Skip to content

Webstep/Terra-Snowflake

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

268 Commits
AWS_Firehose_ingestion
AWS_Firehose_ingestion
 
 
AWS_s3_external_stage_ingestion
AWS_s3_external_stage_ingestion
 
 
EXAMPLE_CONFIG
EXAMPLE_CONFIG
 
 
base
base
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 

Repository files navigation

Terra-Snowflake

Introduction

Terra-Snowflake is a Terraform Dataplattfom on demand module. It contains the resources needed to create a Data platform with RBAC roles, databases and warehouses

The module focuses around the idea of one state file per project/team.

By enabling this module you can build up a preconfigured Snowflake based data platform that adheres to modern standards of security, access and monitoring. This module also implements a one account prod+dev enviroment where all Dev objects are distinguished with a "DEV_" prefix.

:note!: this module is under active development.

Developent happens in a trunkbased approach. Therfore it is highly recomended to only deploy pinned version of the module to change sensitive environments. Any non pinned deployments are likely to break or change without warning.

Features

Within this module the following features are suported:

  • Domain databases (CURATED_<project_name>)
  • Project Data product database (DATA_PRODUCTS_<project_name>)
  • Project internal sharing database (INTERNAL_SHARING_<project_nam)

Not supported

This module does not manage access grants. Snowflake grants in Terraform are uncomfortable. I recommend using a tool such as Permifrost to manage access controll. This module asumes you use permifrost, but that is not neccecary.

Setup

This section covers the prerecuisites, and steps needed to set up the module.

Prerequesite

- Snowflake Account
- System user authenticatd with key pair
- system to run Terraform
- git repository to store the configuration

Steps to take

  1. Create the main.tf file based on the main.txt example in the setup folder
  2. Craate the configurations.auto.tfvars for the admin project, based on the Config_admin.txt file in setup folder
  3. Populate the configurations.auto.tfvars as described in the file
  4. Configure enviroment variables
  5. Run teraform plan
  6. Check that output makes sense given your configuration
  7. Run terraform apply
  8. Terraform setup compleeted

Adding additional projects

In the case that you want to add aditional projects to the setup follow the steps below. Before starting however please note that the degree to which you need to create seperation depends on your terraform setup.

Also note that the pipeline is expected to run with the same parameters and users as the admin configuration. Seperate projects and states are used to split up the potential for errors and mistakes that can occure when using modules. As such missconfiguration in the project never can spread outside of this project. Making recovery easier.

  1. Configure create a new repo or folder accordign to your terraform setup that allow the trigger o seperate terraform pipelines.
  2. Create a new copy of the main.tf file form the original project setup. No need to make any changes
  3. Create a Configuration.auto.tfvars from the example the setup folder named `config_new_project.txt´
  4. Populate the configuration in accordance with the description.
  5. Run your terraform pipelien against this configuration using the same seting as in the admin config.

About

A Terraform module for use with Snowflake, containing IaC for a data platform

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages

  • HCL 100.0%