Victoria's Tech Hub

The Terraform Era: Declarative Automation

  • #platform
  • #kubernetes
  • #terraform

The Shift: From Scripting to Orchestration

Working with a handful of pods was simple enough through the Makefile. As the local lab expanded to include loki, grafana, minio, and the full opentelemetry stack, that Makefile-driven approach began to show its age. Transitioning to OpenTofu as a terraform-compatible alternative provided a path toward Infrastructure as Code while still aligning with the goal of building practical terraform skills.

The Terraform Era represents a fundamental pivot from "how to build" toward "what to build." As the number of services grew, managing them through individual make targets became harder to sustain. A declarative terraform workflow offered a way to manage the ecosystem as a single, cohesive unit while turning the migration itself into hands-on IaC practice.

The Core Pillar: Terraform and IaC

The cornerstone of this era is the adoption of terraform for Infrastructure as Code (IaC). By standardizing on a declarative framework, the lab moved away from ad-hoc make commands toward a managed state for all Kubernetes resources. This transition ensures that every resource has a defined lifecycle within the wider architectural context.

This intentionality is about reducing the cognitive load of system maintenance. With terraform managing Helm-based Kubernetes services through .tf manifests and values.yaml files, the operational workflow shifted into a declarative control layer instead of ad-hoc per-service commands. The lab now behaves as a managed platform where every resource has a defined state and lifecycle.

  • Declarative State: Defining the desired end-state rather than the steps to get there.
  • Helm Provider: Integrating complex charts directly into the terraform lifecycle for seamless updates.
  • Resource Dependency: Ensuring that backends like minio or postgresql are ready before the observability collectors deploy.

The Phased Migration Strategy

The migration followed a disciplined phased rollout to maintain system availability. Initial stages targeted the opentelemetry collector and grafana to validate the ingestion edge and dashboard visualization. Subsequent stages moved to stateful backends like minio and prometheus to audit storage accessibility and metric visibility.

The later stages completed the stack with thanos, loki, and tempo before finishing with the postgresql migration. Observing the application services reconnect successfully provided the final layer of architectural confidence. This ordered approach ensured that the transition remained auditable and deterministic as more services moved under terraform management.

  • Phase 1: Migrating the opentelemetry collector and grafana to validate ingestion and dashboards.
  • Phase 2: Transitioning minio and prometheus to ensure storage accessibility and metrics visibility.
  • Phase 3: Deploying thanos, loki, and tempo to verify long-term storage and telemetry discovery.
  • Phase 4: Finalizing with postgresql to ensure all application services maintain stateful connectivity.

The Atomic Workflow: Plan and Apply

To support this new level of automation, a strict tofu plan and tofu apply cycle was introduced. This workflow ensures that full visibility into infrastructure changes is achieved before they are executed. Observing the predicted mutations prevents the surprise failures that often plague manual deployments in resource-constrained environments.

  • Validation: Using tofu plan to verify resource mutations against the current cluster state.
  • Coordinated Updates: Executing infrastructure changes in a single, reviewable OpenTofu workflow.
  • State Management: Maintaining a source of truth that tracks exactly what is running in the lab at any given time.

Operational Excellence: Eliminating Toil

The Terraform Era is about more than just tools; it is about reclaiming operational time. By automating the deployment of the observability stack, the operational toil required to keep the lab healthy has been significantly reduced. This architectural rigor allows the focus to shift from debugging deployment scripts to analyzing the telemetry data itself.

Managing the complexity of loki, grafana, and opentelemetry in a local cluster requires technical precision. This era has shifted the focus from mechanical script maintenance to high-signal architectural exploration. It provides the necessary foundation to scale the lab without the overhead of manual pod management.

Looking Ahead: Scaling the Foundation

With a stable automation layer in place, the infrastructure is now ready for further scaling. The foundation is no longer a collection of independent scripts but a professional-grade platform that can evolve alongside complex learning goals. This shift ensures that the lab remains a reliable environment for testing advanced system designs.

The next phase involves exploring how far this declarative model can be pushed within the local laboratory. Introducing cross-cluster orchestration or advanced GitOps patterns represents the next architectural frontier. Observing these patterns under load will provide deeper insights into modern platform engineering principles.

Related but not so Related Concepts