{"id":2354,"date":"2025-03-24T08:47:36","date_gmt":"2025-03-23T23:47:36","guid":{"rendered":"https:\/\/dexall.co.jp\/articles\/?p=2354"},"modified":"2025-03-24T08:47:59","modified_gmt":"2025-03-23T23:47:59","slug":"%e3%80%90%e4%bf%9d%e5%ad%98%e7%89%88%e3%80%91terraform-state%e7%ae%a1%e7%90%86%e5%ae%8c%e5%85%a8%e3%82%ac%e3%82%a4%e3%83%892024-%e7%8f%be%e5%a0%b4%e3%81%a7%e4%bd%bf%e3%81%88%e3%82%8b15%e3%81%ae","status":"publish","type":"post","link":"https:\/\/dexall.co.jp\/articles\/?p=2354","title":{"rendered":"\u3010\u4fdd\u5b58\u7248\u3011Terraform State\u7ba1\u7406\u5b8c\u5168\u30ac\u30a4\u30c92024 &#8211; \u73fe\u5834\u3067\u4f7f\u3048\u308b15\u306e\u30d9\u30b9\u30c8\u30d7\u30e9\u30af\u30c6\u30a3\u30b9"},"content":{"rendered":"\n<div class=\"toc\"><br \/>\n<b>Warning<\/b>:  Undefined array key \"is_admin\" in <b>\/home\/xs392991\/dexall.co.jp\/public_html\/articles\/wp-content\/themes\/sango-theme\/library\/gutenberg\/dist\/classes\/Toc.php<\/b> on line <b>116<\/b><br \/>\n<br \/>\n<b>Warning<\/b>:  Undefined array key \"is_category_top\" in <b>\/home\/xs392991\/dexall.co.jp\/public_html\/articles\/wp-content\/themes\/sango-theme\/library\/gutenberg\/dist\/classes\/Toc.php<\/b> on line <b>121<\/b><br \/>\n<br \/>\n<b>Warning<\/b>:  Undefined array key \"is_top\" in <b>\/home\/xs392991\/dexall.co.jp\/public_html\/articles\/wp-content\/themes\/sango-theme\/library\/gutenberg\/dist\/classes\/Toc.php<\/b> on line <b>128<\/b><br \/>\n    <div id=\"toc_container\" class=\"sgb-toc--bullets js-smooth-scroll\" data-dialog-title=\"\u76ee\u6b21\">\n      <p class=\"toc_title\">\u76ee\u6b21 <\/p>\n      <ul class=\"toc_list\">  <li class=\"first\">    <a href=\"#i-0\">Terraform State\u3068\u306f\uff1f\u57fa\u790e\u304b\u3089\u5b9f\u8df5\u307e\u3067\u5b8c\u5168\u89e3\u8aac<\/a>    <ul class=\"menu_level_1\">      <li class=\"first\">        <a href=\"#i-1\">Terraform State\u304c\u679c\u305f\u3059\u91cd\u8981\u306a3\u3064\u306e\u5f79\u5272<\/a>      <\/li>      <li class=\"last\">        <a href=\"#i-2\">state\u7ba1\u7406\u306e\u5931\u6557\u3067\u3088\u304f\u3042\u308b4\u3064\u306e\u30c8\u30e9\u30d6\u30eb\u4e8b\u4f8b<\/a>      <\/li>    <\/ul>  <\/li>  <li>    <a href=\"#i-3\">\u30ed\u30fc\u30ab\u30ebstate vs \u30ea\u30e2\u30fc\u30c8state \u2013 \u3042\u306a\u305f\u306e\u74b0\u5883\u306b\u6700\u9069\u306a\u9078\u629e\u306f\uff1f<\/a>    <ul class=\"menu_level_1\">      <li class=\"first\">        <a href=\"#i-4\">\u30ed\u30fc\u30ab\u30ebstate\u7ba1\u7406\u306e\u30e1\u30ea\u30c3\u30c8\u30fb\u30c7\u30e1\u30ea\u30c3\u30c8\u3092\u8a73\u3057\u304f\u89e3\u8aac<\/a>      <\/li>      <li>        <a href=\"#i-5\">\u30ea\u30e2\u30fc\u30c8state\u7ba1\u7406\u304c\u5fc5\u8981\u306b\u306a\u308b5\u3064\u306e\u30b1\u30fc\u30b9<\/a>      <\/li>      <li class=\"last\">        <a href=\"#i-6\">\u4e3b\u8981\u306a\u30d0\u30c3\u30af\u30a8\u30f3\u30c9\u5225\u306e\u8a2d\u5b9a\u65b9\u6cd5\u3068\u7279\u5fb4\u6bd4\u8f03<\/a>      <\/li>    <\/ul>  <\/li>  <li>    <a href=\"#i-7\">\u5b9f\u8df5\u7684\u306aTerraform State\u7ba1\u7406\u30c6\u30af\u30cb\u30c3\u30af<\/a>    <ul class=\"menu_level_1\">      <li class=\"first\">        <a href=\"#i-8\">state locking\u3092\u4f7f\u3063\u305f\u5b89\u5168\u306a\u540c\u6642\u5b9f\u884c\u5236\u5fa1<\/a>      <\/li>      <li>        <a href=\"#i-9\">workspace\u3092\u6d3b\u7528\u3057\u305f\u52b9\u7387\u7684\u306a\u74b0\u5883\u5206\u96e2<\/a>      <\/li>      <li class=\"last\">        <a href=\"#i-10\">\u30bb\u30ad\u30e5\u30a2\u306astate\u7ba1\u7406\u306e\u305f\u3081\u306e\u6697\u53f7\u5316\u8a2d\u5b9a<\/a>      <\/li>    <\/ul>  <\/li>  <li>    <a href=\"#i-11\">\u30c1\u30fc\u30e0\u958b\u767a\u306b\u304a\u3051\u308bTerraform State\u7ba1\u7406\u306e\u30d9\u30b9\u30c8\u30d7\u30e9\u30af\u30c6\u30a3\u30b9<\/a>    <ul class=\"menu_level_1\">      <li class=\"first\">        <a href=\"#i-12\">GitOps\u306b\u57fa\u3065\u3044\u305fstate\u7ba1\u7406\u30d5\u30ed\u30fc<\/a>      <\/li>      <li>        <a href=\"#i-13\">\u30d0\u30c3\u30af\u30a8\u30f3\u30c9\u306e\u5171\u6709\u8a2d\u5b9a\u3068\u30a2\u30af\u30bb\u30b9\u5236\u5fa1<\/a>      <\/li>      <li class=\"last\">        <a href=\"#i-14\">\u5927\u898f\u6a21\u30c1\u30fc\u30e0\u3067\u306estate\u5206\u5272\u6226\u7565<\/a>      <\/li>    <\/ul>  <\/li>  <li class=\"last\">    <a href=\"#i-15\">Terraform State\u7ba1\u7406\u306e\u30c8\u30e9\u30d6\u30eb\u30b7\u30e5\u30fc\u30c6\u30a3\u30f3\u30b0\u5b8c\u5168\u30ac\u30a4\u30c9<\/a>    <ul class=\"menu_level_1\">      <li class=\"first\">        <a href=\"#i-16\">state\u30d5\u30a1\u30a4\u30eb\u306e\u7834\u640d\u6642\u306e\u5fa9\u65e7\u624b\u9806<\/a>      <\/li>      <li>        <a href=\"#i-17\">state\u9593\u306e\u4e0d\u6574\u5408\u89e3\u6d88\u30c6\u30af\u30cb\u30c3\u30af<\/a>      <\/li>      <li class=\"last\">        <a href=\"#i-18\">\u30d1\u30d5\u30a9\u30fc\u30de\u30f3\u30b9\u6539\u5584\u306e\u305f\u3081\u306estate\u6700\u9069\u5316<\/a>      <\/li>    <\/ul>  <\/li><\/ul>\n      <a href=\"#\" class=\"sgb-toc-button js-toc-button\" rel=\"nofollow\" data-open-dialog=\"true\"><i class=\"fa fa-list\"><\/i><span class=\"sgb-toc-button__text\">\u76ee\u6b21\u3078<\/span><\/a>\n    <\/div><\/div><h2 class=\"wp-block-heading\" id=\"i-0\">Terraform State\u3068\u306f\uff1f\u57fa\u790e\u304b\u3089\u5b9f\u8df5\u307e\u3067\u5b8c\u5168\u89e3\u8aac<\/h2>\n\n\n\n<p>\u30a4\u30f3\u30d5\u30e9\u3092\u30b3\u30fc\u30c9\u3067\u7ba1\u7406\u3059\u308bIaC\u30c4\u30fc\u30eb\u3068\u3057\u3066\u5e83\u304f\u4f7f\u308f\u308c\u3066\u3044\u308bTerraform\u3002\u305d\u306e\u4e2d\u3067\u3082\u6700\u3082\u91cd\u8981\u306a\u8981\u7d20\u306e1\u3064\u304c\u300cState\uff08\u72b6\u614b\uff09\u300d\u306e\u7ba1\u7406\u3067\u3059\u3002\u3053\u306e\u30bb\u30af\u30b7\u30e7\u30f3\u3067\u306f\u3001Terraform State\u306e\u57fa\u672c\u7684\u306a\u6982\u5ff5\u304b\u3089\u5b9f\u8df5\u7684\u306a\u4f7f\u3044\u65b9\u307e\u3067\u3001\u8a73\u3057\u304f\u89e3\u8aac\u3057\u3066\u3044\u304d\u307e\u3059\u3002<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-1\">Terraform State\u304c\u679c\u305f\u3059\u91cd\u8981\u306a3\u3064\u306e\u5f79\u5272<\/h3>\n\n\n\n<p>Terraform