Getting Started

Docs

Intro
Install
- Gem
- Standalone
  - MacOSX
  - CentOS
  - Ubuntu
  - Details
- Docker
  - AWS
  - Azure
  - Google
- Dependencies
- Terraform
- Ruby
Config
- App
- Backend
  - Variables
  - DSL
- Provider
- Tfvars
- Locals
- Terraform
- Args
  - Terraform
  - Generator
- Hooks
  - Terraform
  - Terraspace
  - Ruby
  - Generator
- Reference
Generators
- Project
- Module
- Stack
- Cheatsheet
Tfvars & Layering
- Seed
- Layering
- Full Layering
- Dynamic
- Instance Option
- Lookups
Dependency Graphs
Terrafile
- Usage
- Options
  - Stack
- Version Locking
Helpers
- Built-In
- AWS
  - Secrets
  - SSM
- Azure
  - Secrets
- Google
  - Secrets
- Custom
  - Project
  - Stack
  - Module
  - Generator
State File
Cloud
- Login
- Workflows
  - CLI
  - VCS
    - Setup
    - Adjust
    - Connect
- Backend
- Config
- Vars
  - JSON
  - DSL
- Naming
Testing
- Test Harness
- Module
- Stack
- Project
- Generator
- CI/CD Automation
Plugins
- AWS
- Azure
- Google
Patterns
- Different Versions
- Multiple Environments
Lookup Paths
DSL
Misc
Support
Next Steps
- Contributing
- Conduct
CLI Reference

Google Secrets

The google_secret helper fetches secret data from Google Secrets Manager.

Example

app/stacks/demo/tfvars/dev.tfvars

user = "<%= google_secret("demo-#{Terraspace.env}-user") %>"
pass = "<%= google_secret("demo-#{Terraspace.env}-pass") %>"

For example if you have these secret values:

$ gcloud secrets versions access latest --secret demo-dev-pass
bob
$ gcloud secrets versions access latest --secret demo-dev-user
test

.terraspace-cache/us-west-2/dev/stacks/demo/01-dev.auto.tfvars

user = "bob"
pass = "test"