\u770b\u5230\u4e86”Infrastructure as Code”\u53d8\u5f97\u66f4\u52a0\u5bb9\u6613\u7684”terraformer”\uff0c\u867d\u7136\u6709\u70b9\u665a\uff0c\u4f46\u662f\u770b\u4e86\u8fd9\u7bc7\u6587\u7ae0\u540e\uff0c\u5f00\u59cb\u60f3\u7740\u662f\u4e0d\u662f\u8be5\u5f00\u59cb\u5c1d\u8bd5\u4e00\u4e0b\u4e86\u3002<\/p>\n
<\/p>\n
$ <\/span>brew install <\/span>terraform\r\n...\r\n$ <\/span>terraform -v<\/span>\r\nTerraform v0.12.6\r\n<\/code><\/pre>\n\u521b\u5efa\u670d\u52a1\u8d26\u53f7<\/h2>\n\n- \n
gcloud\u30b3\u30de\u30f3\u30c9\u306f\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u6e08\u307f<\/ul>\n<\/li>\n<\/ul>\n <\/p>\n
\n- \n
terraform\u5b9f\u884c\u7528\u306e\u30b5\u30fc\u30d3\u30b9\u30a2\u30ab\u30a6\u30c8\u3092\u4f5c\u6210\u3057\u307e\u3059\u3002<\/ul>\n<\/li>\n<\/ul>\n <\/p>\n
\n- \n
\u6a29\u9650\u306f\u300cProject > \u7de8\u96c6\u8005\u300d\u3092\u3064\u3051\u307e\u3057\u305f<\/ul>\n<\/li>\n<\/ul>\n <\/p>\n
\n- \n
\u9375\u3092json\u5f62\u5f0f\u3067\u30c0\u30a6\u30f3\u30ed\u30fc\u30c9<\/ul>\n<\/li>\n<\/ul>\ncredentials.json \u3068\u3057\u3066\u7f6e\u3044\u3066\u304a\u304d\u307e\u3059
\n\u540d\u524d\u306f\u9069\u5f53\u3067\u3059<\/p>\n
service accounnt\u3092activate\u3057\u307e\u3059<\/p>\n
gcloud auth activate-service-account --key-file<\/span>=<\/span>credentials.json\r\n<\/code><\/pre>\nproject\u3092\u30bb\u30c3\u30c8\u3057\u3066\u304a\u304d\u307e\u3059<\/ul>\n
$ <\/span>gcloud config set <\/span>project xxxxx\r\n<\/code><\/pre>\n\u521b\u5efaGCS\u5b58\u50a8\u6876<\/h2>\n
\u4e3a\u4e86\u4fdd\u5b58 xxx.tfstate \u6587\u4ef6\uff0c\u9700\u8981\u5728GCS\u4e0a\u521b\u5efa\u4e00\u4e2a\u5b58\u50a8\u6876\u3002
\n* \u8be5\u6587\u4ef6\u7528\u4e8e\u4fdd\u5b58\u7ba1\u7406\u57fa\u7840\u8bbe\u65bd\u7684\u72b6\u6001\u3002<\/p>\n
$ <\/span>gsutil mb -c<\/span> multi_regional -l<\/span> Asia gs:\/\/xxxx-tf-state\r\n<\/code><\/pre>\n\u5199\u4e0bProvider\u7684\u8bbe\u7f6e<\/h1>\nprovider<\/span> \"google\"<\/span> {<\/span>\r\n credentials<\/span> =<\/span> \"<\/span>${<\/span>file<\/span>(<\/span>\"credentials.json\"<\/span>)<\/span>}<\/span>\"<\/span>\r\n project<\/span> =<\/span> \"<\/span>${<\/span>var<\/span>.<\/span>project<\/span>}<\/span>\"<\/span>\r\n region<\/span> =<\/span> \"<\/span>${<\/span>var<\/span>.<\/span>region<\/span>}<\/span>\"<\/span>\r\n}<\/span>\r\n<\/code><\/pre>\nvariable<\/span> \"project\"<\/span> {<\/span>\r\n default<\/span> =<\/span> \"xxx\"<\/span>\r\n}<\/span>\r\n\r\nvariable<\/span> \"region\"<\/span> {<\/span>\r\n default<\/span> =<\/span> \"asia-northeast1\"<\/span>\r\n}<\/span>\r\n<\/code><\/pre>\n\n- \n
project,region\u306fvariables.tf\u306b\u5916\u3060\u3057\u3057\u307e\u3057\u305f<\/ul>\n<\/li>\n<\/ul>\n <\/p>\n
credentials.json\u306f\u3055\u3063\u304d\u3064\u304f\u3063\u305fservice account\u306e\u9375\u30d5\u30a1\u30a4\u30eb\u3067\u3059<\/ul>\n\u5199\u540e\u7aef\u8bbe\u7f6e<\/h1>\n