State\u306f\u3001\u30a4\u30f3\u30d5\u30e9\u306e\u300c\u3042\u308b\u3079\u304d\u72b6\u614b\u300d\u3068\u300c\u73fe\u5728\u306e\u72b6\u614b\u300d\u3092\u7ba1\u7406\u3059\u308b\u91cd\u8981\u306a\u30e1\u30ab\u30cb\u30ba\u30e0\u3067\u3059\u3002\u5177\u4f53\u7684\u306b\u306f\u4ee5\u4e0b\u306e3\u3064\u306e\u91cd\u8981\u306a\u5f79\u5272\u3092\u679c\u305f\u3057\u3066\u3044\u307e\u3059\uff1a<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>\u30ea\u30bd\u30fc\u30b9\u306e\u30de\u30c3\u30d4\u30f3\u30b0\u3068\u8ffd\u8de1<\/strong><\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u30a4\u30f3\u30d5\u30e9\u306e\u73fe\u5728\u306e\u72b6\u614b\u3092\u8a18\u9332<\/li>\n\n\n\n<li>Terraform\u3067\u4f5c\u6210\u3057\u305f\u30ea\u30bd\u30fc\u30b9\u3068\u30af\u30e9\u30a6\u30c9\u4e0a\u306e\u5b9f\u30ea\u30bd\u30fc\u30b9\u306e\u7d10\u4ed8\u3051<\/li>\n\n\n\n<li>\u30ea\u30bd\u30fc\u30b9\u9593\u306e\u4f9d\u5b58\u95a2\u4fc2\u306e\u7ba1\u7406<\/li>\n<\/ul>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># state\u30d5\u30a1\u30a4\u30eb\u306e\u4f8b\uff08\u4e00\u90e8\u629c\u7c8b\uff09\n{\n  \"version\": 4,\n  \"terraform_version\": \"1.5.0\",\n  \"resources\": [\n    {\n      \"mode\": \"managed\",\n      \"type\": \"aws_instance\",\n      \"name\": \"example\",\n      \"provider\": \"provider[\\\"registry.terraform.io\/hashicorp\/aws\\\"]\",\n      \"instances\": [\n        {\n          \"schema_version\": 1,\n          \"attributes\": {\n            \"id\": \"i-1234567890abcdef0\",\n            \"instance_type\": \"t2.micro\",\n            \"tags\": {\n              \"Name\": \"example-instance\"\n            }\n          }\n        }\n      ]\n    }\n  ]\n}<\/pre>\n\n\n\n<ol start=\"2\" class=\"wp-block-list\">\n<li><strong>\u30d1\u30d5\u30a9\u30fc\u30de\u30f3\u30b9\u6700\u9069\u5316<\/strong><\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u30ea\u30bd\u30fc\u30b9\u306e\u5dee\u5206\u691c\u51fa\u3092\u52b9\u7387\u5316<\/li>\n\n\n\n<li>\u5fc5\u8981\u306aAPI\u547c\u3073\u51fa\u3057\u3092\u6700\u5c0f\u9650\u306b\u6291\u5236<\/li>\n\n\n\n<li>\u5927\u898f\u6a21\u30a4\u30f3\u30d5\u30e9\u3067\u306e\u5b9f\u884c\u6642\u9593\u77ed\u7e2e<\/li>\n<\/ul>\n\n\n\n<ol start=\"2\" class=\"wp-block-list\">\n<li><strong>\u72b6\u614b\u306e\u540c\u671f\u3068\u30ed\u30c3\u30af\u6a5f\u80fd<\/strong><\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u30c1\u30fc\u30e0\u958b\u767a\u3067\u306e\u6574\u5408\u6027\u78ba\u4fdd<\/li>\n\n\n\n<li>\u540c\u6642\u5909\u66f4\u306b\u3088\u308b\u7af6\u5408\u306e\u9632\u6b62<\/li>\n\n\n\n<li>\u72b6\u614b\u306e\u4e00\u8cab\u6027\u4fdd\u6301<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-2\">state\u7ba1\u7406\u306e\u5931\u6557\u3067\u3088\u304f\u3042\u308b4\u3064\u306e\u30c8\u30e9\u30d6\u30eb\u4e8b\u4f8b<\/h3>\n\n\n\n<p>\u5b9f\u52d9\u3067\u3088\u304f\u906d\u9047\u3059\u308bstate\u7ba1\u7406\u306e\u5931\u6557\u30d1\u30bf\u30fc\u30f3\u3068\u3001\u305d\u306e\u5bfe\u51e6\u6cd5\u3092\u7d39\u4ecb\u3057\u307e\u3059\uff1a<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>\u72b6\u614b\u30d5\u30a1\u30a4\u30eb\u306e\u7d1b\u5931<\/strong><\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u75c7\u72b6\uff1a\u30ed\u30fc\u30ab\u30eb\u306estate\u30d5\u30a1\u30a4\u30eb\u3092\u8aa4\u3063\u3066\u524a\u9664<\/li>\n\n\n\n<li>\u5f71\u97ff\uff1a\u65e2\u5b58\u30ea\u30bd\u30fc\u30b9\u306e\u7ba1\u7406\u4e0d\u80fd<\/li>\n\n\n\n<li>\u5bfe\u7b56\uff1a\n<ul class=\"wp-block-list\">\n<li>\u30ea\u30e2\u30fc\u30c8\u30d0\u30c3\u30af\u30a8\u30f3\u30c9\u306e\u4f7f\u7528<\/li>\n\n\n\n<li>\u5b9a\u671f\u7684\u306a\u30d0\u30c3\u30af\u30a2\u30c3\u30d7<\/li>\n\n\n\n<li>\u30d0\u30fc\u30b8\u30e7\u30f3\u7ba1\u7406\u30b7\u30b9\u30c6\u30e0\u3067\u306e\u4fdd\u7ba1<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>\u72b6\u614b\u306e\u4e0d\u6574\u5408<\/strong><\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u75c7\u72b6\uff1a\u5b9f\u969b\u306e\u30a4\u30f3\u30d5\u30e9\u3068state\u30d5\u30a1\u30a4\u30eb\u306e\u5185\u5bb9\u304c\u4e00\u81f4\u3057\u306a\u3044<\/li>\n\n\n\n<li>\u5f71\u97ff\uff1a<code>terraform plan<\/code>\u306e\u8aa4\u3063\u305f\u5dee\u5206\u691c\u51fa<\/li>\n\n\n\n<li>\u5bfe\u7b56\uff1a<\/li>\n<\/ul>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u72b6\u614b\u306e\u66f4\u65b0\u30b3\u30de\u30f3\u30c9\nterraform refresh\n\n# \u7279\u5b9a\u30ea\u30bd\u30fc\u30b9\u306e\u72b6\u614b\u3092\u524a\u9664\nterraform state rm 'aws_instance.example'\n\n# \u624b\u52d5\u3067\u4f5c\u6210\u3057\u305f\u30ea\u30bd\u30fc\u30b9\u306e\u53d6\u308a\u8fbc\u307f\nterraform import aws_instance.example i-1234567890abcdef0<\/pre>\n\n\n\n<ol start=\"3\" class=\"wp-block-list\">\n<li><strong>\u540c\u6642\u5b9f\u884c\u306b\u3088\u308b\u7af6\u5408<\/strong><\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u75c7\u72b6\uff1a\u8907\u6570\u30e1\u30f3\u30d0\u30fc\u304c\u540c\u6642\u306bapply\u3092\u5b9f\u884c<\/li>\n\n\n\n<li>\u5f71\u97ff\uff1a\u30ea\u30bd\u30fc\u30b9\u306e\u4e88\u671f\u305b\u306c\u5909\u66f4\u3084\u524a\u9664<\/li>\n\n\n\n<li>\u5bfe\u7b56\uff1a\n<ul class=\"wp-block-list\">\n<li>state locking\u306e\u6709\u52b9\u5316<\/li>\n\n\n\n<li>\u30ea\u30e2\u30fc\u30c8\u30d0\u30c3\u30af\u30a8\u30f3\u30c9\u3067\u306e\u30ed\u30c3\u30af\u6a5f\u80fd\u5229\u7528<\/li>\n\n\n\n<li>\u5b9f\u884c\u524d\u306e<code>terraform plan<\/code>\u78ba\u8a8d\u5fb9\u5e95<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n\n\n\n<ol start=\"3\" class=\"wp-block-list\">\n<li><strong>\u6a5f\u5bc6\u60c5\u5831\u306e\u6f0f\u6d29<\/strong><\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u75c7\u72b6\uff1astate\u30d5\u30a1\u30a4\u30eb\u5185\u306e\u6a5f\u5bc6\u60c5\u5831\u304c\u9732\u51fa<\/li>\n\n\n\n<li>\u5f71\u97ff\uff1a\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30ea\u30b9\u30af\u306e\u767a\u751f<\/li>\n\n\n\n<li>\u5bfe\u7b56\uff1a<\/li>\n<\/ul>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u6a5f\u5bc6\u60c5\u5831\u3092\u542b\u3080\u30d5\u30a3\u30fc\u30eb\u30c9\u306e\u7ba1\u7406\u4f8b\nvariable \"db_password\" {\n  type      = string\n  sensitive = true  # \u6a5f\u5bc6\u60c5\u5831\u3068\u3057\u3066\u30de\u30fc\u30af\n}\n\n# \u6697\u53f7\u5316\u3055\u308c\u305f\u30d0\u30b1\u30c3\u30c8\u306e\u4f7f\u7528\nterraform {\n  backend \"s3\" {\n    bucket = \"terraform-state-bucket\"\n    key    = \"prod\/terraform.tfstate\"\n    region = \"ap-northeast-1\"\n    encrypt = true  # \u6697\u53f7\u5316\u3092\u6709\u52b9\u5316\n  }\n}<\/pre>\n\n\n\n<p>\u3010\u5b9f\u8df5\u7684\u306aTips\u3011<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>state\u30d5\u30a1\u30a4\u30eb\u306f\u5fc5\u305a\u30d0\u30fc\u30b8\u30e7\u30f3\u7ba1\u7406\u3059\u308b<\/li>\n\n\n\n<li>\u30c1\u30fc\u30e0\u958b\u767a\u3067\u306f\u30ea\u30e2\u30fc\u30c8\u30d0\u30c3\u30af\u30a8\u30f3\u30c9\u3092\u4f7f\u7528\u3059\u308b<\/li>\n\n\n\n<li>\u6a5f\u5bc6\u60c5\u5831\u306f<code>sensitive = true<\/code>\u3067\u30de\u30fc\u30af\u3059\u308b<\/li>\n\n\n\n<li>\u5b9a\u671f\u7684\u306b<code>terraform