Terraform - Upload file to S3 on every apply

amazon-web-services amazon-s3 terraform terraform-provider-aws
18,914

Solution 1

Terraform only makes changes to the remote objects when it detects a difference between the configuration and the remote object attributes. In the configuration as you've written it so far, the configuration includes only the filename. It includes nothing about the content of the file, so Terraform can't react to the file changing.

To make subsequent changes, there are a few options:

  • You could use a different local filename for each new version.
  • You could use a different remote object path for each new version.
  • You can use the object etag to let Terraform recognize when the content has changed, regardless of the local filename or object path.

The final of these seems closest to what you want in this case. To do that, add the etag argument and set it to be an MD5 hash of the file:

resource "aws_s3_bucket_object" "file_upload" {
  bucket = "my_bucket"
  key    = "my_bucket_key"
  source = "${path.module}/my_files.zip"
  etag   = "${filemd5("${path.module}/my_files.zip")}"
}

With that extra argument in place, Terraform will detect when the MD5 hash of the file on disk is different than that stored remotely in S3 and will plan to update the object accordingly.

(I'm not sure what's going on with version_id. It should work as long as versioning is enabled on the bucket.)

Solution 2

You shouldn't be using Terraform to do this. Terraform is supposed to orchestrate and provision your infrastructure and its configuration, not files. That said, terraform is not aware of changes on your files. Unless you change their names, terraform will not update the state.

Also, it is better to use local-exec to do that. Something like:

resource "aws_s3_bucket" "my-bucket" {
# ...

  provisioner "local-exec" {
     command = "aws s3 cp path_to_my_file ${aws_s3_bucket.my-bucket.id}"
  }
}
Share:
18,914
Muthaiah PL
Author by

Muthaiah PL

Updated on June 18, 2022

Comments

  • Muthaiah PL
    Muthaiah PL almost 2 years

    I need to upload a folder to S3 Bucket. But when I apply for the first time. It just uploads. But I have two problems here:

    1. uploaded version outputs as null. I would expect some version_id like 1, 2, 3
    2. When running terraform apply again, it says Apply complete! Resources: 0 added, 0 changed, 0 destroyed. I would expect to upload all the times when I run terraform apply and create a new version.

    What am I doing wrong? Here is my Terraform config:

    resource "aws_s3_bucket" "my_bucket" {
  bucket = "my_bucket_name"

  versioning {
    enabled = true
  }
}

resource "aws_s3_bucket_object" "file_upload" {
  bucket = "my_bucket"
  key    = "my_bucket_key"
  source = "my_files.zip"
}

output "my_bucket_file_version" {
  value = "${aws_s3_bucket_object.file_upload.version_id}"
}
  • meustrus
    meustrus over 4 years
    S3 is often used to store deployment bundles that are referenced in the infrastructure definition, such as in Lambda or Kinesis Analytics for Java. This use of S3 is completely in line with "infrastructure and its configuration", which is why Terraform has a resource for it and why you should be using Terraform to upload certain files to S3.
  • Gomsy
    Gomsy about 2 years
    I understand and aggress to the comment from @meustrus but aws_s3_bucket_object is now deprecated in favor of aws_s3_object which is only for reading file. I guess TF team is aligning with Stargazer on this.
  • meustrus
    meustrus about 2 years
    They're probably right about S3 @Gomsy . In the past couple of years, I've experienced problems with S3 objects and related resources being fully updated before Terraform allows the dependency to be satisfied. There may be some issues with eventual consistency that prevent S3 objects from meeting Terraform's resource requirements.
  • sdgfsdh
    sdgfsdh about 2 years
    aws_s3_object is not read-only. The docs give an example of uploading a file.
  • Pedram
    Pedram almost 2 years
    As explained in the official documentation, local-exec should be used as a last resort. Therefore the answer by Martin is much more reasonable. terraform.io/language/resources/provisioners/local-exec

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Terraform and AWS: No Configuration Files Found Error
Terraform error - RDS Cluster FinalSnapshotIdentifier is required when a final snapshot is required
How to add lifecycle rules to an S3 bucket using terraform?
How to use the VPC id and subnets id values which were created from one Terraform plan to in another Terraform plan
Terraform AWS S3 to Lambda Notification Trigger
How to add lifecycle rule to an existing AWS S3 bucket with Terraform
How to apply using Terraform to launch multiple EC2 Resource with different configs (VPC not maintained by TF)
How to fix AccessDenied calling CopyObject
Using a S3 Static Site with an Application Load Balancer
How to solve Error loading state: AccessDenied: Access Denied status code: 403 when trying to use s3 for terraform backend?