\u5728Google\u4e91\u5b58\u50a8\uff08GCS\uff09\u4e0a\u914d\u7f6e\u4ee5\u7ba1\u7406tfstate\u6587\u4ef6\u3002<\/p>\n
terraform<\/span> {<\/span>\r\n backend<\/span> \"gcs\"<\/span> {<\/span>\r\n bucket<\/span> =<\/span> \"xxxx-tf-state\"<\/span>\r\n path<\/span> =<\/span> \"practice.tfstate\"<\/span>\r\n credentials<\/span> =<\/span> \"credentials.json\"<\/span>\r\n }<\/span>\r\n}<\/span>\r\n<\/code><\/pre>\n\u8fdb\u884cTerraform\u7684\u521d\u59cb\u5316\u3002<\/h1>\n$ <\/span>terraform init\r\n\r\nInitializing the backend...\r\n\r\nInitializing provider plugins...\r\n\r\nThe following providers do <\/span>not have any version constraints in <\/span>configuration,\r\nso the latest version was installed.\r\n\r\nTo prevent automatic upgrades to new major versions that may contain breaking\r\nchanges, it is recommended to add version =<\/span> \"...\"<\/span> constraints to the\r\ncorresponding provider blocks in <\/span>configuration, with the constraint strings\r\nsuggested below.\r\n\r\n*<\/span> provider.google: version =<\/span> \"~> 2.12\"<\/span>\r\n\r\nTerraform has been successfully initialized!\r\n\r\nYou may now begin working with Terraform. Try running \"terraform plan\"<\/span> to see\r\nany changes that are required for <\/span>your infrastructure. All Terraform commands\r\nshould now work.\r\n\r\nIf you ever set <\/span>or change modules or backend configuration for <\/span>Terraform,\r\nrerun this command <\/span>to reinitialize your working directory. If you forget, other\r\ncommands will detect it and remind you to do <\/span>so if <\/span>necessary.\r\n<\/code><\/pre>\n\u55ef\uff0c\u6709\u51fa\u73b0\u4e86\u4ec0\u4e48\u8b66\u544a\u3002<\/p>\n
\u4f60\u662f\u5728\u8bf4\u5efa\u8bae\u6211\u7ed9\u63d0\u4f9b\u8005\u6307\u5b9a\u4e00\u4e2a\u7248\u672c\u5417\uff1f\u90a3\u6211\u4f1a\u5c1d\u8bd5\u5b89\u88c5\u3002<\/p>\n
diff --git a\/provider.tf b\/provider.tf\r\nindex 1e8066b..ec409f4 100644\r\n<\/span>--- a\/provider.tf\r\n<\/span>+++ b\/provider.tf\r\n<\/span>@@ -2,4 +2,5 @@<\/span> provider \"google\" {\r\n credentials = \"${file(\"credentials.json\")}\"\r\n project = \"${var.project}\"\r\n region = \"${var.region}\"\r\n+ version = \"~> 2.12\"\r\n<\/span> }\r\n<\/code><\/pre>\n$ <\/span>terraform init\r\n\r\nInitializing the backend...\r\n\r\nInitializing provider plugins...\r\n\r\nTerraform has been successfully initialized!\r\n\r\nYou may now begin working with Terraform. Try running \"terraform plan\"<\/span> to see\r\nany changes that are required for <\/span>your infrastructure. All Terraform commands\r\nshould now work.\r\n\r\nIf you ever set <\/span>or change modules or backend configuration for <\/span>Terraform,\r\nrerun this command <\/span>to reinitialize your working directory. If you forget, other\r\ncommands will detect it and remind you to do <\/span>so if <\/span>necessary.\r\n<\/code><\/pre>\n\u8b66\u544a\u4e0d\u518d\u5b58\u5728\u4e86\u5462\u3002<\/p>\n
