Terraform: Import resources into Terraform
Use case , manage infrastructure environments both existing and created from scratch, by same terraform configs. For example in development environments we want to create everything from scratch and destroy everything then we finish working with it. In production we want to be able to add new resources to it with terraform but not conflict with resources that already exist but not managed by terrafrom yet.
For ex:
resource "aws_subnet" "b" {
vpc_id = "${aws_vpc.terraform.id}"
cidr_block = "${var.vpc_network_prefix}.${lookup(var.vpc_subnet_suffix, "b")}"
map_public_ip_on_launch = true
availability_zone = "${var.region}b"
if defined(var.subnet_b_id) { load_by_id(${var.subnet_b_id}) }
}
if terraform has not yet created this resource it will check if subnet_b_id is defined and if resource with such id exists in provider api it will import this resource into terraform based on data in api instead of creating it.
piavlo
All 59 comments
I think this doesn't need language support, instead you just need the ability to import the existing subnet into the tfstate file (and give it the name "b" in the process). Then Terraform would reuse the existing one instead of creating a new one to fill the "b" slot. I.e. that conditional if defined(...) essentially already exists in the core terraform planning logic to check if a resource already exists in the tfstate.
sparkprime
on 27 Nov 2014
Would the recommended way forward for this be then to create a script that traverses an AWS network, getting all Route53 records, VPC information, instance data, etc, and generating the appropriate tfstate JSON + example .tf files?
nogweii
on 9 Dec 2014
Correct. Ideally the tool would be able to scan resources on various provides and with operator assistance map it to config logical names.
armon
on 9 Dec 2014
+1 to this one for us. Keeps us from being able to launch new clusters of our service into an existing VPC. Any update on this one since Dec?
carimura
on 23 Feb 2015
No specific update on the feature itself, it's still on the roadmap.
But I wanted to jump in here to link an excellent article by @phrawzty on a strategy for dealing with existing resources with current versions of terraform:
https://www.dark.ca/2015/01/27/handling-extant-resources-in-terraform/
phinze
on 2 Mar 2015
+1, would love to see this (soon).
clstokes
on 27 Apr 2015
An alternative approach could be something inspired by terraform taint where the user could execute something along the lines of terraform add [options] name id. For example terraform add aws_security_group.name sg-4bdc302e and it would be marked as existing but without attributes in the .tfstate-file. Upon the next refresh or apply the attributes would be populated.
AlexanderEkdahl
on 27 Apr 2015
I like @AlexanderEkdahl suggestion. This would be awesome and we could keep people out of the state file - @mitchellh @catsby, thoughts? I'd be willing to do a POC for something like this.
johnrengelman
on 12 May 2015
Thats a pretty neat idea. Could help basic stuff... What do you think @phinze?
mitchellh
on 12 May 2015
Agreed - I think that would be a really valuable baby step to take. :footprints: POC away @johnrengelman!
phinze
on 12 May 2015
Cool.
johnrengelman
on 12 May 2015
I put together a very simple POC for discussion - https://github.com/hashicorp/terraform/pull/2022
johnrengelman
on 20 May 2015
Separate from @johnrengelman's POC (where I commented, too), I feel like a missing part of this conversation is actually generating the Terraform config. I'd expect it to still be a relatively manual, iterative process, but I'd want terraform import <resource_id> <provider_id> to generate config appropriate for a .tf file, probably with a helper for the various _association resource types. Even outputting JSON a la .tfjson would be a huge help.
blalor
on 21 May 2015
+1 to @blalor's comment, though I would advocate for taking this in separate.. the first being coverage for inport to begin with.. generating config has more nuances and work in general.
ketzacoatl
on 31 May 2015
Others may find this tool helpful. I tested the EC2, ELB, security group, and VPC capabilities and it was able to extract existing AWS infrastructure into resources. https://github.com/dtan4/terraforming
meylor
on 5 Jun 2015
:+1: I would love to see this incorporated into terraform.
jwaldrip
on 8 Jul 2015
Would love to see this as well, this functionality would allow us to start using terraform at my company to manage existing infrastructure. +1
nrcxcia
on 9 Jul 2015
:+1:
ckelner
on 20 Jul 2015
:+1:
danielcbright
on 20 Jul 2015
I'll join the party. This would be a _huge_ feature.
(AWS first please)
smcavoy-travelbird
on 22 Jul 2015
:+1:
leopepe
on 22 Jul 2015
I'd like to see this incorporated into terraform too :+1:
mikerahmati
on 23 Jul 2015
yes, yes, yes :+1: I would love to see this incorporated into terraform also, because it should have wider community support.
@dtan4 great work!
antonbabenko
on 6 Aug 2015
:+1:
JesperTerkelsen
on 17 Aug 2015
:+1: I'd think the terraform equivalent of puppet's 'resource' command would be good: https://docs.puppetlabs.com/references/3.8.latest/man/resource.html
br0ch0n
on 21 Aug 2015
:+1: It would help a lot!
