Seeking for advice on how workspaces should be organized on TF cloud

junfeng · October 21, 2022, 3:12pm

Hi Terraform experts,

Our team just started to use Terraform Cloud to manage our product and we would like to get some advice on how workspaces should be organized.

Our product consists of 3 micro services. Currently in each deploy environment, we have 3 workspaces roughly one for each micro service. The following graph shows the structure:

As you can see, each workspace is relatively self contained and there’s not much dependency among workspaces.

Another approach we are thinking of is to extract some of the resources out into their own workspaces, for example:

DB resources – they are critical and change less frequent, putting it together with other resources with more frequent changes in the same workspace adds the chance of misconfiguration
VPC resources – they usually affects multiple services, putting it under one service workspace may be hard to manage in the future.

So the structure of this approach will look like the following graph:

I feel this will give us better isolation and easier management but it adds more dependencies among workspaces and we have the concern misconfiguration will be harder to detect – resources dependencies misconfiguration within a workspace can be easily detected at plan stage.

I’m wondering if there’s any general best practice on how workspaces should be structured? Thanks in advance!

Best,
Junfeng

junfeng · October 24, 2022, 2:12am

Kindly ping:)

We really love this product and would like to know how we can make the best use of it.

Ideally what we would like to achieve is:

An isolation of resources at a finer granularity
A way to detect impact over downstream workspaces when planning the upstream workspace. (Upstream workspace means its output is used by a downstream workspace).

junfeng · October 25, 2022, 10:08am

Ping again. Any insights will be helpful to us:-)

2021fc04797 · October 25, 2022, 2:57pm

Hi Junfeng,

Sharing my two cents. It depends on mostly your current ways of working in the areas of devops, infra deployments etc,

For example let us say , your teams are mostly app based or project based it would help if you have environment based workspaces mapping to respective repositories where teams maintain their code in VCS. Accordingly you can setup teams , organizations etc.,
Your organizations can be LOB based, cloud account based, whereas teams and workspaces can be project/app based. Hope this gives you some direction in which you have to work on.

While this is one direction, there is no one size fits all, check your current ways of automation and accordingly act on the same. Thanks

Topic		Replies	Views
Terraform Enterprise Workspace working directory HCP Terraform	4	981	October 24, 2022
Azure multiple workspace handling dependencies Terraform	0	231	October 30, 2019
Setting up an infrastructure build pipeline in GitHub using Terraform Cloud HCP Terraform	2	311	January 18, 2023
Terraform cloud best practice for workspaces dependencies Terraform hcp-terraform	2	320	October 1, 2024
Workspaces, modules, TF files and directory layout Terraform	0	312	February 1, 2022

Seeking for advice on how workspaces should be organized on TF cloud

Related topics