plan<\/code>\u3067\u72b6\u614b\u3092\u78ba\u8a8d\u3059\u308b<\/li>\n<\/ul>\n\n\n\n<p>\u3053\u306e\u3088\u3046\u306a\u57fa\u672c\u7684\u306a\u7406\u89e3\u3068\u6ce8\u610f\u70b9\u3092\u62bc\u3055\u3048\u308b\u3053\u3068\u3067\u3001\u591a\u304f\u306e\u4e00\u822c\u7684\u306a\u30c8\u30e9\u30d6\u30eb\u3092\u672a\u7136\u306b\u9632\u3050\u3053\u3068\u304c\u3067\u304d\u307e\u3059\u3002\u6b21\u306e\u30bb\u30af\u30b7\u30e7\u30f3\u3067\u306f\u3001\u3088\u308a\u5177\u4f53\u7684\u306astate\u7ba1\u7406\u306e\u65b9\u6cd5\u306b\u3064\u3044\u3066\u89e3\u8aac\u3057\u3066\u3044\u304d\u307e\u3059\u3002<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"i-3\">\u30ed\u30fc\u30ab\u30ebstate vs \u30ea\u30e2\u30fc\u30c8state \u2013 \u3042\u306a\u305f\u306e\u74b0\u5883\u306b\u6700\u9069\u306a\u9078\u629e\u306f\uff1f<\/h2>\n\n\n\n<p>Terraform\u306estate\u7ba1\u7406\u65b9\u5f0f\u306f\u3001\u5927\u304d\u304f\u5206\u3051\u3066\u300c\u30ed\u30fc\u30ab\u30ebstate\u300d\u3068\u300c\u30ea\u30e2\u30fc\u30c8state\u300d\u306e2\u7a2e\u985e\u304c\u3042\u308a\u307e\u3059\u3002\u30d7\u30ed\u30b8\u30a7\u30af\u30c8\u306e\u898f\u6a21\u3084\u8981\u4ef6\u306b\u5fdc\u3058\u3066\u3001\u6700\u9069\u306a\u65b9\u5f0f\u3092\u9078\u629e\u3059\u308b\u5fc5\u8981\u304c\u3042\u308a\u307e\u3059\u3002<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-4\">\u30ed\u30fc\u30ab\u30ebstate\u7ba1\u7406\u306e\u30e1\u30ea\u30c3\u30c8\u30fb\u30c7\u30e1\u30ea\u30c3\u30c8\u3092\u8a73\u3057\u304f\u89e3\u8aac<\/h3>\n\n\n\n<p>\u30ed\u30fc\u30ab\u30ebstate\u7ba1\u7406\u306f\u3001Terraform\u306e\u6700\u3082\u30b7\u30f3\u30d7\u30eb\u306a\u72b6\u614b\u7ba1\u7406\u65b9\u5f0f\u3067\u3059\u3002<\/p>\n\n\n\n<p><strong>\u30e1\u30ea\u30c3\u30c8:<\/strong><\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li>\u30bb\u30c3\u30c8\u30a2\u30c3\u30d7\u304c\u7c21\u5358<\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u8ffd\u52a0\u8a2d\u5b9a\u4e0d\u8981<\/li>\n\n\n\n<li>\u5373\u5ea7\u306b\u5229\u7528\u958b\u59cb\u53ef\u80fd<\/li>\n<\/ul>\n\n\n\n<ol class=\"wp-block-list\">\n<li>\u4f9d\u5b58\u30b5\u30fc\u30d3\u30b9\u304c\u4e0d\u8981<\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u5916\u90e8\u30b5\u30fc\u30d3\u30b9\u306e\u30b3\u30b9\u30c8\u767a\u751f\u306a\u3057<\/li>\n\n\n\n<li>\u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u63a5\u7d9a\u4e0d\u8981<\/li>\n<\/ul>\n\n\n\n<ol class=\"wp-block-list\">\n<li>\u30c7\u30d0\u30c3\u30b0\u304c\u5bb9\u6613<\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u30ed\u30fc\u30ab\u30eb\u3067\u306e\u76f4\u63a5\u7de8\u96c6\u304c\u53ef\u80fd<\/li>\n\n\n\n<li>\u72b6\u614b\u78ba\u8a8d\u304c\u5373\u5ea7\u306b\u53ef\u80fd<\/li>\n<\/ul>\n\n\n\n<p><strong>\u30c7\u30e1\u30ea\u30c3\u30c8:<\/strong><\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li>\u30c1\u30fc\u30e0\u958b\u767a\u3067\u306e\u8ab2\u984c<\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u72b6\u614b\u306e\u5171\u6709\u304c\u56f0\u96e3<\/li>\n\n\n\n<li>\u30d0\u30fc\u30b8\u30e7\u30f3\u7ba1\u7406\u304c\u8907\u96d1<\/li>\n<\/ul>\n\n\n\n<ol class=\"wp-block-list\">\n<li>\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30ea\u30b9\u30af<\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u30d5\u30a1\u30a4\u30eb\u306e\u6697\u53f7\u5316\u304c\u6a19\u6e96\u3067\u306f\u4e0d\u53ef<\/li>\n\n\n\n<li>\u30a2\u30af\u30bb\u30b9\u5236\u5fa1\u304c\u9650\u5b9a\u7684<\/li>\n<\/ul>\n\n\n\n<ol class=\"wp-block-list\">\n<li>\u53ef\u7528\u6027\u306e\u8ab2\u984c<\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u30d5\u30a1\u30a4\u30eb\u7d1b\u5931\u306e\u30ea\u30b9\u30af<\/li>\n\n\n\n<li>\u30d0\u30c3\u30af\u30a2\u30c3\u30d7\u7ba1\u7406\u304c\u5fc5\u8981<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-5\">\u30ea\u30e2\u30fc\u30c8state\u7ba1\u7406\u304c\u5fc5\u8981\u306b\u306a\u308b5\u3064\u306e\u30b1\u30fc\u30b9<\/h3>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>\u30c1\u30fc\u30e0\u958b\u767a\u74b0\u5883<\/strong><\/li>\n<\/ol>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># S3\u30d0\u30c3\u30af\u30a8\u30f3\u30c9\u306e\u8a2d\u5b9a\u4f8b\nterraform {\n  backend \"s3\" {\n    bucket         = \"terraform-state-bucket\"\n    key            = \"prod\/terraform.tfstate\"\n    region         = \"ap-northeast-1\"\n    encrypt        = true\n    dynamodb_table = \"terraform-state-lock\"\n  }\n}<\/pre>\n\n\n\n<ol start=\"2\" class=\"wp-block-list\">\n<li><strong>\u5927\u898f\u6a21\u30a4\u30f3\u30d5\u30e9\u74b0\u5883<\/strong><\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u8907\u6570\u306e\u30b5\u30fc\u30d3\u30b9\u3084\u30e2\u30b8\u30e5\u30fc\u30eb\u306e\u7ba1\u7406<\/li>\n\n\n\n<li>\u591a\u6570\u306e\u30ea\u30bd\u30fc\u30b9\u306e\u72b6\u614b\u7ba1\u7406<\/li>\n\n\n\n<li>\u983b\u7e41\u306a\u69cb\u6210\u5909\u66f4<\/li>\n<\/ul>\n\n\n\n<ol start=\"2\" class=\"wp-block-list\">\n<li><strong>\u9ad8\u53ef\u7528\u6027\u8981\u4ef6\u304c\u3042\u308b\u74b0\u5883<\/strong><\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u30d3\u30b8\u30cd\u30b9\u30af\u30ea\u30c6\u30a3\u30ab\u30eb\u306a\u30b7\u30b9\u30c6\u30e0<\/li>\n\n\n\n<li>\u30c0\u30a6\u30f3\u30bf\u30a4\u30e0\u304c\u8a31\u5bb9\u3055\u308c\u306a\u3044\u74b0\u5883<\/li>\n\n\n\n<li>\u969c\u5bb3\u5fa9\u65e7\u8981\u4ef6\u304c\u53b3\u3057\u3044\u74b0\u5883<\/li>\n<\/ul>\n\n\n\n<ol start=\"2\" class=\"wp-block-list\">\n<li><strong>\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u8981\u4ef6\u304c\u53b3\u3057\u3044\u74b0\u5883<\/strong><\/li>\n<\/ol>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># Google Cloud Storage\u30d0\u30c3\u30af\u30a8\u30f3\u30c9\u306e\u6697\u53f7\u5316\u8a2d\u5b9a\u4f8b\nterraform {\n  backend \"gcs\" {\n    bucket      = \"terraform-state-bucket\"\n    prefix      = \"prod\"\n    encryption_key = \"projects\/my-project\/locations\/global\/keyRings\/my-keyring\/cryptoKeys\/my-key\"\n  }\n}<\/pre>\n\n\n\n<ol start=\"5\" class=\"wp-block-list\">\n<li><strong>CI\/CD\u74b0\u5883\u3068\u306e\u7d71\u5408<\/strong><\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u81ea\u52d5\u5316\u30d1\u30a4\u30d7\u30e9\u30a4\u30f3\u3067\u306e\u5229\u7528<\/li>\n\n\n\n<li>\u7d99\u7d9a\u7684\u306a\u30a4\u30f3\u30d5\u30e9\u66f4\u65b0<\/li>\n\n\n\n<li>\u76e3\u67fb\u8981\u4ef6\u3078\u306e\u5bfe\u5fdc<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-6\">\u4e3b\u8981\u306a\u30d0\u30c3\u30af\u30a8\u30f3\u30c9\u5225\u306e\u8a2d\u5b9a\u65b9\u6cd5\u3068\u7279\u5fb4\u6bd4\u8f03<\/h3>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>AWS S3 + DynamoDB<\/strong><\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u7279\u5fb4\uff1a<\/li>\n\n\n\n<li>\u9ad8\u53ef\u7528\u6027<\/li>\n\n\n\n<li>\u30b3\u30b9\u30c8\u52b9\u7387\u304c\u826f\u3044<\/li>\n\n\n\n<li>\u30ed\u30c3\u30af\u6a5f\u80fd\u306e\u5b9f\u88c5\u304c\u5bb9\u6613<\/li>\n<\/ul>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u57fa\u672c\u8a2d\u5b9a\u4f8b\nterraform {\n  backend \"s3\" {\n    bucket         = \"terraform-state\"\n    key            = \"state\/terraform.tfstate\"\n    region         = \"ap-northeast-1\"\n    encrypt        = true\n    dynamodb_table = \"terraform-lock\"\n  }\n}<\/pre>\n\n\n\n<ol start=\"2\" class=\"wp-block-list\">\n<li><strong>Azure Storage Account<\/strong><\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u7279\u5fb4\uff1a<\/li>\n\n\n\n<li>Azure\u30b5\u30fc\u30d3\u30b9\u3068\u306e\u89aa\u548c\u6027<\/li>\n\n\n\n<li>\u968e\u5c64\u578b\u30b9\u30c8\u30ec\u30fc\u30b8<\/li>\n\n\n\n<li>\u5730\u7406\u5197\u9577\u30aa\u30d7\u30b7\u30e7\u30f3<\/li>\n<\/ul>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># Azure Storage Account\u8a2d\u5b9a\u4f8b\nterraform {\n  backend \"azurerm\" {\n    storage_account_name = \"terraformstate\"\n    container_name       = \"tfstate\"\n    key                 = \"prod.terraform.tfstate\"\n    access_key          = \"...\"  # \u74b0\u5883\u5909\u6570\u3067\u306e\u8a2d\u5b9a\u63a8\u5968\n  }\n}<\/pre>\n\n\n\n<ol start=\"3\" class=\"wp-block-list\">\n<li><strong>Google Cloud Storage<\/strong><\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u7279\u5fb4\uff1a<\/li>\n\n\n\n<li>\u30aa\u30d6\u30b8\u30a7\u30af\u30c8\u306e\u30d0\u30fc\u30b8\u30e7\u30cb\u30f3\u30b0<\/li>\n\n\n\n<li>\u7d30\u304b\u3044\u30a2\u30af\u30bb\u30b9\u5236\u5fa1<\/li>\n\n\n\n<li>\u6697\u53f7\u5316\u30aa\u30d7\u30b7\u30e7\u30f3<\/li>\n<\/ul>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># GCS\u8a2d\u5b9a\u4f8b\nterraform {\n  backend \"gcs\" {\n    bucket      = \"terraform-state\"\n    prefix      = \"terraform\/state\"\n    credentials = \"path\/to\/credentials.json\"\n  }\n}<\/pre>\n\n\n\n<ol start=\"4\" class=\"wp-block-list\">\n<li><strong>HashiCorp Terraform Cloud<\/strong><\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u7279\u5fb4\uff1a<\/li>\n\n\n\n<li>GUI\u7ba1\u7406\u753b\u9762<\/li>\n\n\n\n<li>\u30dd\u30ea\u30b7\u30fc\u7ba1\u7406\u6a5f\u80fd<\/li>\n\n\n\n<li>\u30c1\u30fc\u30e0\u7ba1\u7406\u6a5f\u80fd<\/li>\n<\/ul>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># Terraform Cloud\u8a2d\u5b9a\u4f8b\nterraform {\n  cloud {\n    organization = \"example-org\"\n    workspaces {\n      name = \"prod-infrastructure\"\n    }\n  }\n}<\/pre>\n\n\n\n<p>\u3010\u74b0\u5883\u5225\u306e\u63a8\u5968\u8a2d\u5b9a\u3011<\/p>\n\n\n<div id=\"id-3890bbf9-4ebb-4552-84c9-5801a0d8ddec\">\n<figure class=\"wp-block-table\"><table class=\"has-fixed-layout\"><thead><tr><th>\u74b0\u5883\u898f\u6a21<\/th><th>\u63a8\u5968\u30d0\u30c3\u30af\u30a8\u30f3\u30c9<\/th><th>\u4e3b\u306a\u7406\u7531<\/th><\/tr><\/thead><tbody><tr><td>\u500b\u4eba\u958b\u767a<\/td><td>\u30ed\u30fc\u30ab\u30eb\/Git<\/td><td>\u30b7\u30f3\u30d7\u30eb\u3001\u30b3\u30b9\u30c8\u4e0d\u8981<\/td><\/tr><tr><td>\u5c0f\u898f\u6a21\u30c1\u30fc\u30e0<\/td><td>S3\/GCS<\/td><td>\u624b\u8efd\u3001\u30b3\u30b9\u30c8\u52b9\u7387\u826f\u597d<\/td><\/tr><tr><td>\u4e2d\u898f\u6a21\u30c1\u30fc\u30e0<\/td><td>Terraform Cloud<\/td><td>\u7ba1\u7406\u6a5f\u80fd\u5145\u5b9f\u3001\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5f37\u5316<\/td><\/tr><tr><td>\u5927\u898f\u6a21\u7d44\u7e54<\/td><td>Enterprise\u7248<\/td><td>\u30ac\u30d0\u30ca\u30f3\u30b9\u6a5f\u80fd\u3001\u30b5\u30dd\u30fc\u30c8\u4f53\u5236<\/td><\/tr><\/tbody><\/table><\/figure>\n<\/div>\n\n\n<p>\u79fb\u884c\u6642\u306e\u6ce8\u610f\u70b9\uff1a<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li>\u65e2\u5b58state\u306e\u30d0\u30c3\u30af\u30a2\u30c3\u30d7<\/li>\n\n\n\n<li>\u65b0\u74b0\u5883\u3067\u306e\u52d5\u4f5c\u78ba\u8a8d<\/li>\n\n\n\n<li>\u30c1\u30fc\u30e0\u5168\u4f53\u3078\u306e\u5468\u77e5<\/li>\n\n\n\n<li>\u30a2\u30af\u30bb\u30b9\u6a29\u9650\u306e\u9069\u5207\u306a\u8a2d\u5b9a<\/li>\n<\/ol>\n\n\n\n<p>\u3053\u306e\u3088\u3046\u306b\u3001\u74b0\u5883\u3084\u8981\u4ef6\u306b\u5fdc\u3058\u3066\u6700\u9069\u306astate\u7ba1\u7406\u65b9\u5f0f\u3092\u9078\u629e\u3059\u308b\u3053\u3068\u3067\u3001\u5b89\u5168\u3067\u52b9\u7387\u7684\u306aTerraform\u904b\u7528\u304c\u53ef\u80fd\u306b\u306a\u308a\u307e\u3059\u3002\u6b21\u306e\u30bb\u30af\u30b7\u30e7\u30f3\u3067\u306f\u3001\u3088\u308a\u5b9f\u8df5\u7684\u306astate\u7ba1\u7406\u30c6\u30af\u30cb\u30c3\u30af\u306b\u3064\u3044\u3066\u89e3\u8aac\u3057\u3066\u3044\u304d\u307e\u3059\u3002<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"i-7\">\u5b9f\u8df5\u7684\u306aTerraform State\u7ba1\u7406\u30c6\u30af\u30cb\u30c3\u30af<\/h2>\n\n\n\n<p>\u5b9f\u8df5\u7684\u306aTerraform\u904b\u7528\u306b\u304a\u3044\u3066\u3001state\u7ba1\u7406\u306f\u975e\u5e38\u306b\u91cd\u8981\u3067\u3059\u3002\u3053\u306e\u30bb\u30af\u30b7\u30e7\u30f3\u3067\u306f\u3001\u73fe\u5834\u3067\u5373\u5ea7\u306b\u6d3b\u7528\u3067\u304d\u308b\u5177\u4f53\u7684\u306a\u30c6\u30af\u30cb\u30c3\u30af\u3092\u89e3\u8aac\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-8\">state locking\u3092\u4f7f\u3063\u305f\u5b89\u5168\u306a\u540c\u6642\u5b9f\u884c\u5236\u5fa1<\/h3>\n\n\n\n<p>state locking\u306f\u3001\u8907\u6570\u306e\u30c1\u30fc\u30e0\u30e1\u30f3\u30d0\u30fc\u306b\u3088\u308b\u540c\u6642\u5909\u66f4\u3092\u9632\u3050\u91cd\u8981\u306a\u6a5f\u80fd\u3067\u3059\u3002<\/p>\n\n\n\n<p><strong>1. DynamoDB\u3092\u4f7f\u7528\u3057\u305f\u30ed\u30c3\u30af\u6a5f\u80fd\u306e\u5b9f\u88c5<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u30d0\u30c3\u30af\u30a8\u30f3\u30c9\u8a2d\u5b9a\nterraform {\n  backend \"s3\" {\n    bucket         = \"terraform-state-prod\"\n    key            = \"infrastructure\/terraform.tfstate\"\n    region         = \"ap-northeast-1\"\n    encrypt        = true\n    dynamodb_table = \"terraform-lock\"\n  }\n}\n\n# DynamoDB\u30c6\u30fc\u30d6\u30eb\u306e\u4f5c\u6210\nresource \"aws_dynamodb_table\" \"terraform_lock\" {\n  name           = \"terraform-lock\"\n  read_capacity  = 1\n  write_capacity = 1\n  hash_key       = \"LockID\"\n\n  attribute {\n    name = \"LockID\"\n    type = \"S\"\n  }\n\n  tags = {\n    Name = \"Terraform State Lock Table\"\n  }\n}<\/pre>\n\n\n\n<p><strong>2. \u30ed\u30c3\u30af\u72b6\u614b\u306e\u78ba\u8a8d\u3068\u89e3\u9664<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u30ed\u30c3\u30af\u72b6\u614b\u306e\u78ba\u8a8d\naws dynamodb get-item \\\n  --table-name terraform-lock \\\n  --key '{\"LockID\": {\"S\": \"terraform-state-prod\/infrastructure\/terraform.tfstate\"}}'\n\n# \u5f37\u5236\u7684\u306a\u30ed\u30c3\u30af\u89e3\u9664\uff08\u7dca\u6025\u6642\u306e\u307f\u4f7f\u7528\uff09\naws dynamodb delete-item \\\n  --table-name terraform-lock \\\n  --key '{\"LockID\": {\"S\": \"terraform-state-prod\/infrastructure\/terraform.tfstate\"}}'<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-9\">workspace\u3092\u6d3b\u7528\u3057\u305f\u52b9\u7387\u7684\u306a\u74b0\u5883\u5206\u96e2<\/h3>\n\n\n\n<p>workspace\u3092\u4f7f\u7528\u3059\u308b\u3053\u3068\u3067\u3001\u540c\u3058\u30b3\u30fc\u30c9\u30d9\u30fc\u30b9\u3067\u7570\u306a\u308b\u74b0\u5883\u3092\u7ba1\u7406\u3067\u304d\u307e\u3059\u3002<\/p>\n\n\n\n<p><strong>1. \u57fa\u672c\u7684\u306aworkspace\u64cd\u4f5c<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># workspace\u4e00\u89a7\u306e\u78ba\u8a8d\nterraform workspace list\n\n# \u65b0\u3057\u3044workspace\u306e\u4f5c\u6210\nterraform workspace new development\n\n# workspace\u5207\u308a\u66ff\u3048\nterraform workspace select production<\/pre>\n\n\n\n<p><strong>2. workspace\u5225\u306e\u8a2d\u5b9a\u7ba1\u7406<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u74b0\u5883\u5225\u306e\u5909\u6570\u5b9a\u7fa9\nlocals {\n  workspace_config = {\n    development = {\n      instance_type = \"t2.micro\"\n      instance_count = 1\n    }\n    staging = {\n      instance_type = \"t2.medium\"\n      instance_count = 2\n    }\n    production = {\n      instance_type = \"t2.large\"\n      instance_count = 3\n    }\n  }\n\n  # \u73fe\u5728\u306eworkspace\u306e\u8a2d\u5b9a\u3092\u53d6\u5f97\n  config = local.workspace_config[terraform.workspace]\n}\n\n# workspace\u306b\u57fa\u3065\u304f\u30ea\u30bd\u30fc\u30b9\u4f5c\u6210\nresource \"aws_instance\" \"app\" {\n  count         = local.config.instance_count\n  instance_type = local.config.instance_type\n\n  tags = {\n    Environment = terraform.workspace\n  }\n}<\/pre>\n\n\n\n<p><strong>3. workspace\u306e\u30d9\u30b9\u30c8\u30d7\u30e9\u30af\u30c6\u30a3\u30b9<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u74b0\u5883\u3054\u3068\u306b\u7570\u306a\u308b\u30d0\u30c3\u30af\u30a8\u30f3\u30c9\u3092\u4f7f\u7528<\/li>\n\n\n\n<li>\u547d\u540d\u898f\u5247\u306e\u7d71\u4e00<\/li>\n\n\n\n<li>\u30a2\u30af\u30bb\u30b9\u6a29\u9650\u306e\u9069\u5207\u306a\u8a2d\u5b9a<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-10\">\u30bb\u30ad\u30e5\u30a2\u306astate\u7ba1\u7406\u306e\u305f\u3081\u306e\u6697\u53f7\u5316\u8a2d\u5b9a<\/h3>\n\n\n\n<p>\u6a5f\u5bc6\u60c5\u5831\u3092\u542b\u3080state\u30d5\u30a1\u30a4\u30eb\u306e\u5b89\u5168\u306a\u7ba1\u7406\u65b9\u6cd5\u3092\u89e3\u8aac\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<p><strong>1. S3\u30d0\u30b1\u30c3\u30c8\u306e\u6697\u53f7\u5316\u8a2d\u5b9a<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u30d0\u30b1\u30c3\u30c8\u306e\u6697\u53f7\u5316\u8a2d\u5b9a\nresource \"aws_s3_bucket\" \"terraform_state\" {\n  bucket = \"terraform-state-prod\"\n\n  versioning {\n    enabled = true\n  }\n}\n\nresource \"aws_s3_bucket_server_side_encryption_configuration\" \"terraform_state\" {\n  bucket = aws_s3_bucket.terraform_state.id\n\n  rule {\n    apply_server_side_encryption_by_default {\n      sse_algorithm = \"aws:kms\"\n      kms_master_key_id = aws_kms_key.terraform_state.arn\n    }\n  }\n}\n\n# KMS\u30ad\u30fc\u306e\u4f5c\u6210\nresource \"aws_kms_key\" \"terraform_state\" {\n  description = \"Terraform State Encryption Key\"\n  deletion_window_in_days = 7\n  enable_key_rotation = true\n}<\/pre>\n\n\n\n<p><strong>2. \u6a5f\u5bc6\u60c5\u5831\u306e\u7ba1\u7406<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u6a5f\u5bc6\u5909\u6570\u306e\u5b9a\u7fa9\nvariable \"database_password\" {\n  type        = string\n  sensitive   = true  # \u51fa\u529b\u6642\u306b\u30de\u30b9\u30af\n}\n\n# \u6697\u53f7\u5316\u3055\u308c\u305f\u30b7\u30fc\u30af\u30ec\u30c3\u30c8\u306e\u4f7f\u7528\nresource \"aws_secretsmanager_secret\" \"database\" {\n  name = \"prod\/database\/password\"\n}\n\nresource \"aws_secretsmanager_secret_version\" \"database\" {\n  secret_id     = aws_secretsmanager_secret.database.id\n  secret_string = var.database_password\n}<\/pre>\n\n\n\n<p><strong>3. \u30a2\u30af\u30bb\u30b9\u5236\u5fa1\u306e\u5b9f\u88c5<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># S3\u30d0\u30b1\u30c3\u30c8\u30dd\u30ea\u30b7\u30fc\nresource \"aws_s3_bucket_policy\" \"terraform_state\" {\n  bucket = aws_s3_bucket.terraform_state.id\n\n  policy = jsonencode({\n    Version = \"2012-10-17\"\n    Statement = [\n      {\n        Sid    = \"EnforceTLS\"\n        Effect = \"Deny\"\n        Principal = \"*\"\n        Action = \"s3:*\"\n        Resource = [\n          aws_s3_bucket.terraform_state.arn,\n          \"${aws_s3_bucket.terraform_state.arn}\/*\"\n        ]\n        Condition = {\n          Bool = {\n            \"aws:SecureTransport\": \"false\"\n          }\n        }\n      }\n    ]\n  })\n}<\/pre>\n\n\n\n<p>\u3010\u5b9f\u8df5\u7684\u306aTips\u3011<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li>\u30ed\u30c3\u30af\u6a5f\u80fd\u306e\u76e3\u8996\u8a2d\u5b9a<\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u30ed\u30c3\u30af\u53d6\u5f97\u5931\u6557\u306e\u30a2\u30e9\u30fc\u30c8\u8a2d\u5b9a<\/li>\n\n\n\n<li>\u9577\u6642\u9593\u30ed\u30c3\u30af\u4fdd\u6301\u306e\u691c\u77e5<\/li>\n<\/ul>\n\n\n\n<ol class=\"wp-block-list\">\n<li>workspace\u904b\u7528\u306e\u30ac\u30a4\u30c9\u30e9\u30a4\u30f3<\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u74b0\u5883\u5225\u306e\u547d\u540d\u898f\u5247\u306e\u7d71\u4e00<\/li>\n\n\n\n<li>\u30a2\u30af\u30bb\u30b9\u6a29\u9650\u306e\u660e\u78ba\u5316<\/li>\n\n\n\n<li>\u5b9a\u671f\u7684\u306a\u30af\u30ea\u30fc\u30f3\u30a2\u30c3\u30d7<\/li>\n<\/ul>\n\n\n\n<ol class=\"wp-block-list\">\n<li>\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5f37\u5316\u7b56<\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u30a2\u30af\u30bb\u30b9\u30ed\u30b0\u306e\u6709\u52b9\u5316<\/li>\n\n\n\n<li>\u5b9a\u671f\u7684\u306a\u76e3\u67fb\u30ec\u30d3\u30e5\u30fc<\/li>\n\n\n\n<li>\u6697\u53f7\u5316\u30ad\u30fc\u306e\u30ed\u30fc\u30c6\u30fc\u30b7\u30e7\u30f3<\/li>\n<\/ul>\n\n\n\n<p>\u3053\u308c\u3089\u306e\u30c6\u30af\u30cb\u30c3\u30af\u3092\u9069\u5207\u306b\u7d44\u307f\u5408\u308f\u305b\u308b\u3053\u3068\u3067\u3001\u3088\u308a\u5b89\u5168\u3067\u52b9\u7387\u7684\u306aTerraform\u904b\u7528\u304c\u53ef\u80fd\u306b\u306a\u308a\u307e\u3059\u3002\u6b21\u306e\u30bb\u30af\u30b7\u30e7\u30f3\u3067\u306f\u3001\u30c1\u30fc\u30e0\u958b\u767a\u306b\u304a\u3051\u308b\u5177\u4f53\u7684\u306a\u30d9\u30b9\u30c8\u30d7\u30e9\u30af\u30c6\u30a3\u30b9\u306b\u3064\u3044\u3066\u89e3\u8aac\u3057\u3066\u3044\u304d\u307e\u3059\u3002<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"i-11\">\u30c1\u30fc\u30e0\u958b\u767a\u306b\u304a\u3051\u308bTerraform