Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We鈥檒l occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Publicly expose terraform.parsePlanJson function for ease of testing Terraform plans #1308

Closed
mdb opened this issue Jun 15, 2023 · 1 comment
Closed

Publicly expose terraform.parsePlanJson function for ease of testing Terraform plans #1308

mdb opened this issue Jun 15, 2023 · 1 comment

Comments

@mdb
Copy link
Contributor

mdb commented Jun 15, 2023
edited

馃憢 Thanks for your work on terratest! I'd love to see terraform.parsePlanJson be publicly exported (perhaps as a terraform.ParsePlanJSON function).

Context and use case

terratest v0.30.15 introduced the ability to write terratest tests against Terraform plan output, which is great! However, terratest assumes the terraform.PlanStruct has been generated from terratest-orchestrated terraform CLI commands, such as terraform.InitAndPlanAndShowWithStruct. terratest provides no mechanism or API for producing a terraform.PlanStruct from raw Terraform plan JSON, as might be beneficial when using terratest to programmatically analyze and validate a Terraform plan produced by a separate, upstream process (such as a preceding CI/CD job step) that is not orchestrated via terratest.

For example, consider the following contrived GitHub Actions workflow, which could use terratest's terraform.ParsePlanJSON in its Terratest test plan.json step to programmatically analyze plan output produced by the preceding Terraform plan step and gate the Terraform apply step accordingly, without requiring that terratest orchestrate the invocation of the terraform CLI:

jobs:
  terraform:
    name: Terraform
    runs-on: ubuntu-latest
    steps:
    ...
    - name: Terraform plan
      run: terraform plan -out=plan.out
    - name: Generate Terraform plan.json
      run: terraform show -json plan.out > plan.json
    - name: Terratest test plan.json
      run: go test
    - name: Terratest apply
      run: terraform apply plan.out

Via a terraform.ParsePlanJSON function, terratest's testing of the plan.json is decoupled from the actual invocation of the terraform CLI that produced the plan.json. I think this is especially useful in contexts where teams have non-terratest-orchestrated CI/CD logic surrounding the invocation of the terraform CLI, but where those teams would also like to leverage terratest to evaluate the plan results.

Additionally, this also enables the use of terratest Terraform plan testing in contexts where the terraform executable is not installed, as may be the case when separate, distinct OCI container images are responsible for invoking terraform and terratest tests.
mdb added a commit to mdb/terratest that referenced this issue Jun 15, 2023
@mdb
publicly expose terraform.ParsePlanJSON function
0da7092 
This seeks to fix gruntwork-io#1308 by publicly exposing the
`terraform.ParsePlanJSON` function, in effect better enabling the use of
`terratest` for programmatically analyzing and validating a Terraform
plan produced by an upstream, non-`terratest` process.

Signed-off-by: Mike Ball <mikedball@gmail.com>
@mdb mdb mentioned this issue Jun 15, 2023
Merged
4 tasks
@denis256
Copy link
Member

Exposed terraform.ParsePlanJSON() function as part of https://github.com/gruntwork-io/terratest/releases/tag/v0.43.8

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@mdb @denis256