Deserved
on 23 Sep 2015
:+1:
JacobASeverson
on 28 Sep 2015
:+1: for sure.
zstarer
on 29 Sep 2015
could folks giving a :+1: try out the patch in #2022 or #3345? Those implementations seem to be the way forward.
josephholsten
on 1 Oct 2015
:+1:
realloc
on 22 Oct 2015
+1 do you think this would cover a similar idea I've had to allow for stub resources / read-only resources? essentially it would allow you define a resource that already exists (eg. vpc/subnets), to allow you to reference them in aws_instances for example, but without having terraform manage the resources and try to destroy/recreate them?
preflightsiren
on 27 Oct 2015
+1 do you think this would cover a similar idea I've had to allow for stub resources / read-only resources? essentially it would allow you define a resource that already exists (eg. vpc/subnets), to allow you to reference them in aws_instances for example, but without having terraform manage the resources and try to destroy/recreate them?
Not as it stands, but something like it/built upon it could potentially allow that. I'd assume you'd need some sort of read-only meta property that would say you can refresh this thing, but don't ever try to change it. If you had that or something like it this would allow you to get it in to your state file initially. That said it's definitely out of scope for what this PR is trying to do.
ross
on 27 Oct 2015
:+1:
alfredopalhares
on 27 Oct 2015
A way to import existing resources would be awesome :+1:
kha0S
on 27 Oct 2015
@kha0S - I've had some luck with https://github.com/dtan4/terraforming
rdark
on 17 Dec 2015
@rdark Thanks. Will give it a try :+1:
kha0S
on 23 Dec 2015
+1
aldarund
on 11 Jan 2016
:+1:
rokka-n
on 27 Jan 2016
I am trying to create new subnets in existing vpc.
I have added vpc id in variables.tf file as
variable "aws_vpc" {
default = "vpc id"
}
Getting below error:-
aws_subnet.private: Error creating subnet: InvalidVpcID.NotFound: The vpc ID "vpc id not found"
Not sure how to go ahead with this one. Need help !
JigarS91
on 1 Feb 2016
@JigarS91 https://www.terraform.io/community.html is the place to ask these questions :)
preflightsiren
on 4 Feb 2016
:+1:
rizvfe00
on 18 Feb 2016
+1 it will be good to have feature in terraform.
avdhoot
on 29 Feb 2016
terraforming is working OK for me too. My process is essentially to export all resources into tfstate form, then rename the ones I'm importing, and delete the others. Would be great to have this functionality built into terraform.
cbroglie
on 14 Mar 2016
This is a bit of a show stopper for my application - I don't want to edit the tfstate if I can avoid it... any update on whether this will be moving forward in one form or another?
allandrick
on 24 Mar 2016
:+1:
Pryz
on 31 Mar 2016
:+1:
robertwe
on 1 Apr 2016
:+1:
TerribleDev
on 15 Apr 2016
+1, this makes it much easier to recover from partial applies
LusciousPear
on 21 Apr 2016
👍
cyakimov
on 3 May 2016
👍
davidfic
on 3 May 2016
👍
jvasallo
on 12 May 2016
+1
nitdana
on 17 May 2016
Folks, github has had reactions for a while. Please stop the +1 and thumbs up.
manojlds
on 17 May 2016
seconded on a request for an update, clearly this is something that the community wants. If the response is that hey this will be included in version 0.6.20 then so be it.
brandon-dacrib
on 10 Jun 2016
Looking at the work on the master branch, parts of this (or maybe all) will be in 0.7.
johnrengelman
on 10 Jun 2016
The basics of this are in master and will be part of 0.7. See the website subfolder for docs until it is released. More fancy features such as config generation will come, but 0.7 will be able to import resources into Terraform.
This is just the beginning, but we're finally getting there!
mitchellh
on 10 Jun 2016
Anyone interesting the converter, you need to follow up this ticket:
ozbillwang
on 23 Jun 2017
You can try new solution https://github.com/GoogleCloudPlatform/terraformer
Full import existing resources, include tf and tfstate. Full support cloud providers options
Support Google cloud and aws
sergeylanzman
on 3 May 2019
I'm going to lock this issue because it has been closed for _30 days_ ⏳. This helps our maintainers find and focus on the active issues.
If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.
![hashibot[bot] picture](https://avatars2.githubusercontent.com/in/8332?v=4&s=40)
hashibot[bot]
on 26 Jul 2019
Related issues
rjinski
·
3Comments
c4milo
·
3Comments
franklinwise
·
3Comments
carl-youngblood
·
3Comments
larstobi
·
3Comments
Most helpful comment
The basics of this are in master and will be part of 0.7. See the website subfolder for docs until it is released. More fancy features such as config generation will come, but 0.7 will be able to import resources into Terraform.
This is just the beginning, but we're finally getting there!