DEV Community

loading...
Cover image for Mastering MinIO: Using Terraform to manage IAM Users and S3 buckets

Mastering MinIO: Using Terraform to manage IAM Users and S3 buckets

Amanda Souza
Originally published at linkedin.com ・3 min read

In the middle-age of Internet Era, an ancient IT professional, widely known as sysadmin, fearful used to deploy and manage infrastructure manually. The darkest time would be worst when Darth Vader decides to take a time off from the Death Star (aka vacation) and leaves the control under the Stormtroopers team with no documentation. One mistake and the Death Star was destroyed: server misconfigured, slow deployments and recurring downtimes. It would be almost funny if it weren't so sad. However, thanks to the DevOps Revolution, it has been changing.

Besides a new cloudish era has begun, building production-ready environments are hard, stressful and require time. Even though your company is cutting-edge modern solutions - Docker, Kubernetes, S3 buckets, microservices, machine learning, etc. - mastering high scalability is quite complicated. To save DevOps/Developers teams from the dark side, Infrastructure as Code (IaC) has emerged alongside the DevOps workflow, pledging itself for managing and provisioning IT infrastructure through script files in an easy way.

There are many tools that perform infrastructure automation capabilities and use IaC. In this case study, we are going to manage MinIO buckets and IAM Users using Terraform.

An example of MinIO server

MinIO Simple Storage Service (S3) is high-performance Kubernetes-friendly object storage, compatible with Amazon S3 and 100% open source. MinIO can run in on-premise servers or even better; you can run it locally using Docker. It means MinIO is free of charge and you don't have to sign up for anything. MinIO is a key for those companies which have dedicated servers and want to start migrating functionality of their legacy systems to cloud environments.

Although all pros, there is a con in MinIO buckets regards provisioning the Identity and Access Management (IAM): you have to perform users, policies and groups as the darkish way through a client. The MinIO mc provides a solution for managing MinIO by UNIX commands like ls, cat, cp, mirror, diff, find etc. It's the hard way, but it gets the job done. Now, you might be asking yourself: What about the benefits of IaC in MinIO buckets? I'm thrilled to announce a new Terraform provider for MinIO to manage not only S3 buckets but also IAM Users, groups and policies. You no longer need to provisioning, compiling and distributing MinIO resources on your own!

Não foi fornecido texto alternativo para esta imagem

Terraform provider MinIO is an open-source tool written in Golang, responsible for understanding Minio API interactions for the lifecycle of a resource: create, read, update, delete. MinIO provider gives you a visible way for monitoring resources as code and provides similar benefits like automation, visibility, and collaboration.

The full source code of this MinIO provider is available on GitHub. Everyone is welcome to use and collaborate. We have invested a lot of time and effort into MinIO provider for covering the most of resources and making it friendly to use. However, there are few resources which are under development. Plus: If you are not familiar with HCL language, HashiCorp has excellent tutorial resources you can look into to get the basics of Terraform.

May the force be with you!

Discussion (0)