tfskel demo: Multi-Customer Deployment Using Dedicated Root Modules

[ishuar]

This PR demonstrates the approach for deploying the same Terraform root module configuration across multiple customers while maintaining strict isolation of configuration, Separate github workflows and state per customer.

• tfskel version used v0.5.2
• two customers configurations added in 4 steps
  • ref: https://github.com/ishuar/tfskel-demo/pull/2/commits
• next customers with single command

Expand to view tfskel plan analysis in CI for easier reviews

go: downloading github.com/ishuar/tfskel v0.5.2
tfskel version 0.5.2
[INFO   ] Reviewing terraform plan...
[INFO   ] JSON plan file: .dflook-terraform-github-actions/mentijdf/plan.json
[INFO   ] Found 1 resource changes
━━━ Terraform Plan Analysis ━━━
                               
Terraform Version: 1.13.5
       
Summary
╭────────────────────────────────────────────────────────┬───────────────────────────────────────────────────────╮
│                                           Total Changes│                           1                           │
│                                               Additions│                           1                           │
│                                           Modifications│                           0                           │
│                                               Deletions│                           0                           │
│                                            Replacements│                           0                           │
╰────────────────────────────────────────────────────────┴───────────────────────────────────────────────────────╯
                        
Changes by Resource Type
╭────────────────────────────────────────────────────────┬───────────────────────────────────────────────────────╮
│                          Name                          │                         Count                         │
├────────────────────────────────────────────────────────┼───────────────────────────────────────────────────────┤
│aws_s3_bucket                                           │                           1                           │
╰────────────────────────────────────────────────────────┴───────────────────────────────────────────────────────╯
                   
Changes by Severity
╭────────────────────────────────────────────────────────┬───────────────────────────────────────────────────────╮
│                          Name                          │                         Count                         │
├────────────────────────────────────────────────────────┼───────────────────────────────────────────────────────┤
│low                                                     │                           1                           │
╰────────────────────────────────────────────────────────┴───────────────────────────────────────────────────────╯
                           
Resource Changes (detailed)
Showing 1 resources
Error: exit code 1
╭────────────────────────────┬───────────────────────────┬───────────────────────────┬───────────────────────────╮
│          Resource          │           Type            │          Action           │         Severity          │
├────────────────────────────┼───────────────────────────┼───────────────────────────┼───────────────────────────┤
│tfskel_demo                 │aws_s3_bucket              │          create           │            low            │
╰────────────────────────────┴───────────────────────────┴───────────────────────────┴───────────────────────────╯

[WARN   ] Changes detected - exiting with code 1
Error: Process completed with exit code 1.

[github-actions]

Terraform plan for envs/dev/eu-central-1/customer-1

Plan: 1 to add, 0 to change, 0 to destroy.

Terraform used the selected providers to generate the following execution
plan. Resource actions are indicated with the following symbols:
+   create

Terraform will perform the following actions:

  # aws_s3_bucket.tfskel_demo will be created
+   resource "aws_s3_bucket" "tfskel_demo" {
+       acceleration_status         = (known after apply)
+       acl                         = (known after apply)
+       arn                         = (known after apply)
+       bucket                      = "my-customer-1-dev-euc1-bucket"
+       bucket_domain_name          = (known after apply)
+       bucket_namespace            = (known after apply)
+       bucket_prefix               = (known after apply)
+       bucket_region               = (known after apply)
+       bucket_regional_domain_name = (known after apply)
+       force_destroy               = false
+       hosted_zone_id              = (known after apply)
+       id                          = (known after apply)
+       object_lock_enabled         = (known after apply)
+       policy                      = (known after apply)
+       region                      = "eu-central-1"
+       request_payer               = (known after apply)
+       tags                        = {
+           "Name" = "my-customer-1-dev-euc1-bucket"
        }
+       tags_all                    = {
+           "Name"        = "my-customer-1-dev-euc1-bucket"
+           "app"         = "customer-1"
+           "env"         = "dev"
+           "github_repo" = "tfskel-demo"
+           "managed_by"  = "terraform"
        }
+       website_domain              = (known after apply)
+       website_endpoint            = (known after apply)

+       cors_rule (known after apply)

+       grant (known after apply)

+       lifecycle_rule (known after apply)

+       logging (known after apply)

+       object_lock_configuration (known after apply)

+       replication_configuration (known after apply)

+       server_side_encryption_configuration (known after apply)

+       versioning (known after apply)

+       website (known after apply)
    }

Plan: 1 to add, 0 to change, 0 to destroy.

📝 Plan generated in TF plan & apply envs/dev/eu-central-1/customer-1 terraform files #4

[github-actions]

Terraform plan for envs/dev/eu-central-1/customer-2

Plan: 1 to add, 0 to change, 0 to destroy.

Terraform used the selected providers to generate the following execution
plan. Resource actions are indicated with the following symbols:
+   create

Terraform will perform the following actions:

  # aws_s3_bucket.tfskel_demo will be created
+   resource "aws_s3_bucket" "tfskel_demo" {
+       acceleration_status         = (known after apply)
+       acl                         = (known after apply)
+       arn                         = (known after apply)
+       bucket                      = "my-customer-2-dev-euc1-bucket"
+       bucket_domain_name          = (known after apply)
+       bucket_namespace            = (known after apply)
+       bucket_prefix               = (known after apply)
+       bucket_region               = (known after apply)
+       bucket_regional_domain_name = (known after apply)
+       force_destroy               = false
+       hosted_zone_id              = (known after apply)
+       id                          = (known after apply)
+       object_lock_enabled         = (known after apply)
+       policy                      = (known after apply)
+       region                      = "eu-central-1"
+       request_payer               = (known after apply)
+       tags                        = {
+           "Name" = "my-customer-2-dev-euc1-bucket"
        }
+       tags_all                    = {
+           "Name"        = "my-customer-2-dev-euc1-bucket"
+           "app"         = "customer-2"
+           "env"         = "dev"
+           "github_repo" = "tfskel-demo"
+           "managed_by"  = "terraform"
        }
+       website_domain              = (known after apply)
+       website_endpoint            = (known after apply)

+       cors_rule (known after apply)

+       grant (known after apply)

+       lifecycle_rule (known after apply)

+       logging (known after apply)

+       object_lock_configuration (known after apply)

+       replication_configuration (known after apply)

+       server_side_encryption_configuration (known after apply)

+       versioning (known after apply)

+       website (known after apply)
    }

Plan: 1 to add, 0 to change, 0 to destroy.

📝 Plan generated in TF plan & apply envs/dev/eu-central-1/customer-2 terraform files #1