Terraform Components allow you to provision infrastructure in your customer’s cloud account to power your install.
s3 {}
backend for state. Read more below for more details.public_repo
block) or a private GitHub
repo (using a connected_repo
block). Read more about VCS configuration here.
aws-ecs
sandboxes. In both cases, this is
inside of the install network.
Since Terraform is executed from within the install sandbox, Terraform resources can access both resources within the network (such as internal APIs,) and, in K8S sandboxes, the local Kubernetes
cluster.
The runner uses a dedicated IAM role defined in the sandbox when executing Terraform.