DEV Community

Discussion on: Infrastructure as code in 2021

Collapse
 
crgarcia12 profile image
Carlos Garcia Lalicata

Excellent comparison! Of course every person has different opinions and requirements, not all dots should be valuated the same for every case. For example, Idempotency of terraform is yellowish-green for me. It happened many times that Azure changes the state of the resources, and suddenly my terraform is "broken" - horrible situation for really large teams/deployments

Collapse
 
unosd profile image
Stefano d'Antonio

Thank you, Carlos.

I agree, Azure state drifting from your state file was a challenge for me, too.

Pulumi by default does not refresh the state, I am not sure I'm onboard with the default behaviour, but that causes less pain in that case as you only apply what you intentionally changed in code.

Usually, drifting happens when Azure Policy forces configuration, on that front I would probably enforce policies all in code as much as possible and lock resources to avoid external interference and set up alerts on configuration changed by users that are not the deployment principals.