Use variable in S3 backend configuration

yohei1126 · January 22, 2021, 5:14am

I am using Terraform snowflake plugins. I want to use ${terraform.workspace} variable in terraform scope.

terraform {
  required_providers {
    snowflake = {
      source  = "chanzuckerberg/snowflake"
      version = "0.20.0"
    }
  }
  backend "s3" {
    bucket         = "data-pf-terraform-backend-${terraform.workspace}"
    key            = "backend/singlife/landing"
    region         = "ap-southeast-1"
    dynamodb_table = "data-pf-snowflake-terraform-state-lock-${terraform.workspace}"
  }
}

But I got this error. Variables are not available in this scope?

Error: Variables not allowed

  on provider.tf line 9, in terraform:
   9:     bucket         = "data-pf-terraform-backend-${terraform.workspace}"

Variables may not be used here.


Error: Variables not allowed

  on provider.tf line 12, in terraform:
  12:     dynamodb_table = "data-pf-snowflake-terraform-state-lock-${terraform.workspace}"

Variables may not be used here.

I also posted the same question to stackoverflow.

workaholicrohit · April 15, 2021, 10:49am

I’m also facing similar kind of issue, no fix found as of today.

stuart-c · April 15, 2021, 11:25am

As you see variables are not allowed within a backend block.

One feature that might be useful is shown here: Backend Configuration - Configuration Language - Terraform by HashiCorp which allows you to pass in a -backend-config parameter to terraform init which allows you to override parameters such as the bucket with a value in another file.

justintilson · September 14, 2022, 10:05pm

I came up with a relatively simple workaround. In my repo, I renamed the state.tf file to state.tf.template.

terraform {
  backend "s3" {
    bucket = "your-statefile-bucket-ENV"
    key = "sharestatefile/terraform.tfstate"
    region = "your-region"
    dynamodb_table = "your-statefile-table"
    encrypt = true
  }
}

In the build environment, I added an environment variable called ENV (values: develop, staging, production, etc).

In our CI/CD build script, I added:

- echo "Generating state.tf for ${ENV}"
- sed s/ENV/${ENV}/ < state.tf.template > state.tf
- cat state.tf

The end result is a state.tf file generated by the build process with a dynamically assembled S3 bucket name.

Topic		Replies	Views
Error: variables not allowed Variables may not be used here Terraform	1	8976	April 15, 2021
Assign variable using tfe_variable Terraform	1	1241	November 6, 2019
Alternative way for variables in S3 backend Terraform	2	1049	October 30, 2019
How to use variables.tf values in Terraform cloud? HCP Terraform	0	64	July 11, 2024
Problem with Variables working through Cloud tutorial HCP Terraform	3	1606	August 16, 2020

Use variable in S3 backend configuration

Related topics