By Sebastian Stadil

Terraform Modules: Building Reusable Infrastructure Components

Terraform modules are the key to creating manageable, scalable, and reusable infrastructure configurations. They allow you to encapsulate a set of resources and their configurations into a logical unit, which can then be instantiated multiple times with different inputs.

What are Terraform Modules?

A module is essentially a collection of .tf files kept together in a directory. Even your root configuration is technically a module (the root module). You can call other modules (child modules) from your configuration, creating a hierarchy.

Key Components:

  • Input Variables (variable): Define parameters that can be passed into the module to customize its behavior.
  • Resources (resource): The infrastructure components the module will manage.
  • Output Values (output): Expose data from the module to the calling configuration or for user information.
// Example: A simple VPC module structure (my_vpc_module/)
// my_vpc_module/main.tf
variable "vpc_cidr" {
  description = "CIDR block for the VPC"
  type        = string
}

variable "vpc_name" {
  description = "Name for the VPC"
  type        = string
  default     = "MyModuleVPC"
}

resource "aws_vpc" "this" {
  cidr_block = var.vpc_cidr
  tags = {
    Name = var.vpc_name
  }
}

output "vpc_id" {
  value = aws_vpc.this.id
}

// In root module (e.g., main.tf):
module "my_app_vpc" {
  source   = "./modules/my_vpc_module" // Or Git URL, Terraform Registry
  vpc_cidr = "10.0.0.0/16"
  vpc_name = "AppProductionVPC"
}

resource "aws_subnet" "example" {
  # Ensure vpc_id is correctly referenced from the module output
  vpc_id = module.my_app_vpc.vpc_id 
  cidr_block = "10.0.1.0/24"
  tags = {
    Name = "AppProductionSubnet"
  }
  // ... other subnet configurations
}

Common Sticking Points

  • Scoping: Understanding that resources within a module are encapsulated. You can't directly reference a resource inside a module from the outside without using an output. Similarly, modules don't automatically inherit variables from the parent; they must be explicitly passed as inputs.
  • Provider Configuration: Deciding whether modules should declare their own providers or inherit them from the calling configuration. Generally, modules should inherit providers to maintain flexibility.
  • Versioning and Sources: Managing module sources (local, Git, Terraform Registry) and pinning versions can be challenging, especially with nested modules, to ensure consistent deployments.
  • When to Create a Module: Identifying the right level of abstraction and what constitutes a good, reusable module takes experience.

The Scalr Perspective

Terraform modules are powerful, but their management across an organization can become fragmented. A platform like Scalr enhances module usage by:

  • Private Module Registry: Scalr can provide a private registry for your organization's modules. This centralizes approved modules, makes them easily discoverable, and allows for controlled versioning and sharing across teams.
  • Standardization and Governance: By promoting the use of approved modules from the registry, Scalr helps enforce organizational standards and best practices. Policies (e.g., OPA) can further restrict which modules or versions can be used in specific environments.
  • Simplifying Consumption: With a well-managed registry, consuming modules becomes as straightforward as referencing them from Scalr, reducing the friction for developers to adopt reusable components.
  • Visibility: Scalr can provide insights into which modules are used where, their versions, and potentially the resources they manage, aiding in impact analysis and upgrades.

Using Scalr encourages a more disciplined approach to module development and consumption, ensuring that the benefits of reusability and standardization are fully realized across your organization.

Summary Table

Aspect

Description

Common Challenge

Scalr Benefit Example

Inputs (variable)

Parameters to customize the module.

Forgetting to pass required variables; complex variable types.

Environment-level variables in Scalr can simplify input management.

Outputs (output)

Exposing data from the module.

Knowing what to output; accessing outputs correctly.

Clear run previews in Scalr show output changes.

Encapsulation

Resources are scoped to the module.

Confusion about accessing internal resources.

N/A (Core Terraform behavior)

Source & Versioning

Where the module code resides and which version to use.

Drift in versions; managing dependencies in complex module trees.

Private module registry with version control.

Provider Config

How modules get provider settings (e.g., AWS region, credentials).

Incorrect provider passing or configuration within modules.

Scalr can manage provider credentials securely per environment.

Conclusion

Modules are fundamental to "Infrastructure as Code" best practices. While they introduce concepts like scoping and version management that require understanding, their benefits in terms of reusability and maintainability are immense. Platforms like Scalr build upon this by providing robust mechanisms for module discovery, governance, and consumption, making it easier for organizations to leverage modules effectively.