Create Module
This guide provides instructions for creating a basic Nullstone module. This guide is specific to AWS; however, the concepts work for other cloud providers as well. We are going to create a simple s3 bucket in this example.
A working copy of this code can be found at https://github.com/nullstone-modules/create-module-guide.
If you are unfamiliar with Terraform, it may be helpful to follow their basic guide.
Prerequisites
This guide requires the following:
Configure organization for testing
To start developing modules, you will need the following:
aws-sandboxprovider (used to test module)sandboxstacksandboxenvironment connected toaws-sandboxprovider
Create sandbox provider
Follow the guide to Connect to AWS to create a provider named aws-sandbox.
Create sandbox stack/environment
Create a Nullstone sandbox stack and environment to test a Nullstone module.
nullstone stacks new --name=sandbox --description="Sandbox for module testing"
nullstone envs new --name=sandbox --stack=sandbox --provider=aws-sandbox --region=us-east-1nullstone stacks new --name=sandbox --description="Sandbox for module testing"
nullstone envs new --name=sandbox --stack=sandbox --provider=aws-sandbox --region=us-east-1Create module
Create a new repository/directory to store the module. We recommend having a repository for each module; however, you may have multiple modules in a single repository as long as they are in different directories.
mkdir s3-bucket && cd s3-bucket
git initmkdir s3-bucket && cd s3-bucket
git initNow that your repository/directory is established, let's create our module.
nullstone modules generate --register
# This command will ask you a set of questions to configure the module
# Specify the following:
# Organization: <your organization>
# Module Name: s3-bucket
# Friendly Name: S3 Bucket
# Description: Creates a private S3 bucket
# Category: datastore
# Type: datastore/aws-s3
# ProviderTypes: awsnullstone modules generate --register
# This command will ask you a set of questions to configure the module
# Specify the following:
# Organization: <your organization>
# Module Name: s3-bucket
# Friendly Name: S3 Bucket
# Description: Creates a private S3 bucket
# Category: datastore
# Type: datastore/aws-s3
# ProviderTypes: awsThis will generate the following files
.nullstone/module.yml- manifest describing the modulenullstone.tf- generated Terraform to get you started
The --register flag will register the module in Nullstone. If you wish to omit, issue the following to register the module separately.
nullstone modules newnullstone modules newConfigure local for testing
To test your module, create a block in Nullstone named sandbox in the sandbox stack. Then, change the active workspace to use the new block in the sandbox environment.
nullstone blocks new --name=test-s3-bucket --stack=sandbox --module=<your organization>/s3-bucket
nullstone workspaces select --block=test-s3-bucket --env=sandboxnullstone blocks new --name=test-s3-bucket --stack=sandbox --module=<your organization>/s3-bucket
nullstone workspaces select --block=test-s3-bucket --env=sandboxBuild module
Create a file named bucket.tf with the following code. Note that the bucket name and tags are generated in nullstone.tf that we configured previously.
resource "aws_s3_bucket" "this" {
bucket = local.resource_name
tags = local.tags
force_destroy = true
}
resource "aws_s3_bucket_acl" "this" {
bucket = aws_s3_bucket.this.id
acl = "private"
}
resource "aws_s3_bucket_server_side_encryption_configuration" "this" {
bucket = aws_s3_bucket.this.id
rule {
apply_server_side_encryption_by_default {
sse_algorithm = "aws:kms"
}
}
}resource "aws_s3_bucket" "this" {
bucket = local.resource_name
tags = local.tags
force_destroy = true
}
resource "aws_s3_bucket_acl" "this" {
bucket = aws_s3_bucket.this.id
acl = "private"
}
resource "aws_s3_bucket_server_side_encryption_configuration" "this" {
bucket = aws_s3_bucket.this.id
rule {
apply_server_side_encryption_by_default {
sse_algorithm = "aws:kms"
}
}
}Now add outputs to an outputs.tf. Note the description of each output string ||| .... This informs Nullstone of the expected data type of the output.
output "db_arn" {
value = aws_s3_bucket.this.arn
description = "string ||| The ARN of the created S3 bucket."
}
output "db_protocol" {
value = "s3"
description = "string ||| The protocol used to connect to the s3 bucket."
}
output "db_hostname" {
value = aws_s3_bucket.this.bucket
description = "string ||| The name of the created S3 bucket."
}
output "db_port" {
value = ""
description = "string ||| The port for s3 buckets is blank."
}output "db_arn" {
value = aws_s3_bucket.this.arn
description = "string ||| The ARN of the created S3 bucket."
}
output "db_protocol" {
value = "s3"
description = "string ||| The protocol used to connect to the s3 bucket."
}
output "db_hostname" {
value = aws_s3_bucket.this.bucket
description = "string ||| The name of the created S3 bucket."
}
output "db_port" {
value = ""
description = "string ||| The port for s3 buckets is blank."
}Apply infrastructure changes
Now that we have AWS resources in our Terraform, we need to download the AWS Terraform provider.
terraform initterraform initNext, authenticate with AWS and export AWS_REGION, AWS_ACCESS_KEY_ID, and AWS_SECRET_ACCESS_KEY. These access keys should have access to the aws-sandbox provider. Run terraform to test out the module.
export AWS_REGION=us-east-1
export AWS_ACCESS_KEY_ID=<access key id>
export AWS_SECRET_ACCESS_KEY=<secret access key>
terraform applyexport AWS_REGION=us-east-1
export AWS_ACCESS_KEY_ID=<access key id>
export AWS_SECRET_ACCESS_KEY=<secret access key>
terraform applyPublish module
Once your module is complete, publish the module to the Nullstone registry. A user can launch this module directly from the Nullstone UI without any coding or Terraform setup.
nullstone modules publish --version=v0.0.1nullstone modules publish --version=v0.0.1