State\u7ba1\u7406\u306e\u30d9\u30b9\u30c8\u30d7\u30e9\u30af\u30c6\u30a3\u30b9<\/h2>\n\n\n\n<p>\u30c1\u30fc\u30e0\u958b\u767a\u74b0\u5883\u3067\u306eTerraform\u904b\u7528\u3067\u306f\u3001\u5358\u306a\u308b\u6280\u8853\u7684\u306a\u77e5\u8b58\u3060\u3051\u3067\u306a\u304f\u3001\u30c1\u30fc\u30e0\u306e\u958b\u767a\u30d7\u30ed\u30bb\u30b9\u3084\u7d44\u7e54\u306e\u8981\u4ef6\u306b\u5408\u308f\u305b\u305f\u9069\u5207\u306a\u7ba1\u7406\u65b9\u6cd5\u304c\u5fc5\u8981\u3067\u3059\u3002\u3053\u306e\u30bb\u30af\u30b7\u30e7\u30f3\u3067\u306f\u3001\u5b9f\u8df5\u7684\u306a\u30c1\u30fc\u30e0\u958b\u767a\u306e\u30d9\u30b9\u30c8\u30d7\u30e9\u30af\u30c6\u30a3\u30b9\u3092\u89e3\u8aac\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-12\">GitOps\u306b\u57fa\u3065\u3044\u305fstate\u7ba1\u7406\u30d5\u30ed\u30fc<\/h3>\n\n\n\n<p>GitOps\u306e\u539f\u5247\u306b\u57fa\u3065\u3044\u305fTerraform state\u7ba1\u7406\u306b\u3088\u308a\u3001\u5909\u66f4\u306e\u8ffd\u8de1\u6027\u3068\u5b89\u5168\u6027\u3092\u78ba\u4fdd\u3067\u304d\u307e\u3059\u3002<\/p>\n\n\n\n<p><strong>1. \u30d6\u30e9\u30f3\u30c1\u6226\u7565\u306e\u8a2d\u8a08<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">main\n\u251c\u2500\u2500 staging\n\u2502   \u251c\u2500\u2500 feature\/new-vpc\n\u2502   \u2514\u2500\u2500 feature\/update-security-groups\n\u2514\u2500\u2500 production\n    \u251c\u2500\u2500 hotfix\/security-patch\n    \u2514\u2500\u2500 release\/v1.2.0<\/pre>\n\n\n\n<p><strong>2. CI\u30d1\u30a4\u30d7\u30e9\u30a4\u30f3\u306e\u5b9f\u88c5\u4f8b<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># .github\/workflows\/terraform.yml\nname: 'Terraform CI'\n\non:\n  pull_request:\n    branches: [ main, staging, production ]\n\njobs:\n  terraform:\n    runs-on: ubuntu-latest\n    steps:\n    - uses: actions\/checkout@v2\n\n    - name: Setup Terraform\n      uses: hashicorp\/setup-terraform@v1\n\n    - name: Terraform Init\n      run: terraform init\n      env:\n        AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}\n        AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}\n\n    - name: Terraform Format\n      run: terraform fmt -check\n\n    - name: Terraform Plan\n      run: terraform plan\n      env:\n        AWS_ACCESS_KEY_ID: ${{ secrets.AWS_ACCESS_KEY_ID }}\n        AWS_SECRET_ACCESS_KEY: ${{ secrets.AWS_SECRET_ACCESS_KEY }}<\/pre>\n\n\n\n<p><strong>3. \u30ec\u30d3\u30e5\u30fc\u30d7\u30ed\u30bb\u30b9\u306e\u81ea\u52d5\u5316<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># pre-commit\u8a2d\u5b9a\u4f8b\nrepos:\n- repo: https:\/\/github.com\/antonbabenko\/pre-commit-terraform\n  rev: v1.50.0\n  hooks:\n    - id: terraform_fmt\n    - id: terraform_docs\n    - id: terraform_tflint\n    - id: terraform_validate<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-13\">\u30d0\u30c3\u30af\u30a8\u30f3\u30c9\u306e\u5171\u6709\u8a2d\u5b9a\u3068\u30a2\u30af\u30bb\u30b9\u5236\u5fa1<\/h3>\n\n\n\n<p>\u30c1\u30fc\u30e0\u3067\u306e\u5171\u6709\u30d0\u30c3\u30af\u30a8\u30f3\u30c9\u8a2d\u5b9a\u3068\u9069\u5207\u306a\u30a2\u30af\u30bb\u30b9\u5236\u5fa1\u306e\u5b9f\u88c5\u65b9\u6cd5\u3092\u89e3\u8aac\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<p><strong>1. \u74b0\u5883\u5225\u306e\u30d0\u30c3\u30af\u30a8\u30f3\u30c9\u8a2d\u5b9a<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># backend.tf\nterraform {\n  backend \"s3\" {\n    bucket         = \"company-terraform-state\"\n    key            = \"environment\/${terraform.workspace}\/infrastructure.tfstate\"\n    region         = \"ap-northeast-1\"\n    encrypt        = true\n    dynamodb_table = \"terraform-lock\"\n\n    # \u30ed\u30fc\u30eb\u30d9\u30fc\u30b9\u306e\u30a2\u30af\u30bb\u30b9\u5236\u5fa1\n    role_arn       = \"arn:aws:iam::123456789012:role\/TerraformStateManager\"\n  }\n}<\/pre>\n\n\n\n<p><strong>2. IAM\u30dd\u30ea\u30b7\u30fc\u306e\u8a2d\u5b9a<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u958b\u767a\u8005\u7528\u306eIAM\u30dd\u30ea\u30b7\u30fc\nresource \"aws_iam_policy\" \"terraform_developer\" {\n  name = \"terraform-developer-policy\"\n\n  policy = jsonencode({\n    Version = \"2012-10-17\"\n    Statement = [\n      {\n        Effect = \"Allow\"\n        Action = [\n          \"s3:ListBucket\",\n          \"s3:GetObject\",\n          \"s3:PutObject\"\n        ]\n        Resource = [\n          aws_s3_bucket.terraform_state.arn,\n          \"${aws_s3_bucket.terraform_state.arn}\/*\"\n        ]\n        Condition = {\n          StringLike = {\n            \"s3:prefix\": [\"development\/*\", \"staging\/*\"]\n          }\n        }\n      }\n    ]\n  })\n}<\/pre>\n\n\n\n<p><strong>3. \u76e3\u67fb\u30ed\u30b0\u306e\u8a2d\u5b9a<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># S3\u30d0\u30b1\u30c3\u30c8\u306e\u76e3\u67fb\u30ed\u30b0\u8a2d\u5b9a\nresource \"aws_s3_bucket\" \"terraform_state_logs\" {\n  bucket = \"terraform-state-audit-logs\"\n}\n\nresource \"aws_s3_bucket_logging\" \"terraform_state\" {\n  bucket = aws_s3_bucket.terraform_state.id\n\n  target_bucket = aws_s3_bucket.terraform_state_logs.id\n  target_prefix = \"state-access-logs\/\"\n}<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-14\">\u5927\u898f\u6a21\u30c1\u30fc\u30e0\u3067\u306estate\u5206\u5272\u6226\u7565<\/h3>\n\n\n\n<p>\u5927\u898f\u6a21\u30c1\u30fc\u30e0\u3067\u306f\u3001\u9069\u5207\u306astate\u5206\u5272\u304c\u91cd\u8981\u3067\u3059\u3002<\/p>\n\n\n\n<p><strong>1. \u6a5f\u80fd\u5225\u306e\u5206\u5272\u4f8b<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">terraform\/\n\u251c\u2500\u2500 networking\/\n\u2502   \u251c\u2500\u2500 vpc.tf\n\u2502   \u251c\u2500\u2500 subnets.tf\n\u2502   \u2514\u2500\u2500 backend.tf\n\u251c\u2500\u2500 compute\/\n\u2502   \u251c\u2500\u2500 ec2.tf\n\u2502   \u251c\u2500\u2500 auto_scaling.tf\n\u2502   \u2514\u2500\u2500 backend.tf\n\u2514\u2500\u2500 database\/\n    \u251c\u2500\u2500 rds.tf\n    \u251c\u2500\u2500 dynamodb.tf\n    \u2514\u2500\u2500 backend.tf<\/pre>\n\n\n\n<p><strong>2. \u4f9d\u5b58\u95a2\u4fc2\u306e\u7ba1\u7406<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u30c7\u30fc\u30bf\u30bd\u30fc\u30b9\u3092\u4f7f\u7528\u3057\u305f\u4ed6\u306estate\u306e\u53c2\u7167\ndata \"terraform_remote_state\" \"network\" {\n  backend = \"s3\"\n  config = {\n    bucket = \"company-terraform-state\"\n    key    = \"networking\/terraform.tfstate\"\n    region = \"ap-northeast-1\"\n  }\n}\n\n# VPC ID\u306e\u53c2\u7167\u4f8b\nresource \"aws_instance\" \"app\" {\n  subnet_id = data.terraform_remote_state.network.outputs.private_subnet_ids[0]\n  # \u305d\u306e\u4ed6\u306e\u8a2d\u5b9a...