文档建议反馈控制台
首页
学习
活动
专区
圈层
工具
MCP广场
文章/答案/技术大牛
发布
社区首页 >问答首页 >Terraform for_each inside for_each?

Terraform for_each inside for_each?
EN

Stack Overflow用户
提问于 2022-03-29 17:05:22
回答 2查看 1.9K关注 0票数 1

我有这样的代码:

代码语言:javascript
复制
locals {
  portals = ["c" "a" "b"]
}

resource "aws_acm_certificate" "example" {
  for_each    = toset(local.portals)
  domain_name = "${each.value}.aws.${var.environment}.abc.com"
  subject_alternative_names = [
    "${each.value}.${var.environment}-aws.abc.com"
  ]
  validation_method = "DNS"

  lifecycle {
    create_before_destroy = true
  }
}

这创造了3个ACM AWS证书。

现在,我需要/要做的是为证书创建的所有DNS创建DNS记录。我的密码是:

代码语言:javascript
复制
resource "aws_route53_record" "example-verify-acm" {
  for_each = {
    for dvo in aws_acm_certificate.example.domain_validation_options : dvo.domain_name => {
      name   = dvo.resource_record_name
      record = dvo.resource_record_value
      type   = dvo.resource_record_type
    }
  }

  allow_overwrite = true
  name            = each.value.name
  records         = [each.value.record]
  ttl             = 60
  type            = each.value.type
  zone_id         = data.aws_route53_zone.management_zone.zone_id
}

现在,当我运行terraform计划时,我得到了一个错误:

代码语言:javascript
复制
│ Error: Missing resource instance key
│ 
│   on  line 24, in resource "aws_route53_record" "example-verify-acm":
│   24:     for dvo in aws_acm_certificate.example.domain_validation_options : dvo.domain_name => {
│ 
│ Because aws_acm_certificate.example has "for_each" set, its attributes must be accessed on specific instances.
│ 
│ For example, to correlate with indices of a referring resource, use:
│     aws_acm_certificate.example[each.key]

然后,正如错误说要使用"aws_acm_certificate.exampleeach.key“。我在代码中添加了以下内容:

代码语言:javascript
复制
    for dvo in aws_acm_certificate.website[each.key].domain_validation_options : dvo.domain_name => {

然后我得到了错误:

代码语言:javascript
复制
│ Error: Reference to "each" in context without for_each
│ 
│   on ../../modules/web/acm.tf line 24, in resource "aws_route53_record" "example-verify-acm":
│   24:     for dvo in aws_acm_certificate.example[each.key].domain_validation_options : dvo.domain_name => {
│ 
│ The "each" object can be used only in "module" or "resource" blocks, and only when the "for_each" argument is set.

如果我加上:

代码语言:javascript
复制
    for dvo in aws_acm_certificate.example[each.value].domain_validation_options : dvo.domain_name => {

我知道错误:

代码语言:javascript
复制
 Error: each.value cannot be used in this context
│ 
│   on ../../modules/web/acm.tf line 24, in resource "aws_route53_record" "example-verify-acm":
│   24:     for dvo in aws_acm_certificate.example[each.value].domain_validation_options : dvo.domain_name => {
│ 
│ A reference to "each.value" has been used in a context in which it unavailable, such as when the configuration no longer contains
│ the value in its "for_each" expression. Remove this reference to each.value in your configuration to work around this error.

因此,我不知道如何为使用"domain_validation_options“这一资源的所有3个证书传递"aws_route53_record”。有办法纠正这些错误吗?或者有什么不同的方法来完成这件事?

foreach
syntax
terraform
terraform-provider-aws
amazon-web-services
EN

回答 2

Stack Overflow用户

回答已采纳

发布于 2022-03-30 08:30:50

你必须把压平你的aws_acm_certificate。例如:

代码语言:javascript
复制
locals {
  flat_records = merge([
      for cert in aws_acm_certificate.example: {
        for dvo in cert.domain_validation_options: 
          "${cert.domain_name}-${dvo.resource_record_name}" => {
            name   = dvo.resource_record_name
            record = dvo.resource_record_value
            type   = dvo.resource_record_type
          }        
      }
    ]...)
}

然后

代码语言:javascript
复制
resource "aws_route53_record" "example-verify-acm" {
  for_each        = local.flat_records 

  allow_overwrite = true
  name            = each.value.name
  records         = [each.value.record]
  ttl             = 60
  type            = each.value.type
  zone_id         = data.aws_route53_zone.management_zone.zone_id
}
票数 1
EN

Stack Overflow用户

发布于 2022-04-05 14:09:39

我没能找到一个很好的解决办法。谢谢你@Marcin的好建议。但我所经历的路径是创建一个terraform模块,它创建ACM、记录和验证,所有这些都是一起完成的。

然后,我使用一个for_each调用模块。通过以下方式:

代码语言:javascript
复制
locals {
  portals = ["c" "a" "b"]
}
票数 0
EN
页面原文内容由Stack Overflow提供。腾讯云小微IT领域专用引擎提供翻译支持
原文链接:

https://stackoverflow.com/questions/71666126

复制
相关文章

相似问题

领券

腾讯云开发者

扫码关注腾讯云开发者

扫码关注腾讯云开发者

领取腾讯云代金券

热门产品

热门推荐

更多推荐

Copyright © 2013 - 2026 Tencent Cloud. All Rights Reserved. 腾讯云 版权所有 

深圳市腾讯计算机系统有限公司 ICP备案/许可证号:粤B2-20090059 粤公网安备44030502008569号

腾讯云计算(北京)有限责任公司 京ICP证150476号 |  京ICP备11018762号

问题归档专栏文章快讯文章归档关键词归档开发者手册归档开发者手册 Section 归档