$ <\/span>gsutil ls <\/span>gs:\/\/xxxx-tf-state\r\ngs:\/\/xxxx-tf-state\/practice.tfstate\r\n<\/code><\/pre>\n\u5df2\u7ecf\u751f\u6210\u4e86\u5b8c\u6574\u7684tfstate\u6587\u4ef6\u3002<\/p>\n
\u8bd5\u7740\u521b\u5efa\u4e00\u4e2a\u865a\u62df\u79c1\u6709\u4e91\uff08VPC\uff09\u3002<\/h1>\n
\u6211\u60f3\u8bd5\u8bd5\u505a\u70b9\u4ec0\u4e48\uff0c\u6240\u4ee5\u6211\u51b3\u5b9a\u521b\u5efa\u4e00\u4e2aVPC\u3002<\/p>\n
\u8d44\u6e90\u5b9a\u4e49<\/h2>\nresource<\/span> \"google_compute_network\"<\/span> \"vpc\"<\/span> {<\/span>\r\n name<\/span> =<\/span> \"terraform-practice-network\"<\/span>\r\n}<\/span>\r\n\r\nresource<\/span> \"google_compute_subnetwork\"<\/span> \"vpc_subnet1\"<\/span> {<\/span>\r\n name<\/span> =<\/span> \"terraform-practice-network-subnet1\"<\/span>\r\n ip_cidr_range<\/span> =<\/span> \"<\/span>${<\/span>var<\/span>.<\/span>subnet_cidr_range<\/span>}<\/span>\"<\/span>\r\n network<\/span> =<\/span> \"<\/span>${<\/span>google_compute_network<\/span>.<\/span>vpc<\/span>.<\/span>name<\/span>}<\/span>\"<\/span>\r\n description<\/span> =<\/span> \"example.subnet1\"<\/span>\r\n region<\/span> =<\/span> \"<\/span>${<\/span>var<\/span>.<\/span>region<\/span>}<\/span>\"<\/span>\r\n}<\/span>\r\n<\/code><\/pre>\nvariable<\/span> \"project\"<\/span> {<\/span>\r\n default<\/span> =<\/span> \"xxxx\"<\/span>\r\n}<\/span>\r\n\r\nvariable<\/span> \"region\"<\/span> {<\/span>\r\n default<\/span> =<\/span> \"asia-northeast1\"<\/span>\r\n}<\/span>\r\n\r\nvariable<\/span> \"subnet_cidr_range\"<\/span> {<\/span>\r\n default<\/span> =<\/span> \"192.168.10.0\/24\"<\/span>\r\n}<\/span>\r\n<\/code><\/pre>\n\u8ba1\u5212<\/h2>\n$ <\/span>terraform plan\r\nterraform plan\r\nRefreshing Terraform state in<\/span>-memory<\/span> prior to plan...\r\nThe refreshed state will be used to calculate this plan, but will not be\r\npersisted to local <\/span>or remote state storage.\r\n\r\n\r\n------------------------------------------------------------------------<\/span>\r\n\r\nAn execution plan has been generated and is shown below.\r\nResource actions are indicated with the following symbols:\r\n + create\r\n\r\nTerraform will perform the following actions:\r\n\r\n # google_compute_network.vpc will be created<\/span>\r\n + resource \"google_compute_network\"<\/span> \"vpc\"<\/span> {<\/span>\r\n + auto_create_subnetworks =<\/span> true<\/span>\r\n + delete_default_routes_on_create =<\/span> false<\/span>\r\n + gateway_ipv4 =<\/span> (<\/span>known after apply)<\/span>\r\n + id<\/span> =<\/span> (<\/span>known after apply)<\/span>\r\n + name =<\/span> \"terraform-practice-network\"<\/span>\r\n + project =<\/span> (<\/span>known after apply)<\/span>\r\n + routing_mode =<\/span> (<\/span>known after apply)<\/span>\r\n + self_link