\n}<\/pre>\n\n\n\n<p><strong>3. \u51fa\u529b\u306e\u6a19\u6e96\u5316<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># outputs.tf\noutput \"vpc_id\" {\n  description = \"VPC ID for reference by other states\"\n  value       = aws_vpc.main.id\n}\n\noutput \"private_subnet_ids\" {\n  description = \"Private subnet IDs for reference by other states\"\n  value       = aws_subnet.private[*].id\n}<\/pre>\n\n\n\n<p>\u3010\u5b9f\u8df5\u7684\u306a\u30ef\u30fc\u30af\u30d5\u30ed\u30fc\u4f8b\u3011<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li>\u5909\u66f4\u306e\u30e9\u30a4\u30d5\u30b5\u30a4\u30af\u30eb<\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u30d6\u30e9\u30f3\u30c1\u4f5c\u6210<\/li>\n\n\n\n<li>\u30ed\u30fc\u30ab\u30eb\u3067\u306e\u5909\u66f4\u3068\u30c6\u30b9\u30c8<\/li>\n\n\n\n<li>PR\u306e\u4f5c\u6210<\/li>\n\n\n\n<li>\u81ea\u52d5\u30c6\u30b9\u30c8\u306e\u5b9f\u884c<\/li>\n\n\n\n<li>\u30b3\u30fc\u30c9\u30ec\u30d3\u30e5\u30fc<\/li>\n\n\n\n<li>\u30b9\u30c6\u30fc\u30b8\u30f3\u30b0\u74b0\u5883\u3078\u306e\u9069\u7528<\/li>\n\n\n\n<li>\u672c\u756a\u74b0\u5883\u3078\u306e\u9069\u7528<\/li>\n<\/ul>\n\n\n\n<ol class=\"wp-block-list\">\n<li>\u7dca\u6025\u6642\u306e\u5bfe\u5fdc\u30d5\u30ed\u30fc<\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u30db\u30c3\u30c8\u30d5\u30a3\u30c3\u30af\u30b9\u30d6\u30e9\u30f3\u30c1\u306e\u4f5c\u6210<\/li>\n\n\n\n<li>\u7dca\u6025\u5909\u66f4\u306e\u9069\u7528<\/li>\n\n\n\n<li>\u4e8b\u5f8c\u30ec\u30d3\u30e5\u30fc\u306e\u5b9f\u65bd<\/li>\n\n\n\n<li>\u672c\u6d41\u3078\u306e\u53cd\u6620<\/li>\n<\/ul>\n\n\n\n<ol class=\"wp-block-list\">\n<li>\u30b3\u30df\u30e5\u30cb\u30b1\u30fc\u30b7\u30e7\u30f3\u30ac\u30a4\u30c9\u30e9\u30a4\u30f3<\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u5909\u66f4\u524d\u306e\u5468\u77e5<\/li>\n\n\n\n<li>\u30ec\u30d3\u30e5\u30fc\u4f9d\u983c\u306e\u6a19\u6e96\u5316<\/li>\n\n\n\n<li>\u9069\u7528\u7d50\u679c\u306e\u5831\u544a<\/li>\n\n\n\n<li>\u30c8\u30e9\u30d6\u30eb\u6642\u306e\u9023\u7d61\u4f53\u5236<\/li>\n<\/ul>\n\n\n\n<p>\u3053\u308c\u3089\u306e\u30d9\u30b9\u30c8\u30d7\u30e9\u30af\u30c6\u30a3\u30b9\u3092\u7d44\u7e54\u306e\u72b6\u6cc1\u306b\u5408\u308f\u305b\u3066\u9069\u7528\u3059\u308b\u3053\u3068\u3067\u3001\u52b9\u7387\u7684\u3067\u5b89\u5168\u306a\u30c1\u30fc\u30e0\u958b\u767a\u304c\u5b9f\u73fe\u3067\u304d\u307e\u3059\u3002\u6b21\u306e\u30bb\u30af\u30b7\u30e7\u30f3\u3067\u306f\u3001\u5b9f\u969b\u306e\u30c8\u30e9\u30d6\u30eb\u30b7\u30e5\u30fc\u30c6\u30a3\u30f3\u30b0\u624b\u6cd5\u306b\u3064\u3044\u3066\u89e3\u8aac\u3057\u3066\u3044\u304d\u307e\u3059\u3002<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"i-15\">Terraform State\u7ba1\u7406\u306e\u30c8\u30e9\u30d6\u30eb\u30b7\u30e5\u30fc\u30c6\u30a3\u30f3\u30b0\u5b8c\u5168\u30ac\u30a4\u30c9<\/h2>\n\n\n\n<p>Terraform State\u306b\u95a2\u3059\u308b\u30c8\u30e9\u30d6\u30eb\u306f\u3001\u30a4\u30f3\u30d5\u30e9\u904b\u7528\u306b\u304a\u3051\u308b\u91cd\u5927\u306a\u554f\u984c\u306b\u3064\u306a\u304c\u308b\u53ef\u80fd\u6027\u304c\u3042\u308a\u307e\u3059\u3002\u3053\u306e\u30bb\u30af\u30b7\u30e7\u30f3\u3067\u306f\u3001\u4e00\u822c\u7684\u306a\u30c8\u30e9\u30d6\u30eb\u306e\u89e3\u6c7a\u65b9\u6cd5\u3068\u3001\u554f\u984c\u3092\u672a\u7136\u306b\u9632\u3050\u305f\u3081\u306e\u65b9\u6cd5\u3092\u89e3\u8aac\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-16\">state\u30d5\u30a1\u30a4\u30eb\u306e\u7834\u640d\u6642\u306e\u5fa9\u65e7\u624b\u9806<\/h3>\n\n\n\n<p>state\u30d5\u30a1\u30a4\u30eb\u304c\u7834\u640d\u3057\u305f\u5834\u5408\u306e\u5bfe\u51e6\u65b9\u6cd5\u3092\u3001\u30b9\u30c6\u30c3\u30d7\u30d0\u30a4\u30b9\u30c6\u30c3\u30d7\u3067\u89e3\u8aac\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<p><strong>1. \u30d0\u30c3\u30af\u30a2\u30c3\u30d7\u304b\u3089\u306e\u5fa9\u65e7<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># S3\u30d0\u30fc\u30b8\u30e7\u30cb\u30f3\u30b0\u304c\u6709\u52b9\u306a\u5834\u5408\u306e\u904e\u53bb\u30d0\u30fc\u30b8\u30e7\u30f3\u53d6\u5f97\naws s3api list-object-versions \\\n    --bucket terraform-state-bucket \\\n    --prefix path\/to\/terraform.tfstate\n\n# \u7279\u5b9a\u30d0\u30fc\u30b8\u30e7\u30f3\u306e\u5fa9\u5143\naws s3api get-object \\\n    --bucket terraform-state-bucket \\\n    --key path\/to\/terraform.tfstate \\\n    --version-id \"version-id\" \\\n    terraform.tfstate.backup<\/pre>\n\n\n\n<p><strong>2. \u624b\u52d5\u3067\u306e\u72b6\u614b\u4fee\u5fa9<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u72b6\u614b\u306e\u78ba\u8a8d\nterraform show\n\n# \u7279\u5b9a\u30ea\u30bd\u30fc\u30b9\u306e\u518d\u30a4\u30f3\u30dd\u30fc\u30c8\nterraform import aws_instance.example i-1234567890abcdef0\n\n# \u72b6\u614b\u306e\u66f4\u65b0\nterraform refresh<\/pre>\n\n\n\n<p><strong>3. \u30af\u30e9\u30a6\u30c9\u30b3\u30f3\u30bd\u30fc\u30eb\u3068\u306e\u7167\u5408\u30b9\u30af\u30ea\u30d7\u30c8<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">#!\/usr\/bin\/env python3\nimport boto3\nimport json\n\ndef compare_state_with_aws():\n    # Terraform\u306estate\u8aad\u307f\u8fbc\u307f\n    with open('terraform.tfstate', 'r') as f:\n        state = json.load(f)\n\n    # AWS\u30ea\u30bd\u30fc\u30b9\u3068\u306e\u7167\u5408\n    ec2 = boto3.client('ec2')\n    instances = ec2.describe_instances()\n\n    # \u5dee\u5206\u30c1\u30a7\u30c3\u30af\n    for resource in state['resources']:\n        if resource['type'] == 'aws_instance':\n            # \u30a4\u30f3\u30b9\u30bf\u30f3\u30b9\u306e\u5b58\u5728\u78ba\u8a8d\n            instance_id = resource['instances'][0]['attributes']['id']\n            try:\n                ec2.describe_instances(InstanceIds=[instance_id])\n                print(f\"Instance {instance_id} exists\")\n            except:\n                print(f\"Instance {instance_id} not found\")<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-17\">state\u9593\u306e\u4e0d\u6574\u5408\u89e3\u6d88\u30c6\u30af\u30cb\u30c3\u30af<\/h3>\n\n\n\n<p>\u8907\u6570\u306e\u74b0\u5883\u3084\u30c1\u30fc\u30e0\u9593\u3067state\u4e0d\u6574\u5408\u304c\u767a\u751f\u3057\u305f\u5834\u5408\u306e\u89e3\u6c7a\u65b9\u6cd5\u3067\u3059\u3002<\/p>\n\n\n\n<p><strong>1. \u4e0d\u6574\u5408\u306e\u691c\u51fa<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># terraform.tf\nterraform {\n  required_version = \"&gt;= 1.0.0\"\n\n  