This article demonstrates deploying Amazon S3 buckets using Terraform and explores an equivalent deployment with CDK for Terraform using TypeScript.
In this lesson, we demonstrate how to deploy Amazon S3 buckets using Terraform. We begin by reviewing the primary Terraform configuration that creates these buckets, and later we explore an equivalent deployment using CDK for Terraform with TypeScript.
In our lab environment, the project is organized with a main Terraform file (main.tf) that specifies the AWS provider, generates unique bucket names using a random ID resource, and creates the S3 buckets. Below is an overview of the main configuration:
Copy
Ask AI
# Configure the AWS providerprovider "aws" { region = "us-east-1"}# Generate a random ID to ensure unique bucket namesresource "random_id" "bucket_id" { byte_length = 4}# Create the first S3 bucket with object lock enabledresource "aws_s3_bucket" "tf-demo-bucket-1" { bucket = "tf-demo-bucket-1-${random_id.bucket_id.hex}" object_lock_enabled = true}# Create the second S3 bucket using a module for reusabilitymodule "s3_bucket" { source = "./modules/s3_bucket_with_env_tag" env = "dev" name = "tf-demo-bucket-2-${random_id.bucket_id.hex}" # Ensure unique bucket name}
In the above configuration, object locking is enabled on the S3 buckets. Object locking helps protect your data from accidental deletion or modification.
A module is used to encapsulate the S3 bucket creation logic, promoting reusability and maintainability. Within the module located at ./modules/s3_bucket_with_env_tag, the main file includes the following snippet:
This module uses a variables file to define configurable parameters such as the bucket name and environment tag. Separating configuration from usage enables parameterized and reusable infrastructure components.
Before deploying, navigate to the directory containing your Terraform files (e.g., cd TF) and run the following command to initialize the environment:
Copy
Ask AI
terraform init
The console output should resemble:
Copy
Ask AI
Terraform initialized in an empty directory!The directory has no Terraform configuration files. You may begin working with Terraform immediately by creating Terraform configuration files.
After successful initialization, deploy your configuration with:
Copy
Ask AI
terraform apply
When prompted, confirm the action to proceed with the deployment. Once the process completes, navigate to your AWS S3 console to verify that two new buckets have been created, each with a unique name that includes a random ID. The second bucket will also display the tag “env” set to “dev”.
variable "env" { description = "Environment tag for the bucket" type = string validation { condition = var.env == "dev" || var.env == "prod" error_message = "The env variable must be either 'dev' or 'prod'." }}variable "name" { description = "The name of the bucket" type = string}
Using descriptive variable names and thorough validation not only helps maintain clean code but also enhances readability and search engine optimization for technical documentation.
In the upcoming section, we will discuss the benefits of leveraging Terraform for infrastructure deployment, as well as some inherent limitations of this approach. By defining infrastructure as code using a declarative language like HCL, teams can manage and scale their resources more efficiently.For further reading, visit the following resources:
