Cloud run tasks (post-plan only) CLI integration #30141
Conversation
chrisarcand
added
the
cloud
brandonc
force-pushed
the
preapply-runtasks-clioutput
branch
from
57bd873
to
5ef0bfb
Compare
brandonc
changed the title
internal/cloud/backend_runTasks.go
Outdated
| type taskStageReadFunc func(b *Cloud, stopCtx context.Context) (*tfe.TaskStage, error) | ||
|
|
||
| func summarizeTaskResults(taskResults []*tfe.TaskResult) *taskResultSummary { | ||
| var pe, er, erm, pa int |
There was a problem hiding this comment.
I like to error on the side of more descriptive variable names. pa appears to be the count of tasks that are passed, so perhaps passedCount. This is not a deal-breaker for the PR, though.
There was a problem hiding this comment.
Yes, I totally agree with this change. I guess I was trying to stick a bit to the "Go way" of naming variable, which usually is one letter or very few letters (like "p", "ret", "r", more on that topic: https://blog.devgenius.io/write-better-go-code-by-keeping-your-variable-names-short-13f404ac515c), which I actually find a bit annoying because, like you, I prefer descriptive names. Also, I have noticed that this project does not care much for that type of naming conventions, so I think is best for me to stay away from single letters :) @barrettclark
There was a problem hiding this comment.
It's wild to me that the Go way would favor terse over descriptive variables. When future me drops into old code and see something like xzz I have to spend more time trying to remember what the heck that means and why. I will try to not swim against the current if our style guide favors brevity, but very much appreciate more verbose and meaningful names in the meantime. Thank you for making this change.
go.mod
Outdated
| @@ -41,7 +41,7 @@ require ( | |||
| github.com/hashicorp/go-multierror v1.1.1 | |||
| github.com/hashicorp/go-plugin v1.4.3 | |||
| github.com/hashicorp/go-retryablehttp v0.7.0 | |||
| github.com/hashicorp/go-tfe v0.21.0 | |||
| github.com/hashicorp/go-tfe v0.20.1-0.20211215223223-3057a43c4f5c | |||
There was a problem hiding this comment.
Just a gut-check -- are we thinking to wait to merge this PR until the go-tfe changes have merged? Or will we treat this more like the run-up to 1.1.0, when we were building against a WIP branch for a while?
If it's the latter, we should probably rebase the WIP branch and make sure we don't lose any features compared to what were previously at. It looks like with the current status, we might lose run variables?
There was a problem hiding this comment.
We need to have a slightly better process I think for pre-release go-tfe. I think we are going to wait on the go-tfe merge and depend directly on a branch until the next release of terraform that includes run tasks, similar to what we did in the run up to 1.1. Reason being, we want to make sure the API doesn't shift before releasing in go-tfe. This shouldn't compile if run variables weren't in the base, so it must be based on a run variables pre-release. I take your point and will make sure to rebase this to v0.22.0.
|
Updated go-tfe (using branch run-tasks-integration) |
| // fetching task_stages. | ||
| if strings.HasSuffix(err.Error(), "Invalid include parameter") { | ||
| r, err = b.client.Runs.Read(stopCtx, runID) | ||
| } |
There was a problem hiding this comment.
This feels brittle to me. Although it's not ideal, the 'proper' way to do this would be to use the TFP-API-Version header information (exposed in the client here) to conditionally make a single request if the host (TFC or TFE) supports the necessary API version for it; the same as any other addition we've made in the past.
There was a problem hiding this comment.
That is my intention! Once this is merged I can supplant the next version with run tasks. Feels bad though because I know run tasks will squat on that version for a long time. https://github.com/hashicorp/atlas/pull/11572
There was a problem hiding this comment.
If we hit line 335, and err is nil, and TFE or TFC have Run Tasks defined for that workspace, then the CLI would not display anything about run tasks' results but the platform would still show run tasks' results, which is the discrepancy/problem we were trying to solve to begin with. I wasn't sure if that's the behavior we want, but I want to bring that up just in case. I understand these changes are temporary. @brandonc @chrisarcand
There was a problem hiding this comment.
If we hit line 335, run tasks won't be defined for the workspace because we'll be working against a version of TFE that doesn't support them -- that's what "invalid include parameter" would indicate... But it's not a great feature detection strategy and I'd like to rely on the API version instead.
sebasslash
changed the title
internal/cloud/backend_plan.go
Outdated
| @@ -335,6 +346,22 @@ in order to capture the filesystem context the remote workspace expects: | |||
| // status of the run will be "errored", but there is still policy | |||
| // information which should be shown. | |||
|
|
|||
| // Await pre-apply run tasks | |||
There was a problem hiding this comment.
| // Await pre-apply run tasks | |
| // Await post-plan run tasks |
😄
sebasslash
force-pushed
the
preapply-runtasks-clioutput
branch
from
307a904
to
10c5a0d
Compare
This change will await the completion of pre-apply run tasks if they exist on a run and then report the results. It also adds an abstraction when interacting with cloud integrations such as policy checking and cost estimation that simplify and unify output, although I did not go so far as to refactor those callers to use it yet.
…t previously was incorrectly named TaskStage
go-tfe is pinned to branch run-tasks-integration pending API changes until run tasks support in the CLI is closer to release
Older versions of TFE will not allow "task_stages" as an include parameter. In this case, fall back to reading the Run without additional options.
This commit stems from the change to make post plan the default run task stage, at the time of this commit's writing! Since pre apply is under internal revision, we have removed the block that polls the pre apply stage until the team decides to re-add support for pre apply run tasks.
sebasslash
force-pushed
the
preapply-runtasks-clioutput
branch
from
10c5a0d
to
52c5f9f
Compare
|
Reminder for the merging maintainer: if this is a user-visible change, please update the changelog on the appropriate release branch. |
|
I'm going to lock this pull request because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active contributions. |
Integration with Terraform Cloud Run Tasks (post-plan stage). Run tasks is a beta feature implemented on Terraform Cloud that will display results after a plan like so:
These results are currently not being displayed or consumed by Terraform CLI, so with this PR (as well as some changes made to go-tfe hashicorp/go-tfe#286), is implementing the necessary changes to display the output of Run Tasks' result in the CLI:
IMPLEMENTATION
All changes in this PR are being applied through the
op.planbecause we want the user to see results of Run Tasks after a plan has found changes to infrastructure and right before the apply operation (so what we call thepre-applystage).These changes are also scope to the
cloudpackage. This is to be determined, but we think that the CLI will not offer support for Run Tasks prior to version 1.2This PR also adds an abstraction when interacting with Cloud Integrations such as Run Tasks, Policy Checks and Cost estimation. The abstraction is not yet applied to Policy Checks and Cost Estimation. But if we were to use it for all three Cloud Integrations, it would simplify and unify output during the pre-apply stage.
TESTING
http://54.167.177.151/success
http://54.167.177.151/failed
http://54.167.177.151/success?timeout=630 to force a timeout. But you can change the value of timeout to as many seconds you want the server to wait before firing off the webhook back to TFC
cloudconfig./terraform applyto see Run Tasks output right after Cost Estimation output. If you have no tasks added to your workspace in the platform, you should see no output related to Run Tasks.Screenshots
Task results
No run tasks defined
No infrastructure changes (unreachable tasks)
NOTE: Once this PR has being approved, we will squash the commits.