Day 8 - Understanding Meta Arguments

Today was Day 08 of my AWS Terraform challenge. The topic was Terraform meta arguments.

At first, this topic was not very clear to me because there were several new concepts like count, for_each, depends_on, lifecycle, provider, and for expressions. After practicing with simple S3 bucket examples, I understood how powerful these are.

What are Meta Arguments

Meta arguments are special arguments in Terraform that can be used with any resource to control how it behaves.

Instead of writing multiple resource blocks, we can use these to create and manage resources efficiently.

Folder Structure Used

Day 08 folder structure in VS Code


I used the following files:

backend.tf
provider.tf
variables.tf
locals.tf
main.tf
outputs.tf
terraform.tfvars

Understanding count

count is used when we want to create multiple similar resources using numbers.

variables.tf showing count_buckets



main.tf showing count block


Terraform creates resources like:

aws_s3_bucket.count_demo[0]
aws_s3_bucket.count_demo[1]

This shows that count works using numeric index.

Understanding for_each

for_each is used when we want to create resources using names instead of numbers.

variables.tf showing foreach_buckets



main.tf showing for_each block


Terraform creates resources like:

aws_s3_bucket.foreach_demo["foreach-one"]
aws_s3_bucket.foreach_demo["foreach-two"]

This is easier to understand and more stable than count.

each.key vs each.value

When using a set, both key and value are same.

When using a map:

  • each.key is the logical name
  • each.value is the actual value

for_each map example



Understanding depends_on

depends_on is used to control the order of resource creation.

main.tf depends_on example

This ensures one resource is created only after another.

Understanding lifecycle

lifecycle helps control how resources behave.

 lifecycle prevent_destroy


prevent_destroy protects important resources from accidental deletion.

Understanding provider

provider is used when working with multiple regions or accounts.

provider.tf with alias


main.tf using aws.west

This allows deploying resources in different regions using same code.

Terraform Plan and Apply

 terraform plan

The output showed:

Plan: 7 to add, 0 to change, 0 to destroy

This means Terraform is ready to create all resources.

Resources in Console after Apply. 


Outputs and State

 terraform output


terraform state list

This was the most useful part.

count resources show numbers:

aws_s3_bucket.count_demo[0]

for_each resources show names:

aws_s3_bucket.foreach_demo["foreach-one"]

This clearly shows the difference.

I tested lifecycle.prevent_destroy and Terraform stopped the protected bucket from being destroyed. This showed how lifecycle can protect important resources from accidental deletion.


I have commented the lifecycle in main.tf and ran terraform destroy again. It worked this time. 


Key Learnings

count is useful for simple repetition
for_each is better for named resources
depends_on controls order
lifecycle protects resources
provider enables multi region setup
for expressions help clean outputs

Final Thoughts

This day helped me understand how to write cleaner Terraform code.

Instead of repeating blocks, I can now create scalable and structured infrastructure.

This feels like a shift from writing scripts to designing systems.

Video Reference

Jay



Comments

Post a Comment

Popular posts from this blog

ASM Integrity check failed with PRCT-1225 and PRCT-1011 errors while creating database using DBCA on Exadata 3 node RAC

Image
  Error: The error message PRCT-1225: failed to verify Oracle Automatic Storage Management (Oracle ASM) user credentials using the command 'asmcmd credverify' indicates that the asmcmd credverify command failed to verify the Oracle ASM user credentials. This can happen for a number of reasons, including: The user credentials are incorrect. The user credentials file is corrupted. The user does not have the necessary permissions to run the asmcmd credverify command. There is a problem with the Oracle ASM instance. To troubleshoot this error, you can try the following: Make sure that the user credentials are correct. You can do this by trying to log in to the Oracle ASM instance using the same credentials. Check the user credentials file for errors. You can do this by using a text editor to open the file and inspect the contents. Make sure that the user has the necessary permissions to run the asmcmd credverify command. You can do this by checking the user's permissi...
Read more

Lock Tables in MariaDB

Whether or not you need to lock tables while backing up MariaDB depends on a few factors, including the type of backup you are performing and the tools you are using. If you are performing a full backup , you should lock the tables to ensure that the backup is consistent. This is because a full backup copies all of the data in the database, including any data that is currently being modified by transactions. If you do not lock the tables, it is possible that the backup could contain inconsistent data. If you are performing a differential backup or an incremental backup , you may not need to lock the tables. Differential and incremental backups only copy the data that has changed since the previous backup. This means that the data is already consistent, so there is no need to lock the tables. However, some backup tools may require you to lock the tables, even if you are performing a differential or incremental backup. This is because these tools may need to modify the database in some ...
Read more

Life is beautiful

Image
Life brings unexpected tragedies that are beyond our control. It's heartbreaking to witness people facing circumstances they never chose. We react with tears and inevitably wonder, "What if that happens to me?" As humans, we naturally focus on the positive and avoid dwelling on such thoughts—and that's healthy. But this perspective has shaped how I approach life: Am I prepared for these scenarios? Are my loved ones protected if something goes wrong? If I were to die, I couldn't be there to tell them to stay strong—they'd have to face that grief alone. But I can give them financial security through proper planning, wills, and trusts. These are tangible ways to care for them even when I'm gone. Beyond that, what else can I control? I don't waste energy worrying about an uncertain past or future. Instead, I choose to spread peace, truly listen to others, and share genuine smiles. I embrace the principle of living fully while letting others do the same. ...
Read more