Terraform Locals and Loops

Terraform locals and loops: cut repetition, iterate resources, keep code DRY with clear examples and best practices.

Sebastian Stadil

4 min read

Terraform is a cornerstone of modern Infrastructure as Code (IaC), empowering teams to manage complex environments with declarative syntax. While incredibly powerful, certain features and scaling complexities can present a steep learning curve. The frequent searches for "Terraform locals" are a testament to this. Let's explore locals and other common hurdles, and how a structured approach—sometimes augmented by platforms—can smooth the path.

Understanding Terraform locals

At its heart, a Terraform local value (or local) assigns a name to an expression. Think of it as a way to create a named constant or a derived value that you can reuse throughout your module. This is fantastic for keeping your code DRY (Don't Repeat Yourself) and improving readability.

Key Benefits of locals:

  • Reduces Repetition: Define a complex expression once, use it many times.
  • Enhances Readability: Give meaningful names to "magic strings" or complex interpolations.
  • Centralizes Logic: Encapsulate data transformations or conditional logic.

Here's a simple example:

locals {
  # Common tags to apply to all resources
  common_tags = {
    environment = var.environment
    project     = var.project_name
    owner       = "infra-team"
  }

  # Construct a standardized resource name
  instance_name_prefix = "${var.project_name}-${var.environment}-app"
}

resource "aws_instance" "web" {
  ami           = var.ami_id
  instance_type = var.instance_type
  tags          = local.common_tags

  # Example of using another local
  # (assuming you'd use this prefix in a more complex naming scheme)
  # user_data = <<-EOF
  #   #!/bin/bash
  #   echo "Instance Name Prefix: ${local.instance_name_prefix}"
  # EOF
}

locals vs. Input variables: A Common Sticking Point

A primary source of confusion is the difference between locals and input variables.

  • Input variables (variable "name" {}): These are the parameters of your module. They are how you pass values into your module from the outside (e.g., from a .tfvars file or a calling module). They define the module's configurable interface.
  • Local Values (locals {}): These are for internal use within a module. They are derived from expressions, input variables, or resource attributes to simplify the module's internal logic. They are not meant to be set directly from outside the module.

Using locals where an input variable is needed (or vice-versa) can lead to less flexible and harder-to-understand modules.

Beyond locals: Other Common Terraform Hurdles

As configurations grow, other challenges emerge:

  1. Iteration & Conditionals (for_each, count):
    • "Known only after apply" errors: A frequent frustration. for_each (and sometimes count) requires its keys or count to be known during the plan phase. If these depend on attributes of resources that haven't been created yet (e.g., an ID from a random_id resource or a newly created VPC), Terraform can't build its execution graph, leading to errors.
    • Complex Logic: Deeply nested for expressions or dynamic blocks can become difficult to read and maintain.
  2. Module Management:
    • Versioning: Pinning and syncing module versions, especially between internal and public modules, can be tricky. Terraform's lack of variable interpolation in module version attributes often pushes teams to external tooling.
    • Refactoring: Renaming resources within modules or moving resources between them often requires manual terraform state mv operations, which are error-prone.
  3. State Management at Scale:
    • Monolithic State: A single large state file for extensive infrastructure leads to slow plans/applies and a large "blast radius" if something goes wrong.
    • Remote State Sharing (terraform_remote_state): While useful, it can create tight coupling between configurations.
    • Locking: Stale locks can halt operations, requiring manual intervention like force-unlock.
  4. HCL Nuances:
    • Type System Rigidity: The map and object types can be inflexible, especially for optional attributes with defaults, often leading to overuse of type = any.
    • merge() Function: Its shallow merge behavior often surprises users expecting a deep merge for nested maps.

These challenges, particularly around state management and module complexity at scale, are where adopting a more structured approach becomes critical. While Terraform provides the core engine, managing numerous workspaces, environments, and ensuring consistent governance often benefits from an overarching management plane. Platforms like Scalr, for example, are designed to address these operational complexities by providing hierarchical configuration, environment management, and a clear framework for managing multiple Terraform state files and module versions, significantly reducing the friction of scaling Terraform operations.

Summary of Common Challenges & Approaches

Challenge

Common Pitfall

General Approach / Solution Hint

locals vs. variables

Using locals for externally configurable inputs.

Use variables for module parameters; locals for internal expressions and DRY principles.

Iteration (for_each)

Keys/values "known only after apply" from dependent resources.

Ensure for_each keys are determinable at plan time; refactor dependencies or use targeted applies.

Module Versioning & Management

Inconsistent versions; difficulty syncing internal/public modules.

Establish clear team conventions; consider external tooling or platforms (e.g., Scalr) for centralized version and source management.

State Management at Scale

Monolithic state files leading to slow operations and large blast radius.

Decompose into smaller, logical stacks; leverage platforms (e.g., Scalr) for orchestrating multiple states and environments.

HCL Type System (map/object)

Rigidity in defining complex types with optional attributes.

Use object with careful attribute definition; any as a last resort, understanding the trade-offs.

plan vs. apply Discrepancies

plan shows success, but apply fails due to provider or API behavior.

Thorough testing in non-prod; understand provider limitations; ensure drift is minimized.

Conclusion

Terraform is a powerful tool, but its advanced features and scaling aspects require a solid understanding and disciplined practices. Recognizing common pitfalls with locals, iteration, modules, and state is the first step. For teams looking to scale their IaC effectively, adopting consistent conventions and exploring platforms that streamline Terraform operations, like Scalr, can turn these challenges into manageable processes, allowing you to focus on building infrastructure rather than wrestling with tooling complexities.