#### Initialize ####

In [1]:
function tf {aws-vault exec terraform_user -- terraform $args}

function prompt_to_confirm { 
    $user_response = Read-host "Continue? y/n or 1/0"
    if ($user_response -ne "y" -and $user_response -ne 1) {break}
}

In [2]:
$aws_region = "us-east-2"
$env:AWS_REGION=$aws_region #for aws_vault
$env:TF_VAR_aws_region=$aws_region #for terraform

In [None]:
terraform init #-upgrade

#### Workflow ####

In [None]:
terraform fmt

In [None]:
terraform validate

In [6]:
#Enable egress temporarily to install software after deployment
$env:TF_VAR_enable_egress=1

In [None]:
tf plan -out=tfplan
terraform show -json tfplan > plan.json

In [None]:
#Output planned resource addresses and their names in the cloud

$plan = Get-Content -Raw -Path "plan.json" | ConvertFrom-Json

$resourcesToDeploy = $plan.resource_changes | Where-Object { 
    $_.change.actions -contains "create" -or $_.change.actions -contains "update" 
} | ForEach-Object { 
    "Type: " + $_.type
    "TF name: " + $_.name
    "Cloud name: " + $_.change.after.name
    "Name tag: " + $_.change.after.tags_all.name
    ""
}

$resourcesToDeploy
Get-Date

In [None]:
###      ###
### PLAN ###
###      ###

tf plan
Get-Date

In [None]:
###       ###
### APPLY ###
###       ###

#try {prompt_to_confirm} catch {break}
tf apply -auto-approve
Get-Date

In [None]:
#Disable egress after deployment
$env:TF_VAR_enable_egress=0

In [None]:
#Deploy again to remove egress security rule

try {prompt_to_confirm} catch {break}
tf apply -auto-approve
Get-Date

In [None]:
$public_ip = terraform output -raw public_ip

In [None]:
(Invoke-WebRequest -Uri ("http://" + $public_ip + ":$http_port")).Content

In [None]:
###         ###
### DESTROY ###
###         ###

try {prompt_to_confirm} catch {break}
tf destroy -auto-approve
Get-Date

#### Info ####

In [None]:
terraform version

In [None]:
#Root module configuration
cat .\main.tf

In [None]:
($resources = terraform state list) | Out-Host

In [None]:
foreach ($resource in $resources) { terraform state show $resource }

In [None]:
terraform output

#### Troubleshooting ####

In [None]:
#$env:TF_LOG = "TRACE"
#$env:TF_LOG_PATH = "log.txt"
#$env:TF_LOG = ""

In [None]:
tf apply -refresh-only -auto-approve