to run this in each workspace.

// dev folder
cd development
// destroy
terraform destroy
// qa folder
cd qa
// destroy
terraform destroy
// prod folder
cd production
// destroy
terraform destroy

Summary

  • Every application needs different environments for different purposes and each application needs at least 3 environments.
  • We need to build these environments before we deploy our applications. We can even have a separate one for regression testing and we can have as many environments as we want. It all depends on our needs.
  • Terraform is an Infrastructure as a code tool that can build these environments with one command.
  • In Azure, we can build these environments using resource groups and subscriptions.
  • Every Terraform project has a state and this state determines which resources to create, destroy, etc. Whenever you do the Terraform apply command it looks at this state and determines the action on the resources.
  • As we have seen in the above sections we can create multiple environments with resource groups. We have created a static website in one resource group and we extend that to multiple resource groups that represent multiple environments such as dev, QA, prod.
  • There are a number of ways to create multiple environments as we mentioned in the above sections but, when you are running the Terraform script from the local machine using workspaces or different folders is the best option since it isolates the terraform environment.

Conclusion

We have seen how to build different environments using folders on Azure. There are other ways as well such as using workspaces, Terragrunt, etc. We will explore these methods in future posts.

Terraform
Cloud Computing
Programming
Azure
Software Development
Recommended from ReadMedium
avatarHarshit Gupta
Starting with AZURE DEVOPS 🚀

Building a Basic CI/CD Pipeline (Part 2) 🏗️

9 min read
avatarAkhilesh Mishra
These Terraform Functions Are The Life Saver

The complete list of Terraform functions that can make your life working with complex cloud resources 10x better

9 min read
avatarDeep
The Only 10 Azure Services You Actually Need to Know

10 essential Azure services that will cover most of your cloud needs

4 min read
avatarAndrew Kelleher
Azure DevOps pipeline + Terraform Deployment Tutorial

In-depth guide to using Azure DevOps to deploy Terraform code to Azure

9 min read
avatarGijs Reijn
Build Self-Service Pipeline to Deploy Self-Hosted Environment Agents on Azure Workloads — The…

Time to bring everything together into a single pipeline and start deploying the agent.

7 min read
avatarPatrick
Deploying a Web App to Azure with Terraform: Integrating Infrastructure as Code into CI/CD

In the evolving landscape of software development, automating the deployment and management of infrastructure is critical. This article…

6 min read