Daily magic I trust, love & actually use (50% off links)
πΈ Proton VPN - Private Connection
π Proton Pass - Encrypted Passwords
π¦ Proton Pass - Visual Git Client
*Partner links β you support DevOps.Pink π
Need answers fast? Your Friendly Pink DevOps Girl is live on Discord:
Mastering Terraform Tags Like a True IT Queen
Hey girls!
If youβre as obsessed with Infrastructure as Code (IaC) as I am, then you know that Terraform is THE tool to have in your IT arsenal. And if youβre working with cloud resources, youβve probably heard about tags - those little key-value labels that help you organize, track expenses, and automate processes.
But letβs be honest: tags can sometimes feel like a necessary evil, especially when youβre managing multiple cloud environments.
Donβt worry, darling! In this post, weβll break down Terraform tags: why you need them, how to use them, and the best practices to follow. So grab your favorite coffee β and letβs dive in!
What Are Terraform Tags?
Think of Terraform tags as little stickers you can attach to cloud resources to keep things organized and manageable. They are key-value pairs that allow you to classify resources by purpose, environment, or owner.
π Example:
tags = { Environment = "Production" Owner = "IT Girl Dev Team" Project = "CoolNewApp"}π‘ Why do you need this? Because proper tagging makes resource management easier, helps automate processes, and controls access. Plus, it keeps your infrastructure structured and aesthetic - and we donβt want a messy cloud, do we? β
Tags vs. tags_all: Whatβs the Difference?
Terraform has two types of tags: tags and tags_all. They sound similar but serve different purposes:
- tags - The tags you define in your Terraform code.
- tags_all - A read-only attribute that Terraform pulls from the resource itself.
π Example (referencing tags in Azure):
azurerm_virtual_network.example.tags_allWhy Should You Use Tags?
Tags arenβt just for aesthetics (although we love that too π ). Here are some key reasons why tagging is essential:
Organization
Imagine having thousands of resources in your AWS account without tags. Total chaos, right? Tags help group resources by environment, project, or team.
π Example:
tags = { env = "staging" owner = "DevOps Team" purpose = "testing"}Cost Management
Cloud bills can be terrifying π±, but Terraform tags help you track where your money is going.
π Example:
tags = { cost_center = "Marketing Analytics"}Automation
You know how much I love automation! Tags allow you to manage deployments, shut down unnecessary resources, and set up backups.
π Example:
tags = { auto_shutdown = "true" deploy = "true"}Access Control
You can configure tags to restrict access to resources using AWS IAM policies.
π Example:
tags = { Environment = "Development"}How to Add Tags to Terraform Resources
Itβs super simple! Just use the tags attribute inside the resource block.
π Example:
resource "aws_instance" "my_instance" { tags = { Environment = "Production" }}Want to Add Multiple Tags? Easy!
tags = { Environment = "Development" Owner = "Leia Organa" Department = "Rebel Alliance"}What Are Terraform Default Tags?
Default Tags are automatic tags applied to ALL resources without having to duplicate them in every block.
π Example:
variable "common_tags" { type = map(string) default = { Environment = "Development" }}Then, just use them like this:
tags = var.common_tagsHow to Override Default Tags?
Use the merge() function to combine default and custom tags.
π Example:
resource "aws_instance" "my_instance" { tags = merge( var.common_tags, { Name = "MyAwesomeServer" } )}How to Ignore Tag Changes in Terraform?
If external systems modify your tags (Azure Databricks, I see you π), tell Terraform to ignore them!
π Example:
resource "aws_instance" "my_instance" { lifecycle { ignore_changes = [tags] }}Or ignore them at the provider level:
provider "aws" { ignore_tags = ["CostCenter"]}Best Practices for Terraform Tags
π‘ Tips to keep your cloud tagging strategy clean and effective:
β Be consistent π - Use the same key names across resources.
β Document your tags π - Define what each tag means.
β Automate tagging βοΈ - Use Terraform modules.
β Use Default Tags β
- Follow the DRY (Donβt Repeat Yourself) principle.
Level Up Your Terraform with Spacelift
Want a flawless GitOps process? Try Spacelift! It makes Terraform even better with:
β¨ Security policies (OPA) π
β¨ Multi-IaC support (Terraform + Kubernetes + Ansible) π
β¨ Self-service infrastructure πββοΈ
Conclusion
Terraform tags may seem small, but they make a huge difference in cloud resource management. Start using them correctly, and your future IT-self will thank you!
Share your favorite Terraform hacks in the comments or on Twitter! π¬π»
Until next time, keep slaying the IT world! ππ
Tools I Personally Trust
If youβre building things, breaking things, or just trying to keep your digital life a little calmer - these are tools I actually use every day:
πΈ Proton VPN (60% off link) - my invisible cloak online. It secures your Wi-Fi, hides your IP, and blocks trackers - even on the sketchiest cafe Wi-Fi.
π Proton Pass (50% off link) - my password vault. On-device encryption for logins, 2FA, and notes - all mine and only mine.
π¦ GitKraken Pro (50% off link) - my visual Git sidekick. Gorgeous commit graph, painless merges, and fewer βwhat just broke?β moments.
π These links give you sweet discounts - and help support DevOps.Pink at no extra cost. Thanks a ton!
Social Channels
π¬ YouTube
π¦ X (Twitter)
π¨ Instagram
π Mastodon
𧡠Threads
πΈ Facebook
π¦ Bluesky
π₯ TikTok
π» LinkedIn
π£ daily.dev Squad
βοΈ Telegram
π GitHub
Community of IT Experts
πΎ Discord
Refill My Coffee Supplies
π PayPal
π Patreon
π₯€ BuyMeaCoffee
πͺ Ko-fi
β‘ Telegram Boost