undefined | Better HN

0 pointsyevpats2y ago0 comments

I think it's not only the issue with terraform but also the underlying infrastructure. AWS should've never have imperative APIs in the first place. Or at least it's time for AWS V2 APIs

0 comments

0xbadcafebee2y ago

I agree. Cloud infrastructure should be versioned and immutable. If I have an S3 bucket and make 4 changes to it, there should be V0 (making the bucket) and V1-V3 (each subsequent change). I should be able to tell the bucket API to restore the bucket to V2. Terraform is a hack to fill that gap. The AWS bucket service itself should be doing it, not Terraform. Several classes of software that we all maintain ourselves would go away if cloud infra were versioned & immutable.

jen202y ago

This is clearly a poor idea. Declarative infrastructure management is ultimately a dead end, because order of operations actually matters.

jq-r2y ago

I'm not sure one follows from the other.

You could have both: eg if resource Y depends on X, then you would just declare Y after X. Or you could do a "depends_on" directive like in TF.

That certainly doesn't sound like a dead end to me.

jen202y ago

That is the trivial part (and any tool even worth talking about already implements it).

The problem is things like “create this instance in parallel as a replacement for this one over here, then shut down the original, detach a volume from the original and attach it to the replacement then run command X on the replacement, stopping for manual intervention at any phase the running system reports it is running at reduced redundancy”.

This is not an atypical requirement for infrastructure as code beyond the basics, but none of the declarative tools come close to addressing it without a bucket load of external coordination.

phamilton2y ago

Do you consider cloudformation as imperative APIs?

easton2y ago

For most services it’s abundantly clear it’s calling the same imperative APIs under the covers you use as an external person because it gets stuck so often. Well, more often than you would think if declarative management of resources was at the top of Amazon’s mind when designing these services.

“Internal error? The #$@! does that mean?”

j / k navigate · click thread line to collapse

0 comments

0xbadcafebee2y ago

jen202y ago

This is clearly a poor idea. Declarative infrastructure management is ultimately a dead end, because order of operations actually matters.

jq-r2y ago

I'm not sure one follows from the other.

You could have both: eg if resource Y depends on X, then you would just declare Y after X. Or you could do a "depends_on" directive like in TF.

That certainly doesn't sound like a dead end to me.

jen202y ago

That is the trivial part (and any tool even worth talking about already implements it).

This is not an atypical requirement for infrastructure as code beyond the basics, but none of the declarative tools come close to addressing it without a bucket load of external coordination.

phamilton2y ago

Do you consider cloudformation as imperative APIs?

easton2y ago

“Internal error? The #$@! does that mean?”

j / k navigate · click thread line to collapse