backend \"s3\" {\n    bucket         = \"terraform-state\"\n    key            = \"environment\/production.tfstate\"\n    region         = \"ap-northeast-1\"\n    dynamodb_table = \"terraform-lock\"\n  }\n}\n\n# \u4e0d\u6574\u5408\u30c1\u30a7\u30c3\u30af\u30b9\u30af\u30ea\u30d7\u30c8\nresource \"null_resource\" \"state_validator\" {\n  provisioner \"local-exec\" {\n    command = &lt;&lt;EOF\n      terraform show -json | \\\n      jq -r '.values.root_module.resources[] | select(.type == \"aws_instance\") | .values.id' | \\\n      while read id; do\n        aws ec2 describe-instances --instance-ids $id || echo \"Instance $id not found\"\n      done\n    EOF\n  }\n}<\/pre>\n\n\n\n<p><strong>2. \u5f37\u5236\u7684\u306a\u72b6\u614b\u66f4\u65b0<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u7279\u5b9a\u30ea\u30bd\u30fc\u30b9\u306e\u72b6\u614b\u524a\u9664\nterraform state rm aws_instance.example\n\n# \u5168\u72b6\u614b\u306e\u66f4\u65b0\nterraform apply -refresh-only\n\n# \u30ea\u30bd\u30fc\u30b9\u306e\u518d\u30a4\u30f3\u30dd\u30fc\u30c8\nterraform import aws_instance.example i-1234567890abcdef0<\/pre>\n\n\n\n<p><strong>3. \u7af6\u5408\u89e3\u6c7a\u306e\u624b\u9806<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u30ed\u30c3\u30af\u306e\u5f37\u5236\u89e3\u9664\uff08\u7dca\u6025\u6642\u306e\u307f\uff09\nterraform force-unlock LOCK_ID\n\n# \u72b6\u614b\u306e\u30d0\u30c3\u30af\u30a2\u30c3\u30d7\ncp terraform.tfstate terraform.tfstate.backup\n\n# \u90e8\u5206\u7684\u306a\u72b6\u614b\u306e\u66f4\u65b0\nterraform apply -target=aws_instance.example<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-18\">\u30d1\u30d5\u30a9\u30fc\u30de\u30f3\u30b9\u6539\u5584\u306e\u305f\u3081\u306estate\u6700\u9069\u5316<\/h3>\n\n\n\n<p>\u5927\u898f\u6a21\u306a\u74b0\u5883\u3067\u306estate\u7ba1\u7406\u30d1\u30d5\u30a9\u30fc\u30de\u30f3\u30b9\u3092\u6539\u5584\u3059\u308b\u65b9\u6cd5\u3092\u89e3\u8aac\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<p><strong>1. state\u5206\u5272\u306e\u6700\u9069\u5316<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u74b0\u5883\u5225\u306estate\u8a2d\u5b9a\nterraform {\n  backend \"s3\" {\n    bucket = \"terraform-state\"\n    key    = \"${local.environment}\/${local.component}.tfstate\"\n    region = \"ap-northeast-1\"\n  }\n}\n\nlocals {\n  environment = terraform.workspace\n  component   = \"networking\"  # \u307e\u305f\u306f \"compute\", \"database\" \u306a\u3069\n}<\/pre>\n\n\n\n<p><strong>2. \u30ad\u30e3\u30c3\u30b7\u30e5\u306e\u6d3b\u7528<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># \u30ed\u30fc\u30ab\u30eb\u30ad\u30e3\u30c3\u30b7\u30e5\u306e\u8a2d\u5b9a\nexport TF_PLUGIN_CACHE_DIR=\"$HOME\/.terraform.d\/plugin-cache\"\n\n# \u30ad\u30e3\u30c3\u30b7\u30e5\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u306e\u4f5c\u6210\nmkdir -p $TF_PLUGIN_CACHE_DIR<\/pre>\n\n\n\n<p><strong>3. \u30d1\u30d5\u30a9\u30fc\u30de\u30f3\u30b9\u30e2\u30cb\u30bf\u30ea\u30f3\u30b0<\/strong><\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\"># CloudWatch\u30e1\u30c8\u30ea\u30af\u30b9\u8a2d\u5b9a\nresource \"aws_cloudwatch_metric_alarm\" \"terraform_state_size\" {\n  alarm_name          = \"terraform-state-size\"\n  comparison_operator = \"GreaterThanThreshold\"\n  evaluation_periods  = \"1\"\n  metric_name         = \"BucketSizeBytes\"\n  namespace           = \"AWS\/S3\"\n  period              = \"86400\"\n  statistic           = \"Average\"\n  threshold           = \"5000000\"  # 5MB\n\n  dimensions = {\n    BucketName = aws_s3_bucket.terraform_state.id\n  }\n}<\/pre>\n\n\n\n<p>\u3010\u30c8\u30e9\u30d6\u30eb\u30b7\u30e5\u30fc\u30c6\u30a3\u30f3\u30b0\u306e\u30d9\u30b9\u30c8\u30d7\u30e9\u30af\u30c6\u30a3\u30b9\u3011<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li>\u4e88\u9632\u7684\u5bfe\u7b56<\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u5b9a\u671f\u7684\u306a\u30d0\u30c3\u30af\u30a2\u30c3\u30d7\u78ba\u8a8d<\/li>\n\n\n\n<li>\u72b6\u614b\u691c\u8a3c\u306e\u81ea\u52d5\u5316<\/li>\n\n\n\n<li>\u30a2\u30af\u30bb\u30b9\u30ed\u30b0\u306e\u76e3\u8996<\/li>\n\n\n\n<li>\u30d1\u30d5\u30a9\u30fc\u30de\u30f3\u30b9\u30e1\u30c8\u30ea\u30af\u30b9\u306e\u53ce\u96c6<\/li>\n<\/ul>\n\n\n\n<ol class=\"wp-block-list\">\n<li>\u30a4\u30f3\u30b7\u30c7\u30f3\u30c8\u5bfe\u5fdc\u624b\u9806<\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u554f\u984c\u306e\u5207\u308a\u5206\u3051<\/li>\n\n\n\n<li>\u5f71\u97ff\u7bc4\u56f2\u306e\u7279\u5b9a<\/li>\n\n\n\n<li>\u4e00\u6642\u5bfe\u5fdc\u3068\u6052\u4e45\u5bfe\u5fdc\u306e\u533a\u5225<\/li>\n\n\n\n<li>\u518d\u767a\u9632\u6b62\u7b56\u306e\u5b9f\u65bd<\/li>\n<\/ul>\n\n\n\n<ol class=\"wp-block-list\">\n<li>\u30c9\u30ad\u30e5\u30e1\u30f3\u30c8\u6574\u5099<\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u30c8\u30e9\u30d6\u30eb\u4e8b\u4f8b\u306e\u30ca\u30ec\u30c3\u30b8\u30d9\u30fc\u30b9\u5316<\/li>\n\n\n\n<li>\u5fa9\u65e7\u624b\u9806\u306e\u6587\u66f8\u5316<\/li>\n\n\n\n<li>\u30c1\u30a7\u30c3\u30af\u30ea\u30b9\u30c8\u306e\u4f5c\u6210<\/li>\n\n\n\n<li>\u30ec\u30d3\u30e5\u30fc\u30fb\u66f4\u65b0\u30d7\u30ed\u30bb\u30b9\u306e\u78ba\u7acb<\/li>\n<\/ul>\n\n\n\n<p>\u3053\u308c\u3089\u306e\u30c8\u30e9\u30d6\u30eb\u30b7\u30e5\u30fc\u30c6\u30a3\u30f3\u30b0\u624b\u6cd5\u3092\u7406\u89e3\u3057\u3001\u9069\u5207\u306b\u5b9f\u8df5\u3059\u308b\u3053\u3068\u3067\u3001Terraform\u3092\u4f7f\u7528\u3057\u305f\u30a4\u30f3\u30d5\u30e9\u7ba1\u7406\u3092\u3088\u308a\u5b89\u5b9a\u7684\u306b\u904b\u7528\u3059\u308b\u3053\u3068\u304c\u3067\u304d\u307e\u3059\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Warning: Undefined array key &#8220;is_admin&#8221; in \/home\/xs392991\/dexall.co.jp\/public_html\/articles\/wp-content\/themes\/ &#8230; <\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[8],"tags":[],"class_list":{"0":"post-2354","1":"post","2":"type-post","3":"status-publish","4":"format-standard","6":"category-aws","7":"nothumb"},"_links":{"self":[{"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=\/wp\/v2\/posts\/2354","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2354"}],"version-history":[{"count":1,"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=\/wp\/v2\/posts\/2354\/revisions"}],"predecessor-version":[{"id":2355,"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=\/wp\/v2\/posts\/2354\/revisions\/2355"}],"wp:attachment":[{"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2354"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2354"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2354"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}