Hello guys, I’m interested in rolling update via terraform script. Every-time there is a merge we want to run a CI pipeline that runs Terraform scripts. Unfortunately, we’re facing issues with some AWS resources that already exist. Like • IAM roles • CloudWatch Log Groups • API Gateway VPC Links • S3 storages • RDS Subnet groups • Security Groups All of them are coming from Metaflow Terraform Module, so we would prefer not to write it ourselves, instead looking into the proper way to accomplish rolling update or maybe see if someone else faced the same issues and found a way around

to make sure i understand correctly, you're running

terraform apply

from your CICD pipeline? and it complains that resources already exist? (from the previous runs)

yes, exactly

do you use remote terraform state backend?

no, I used the scripts from metaflow examples. Should I use s3 backend? We use it for the other deployments

yep that's the way to make sure terraform remembers what it deployed before

yeah I see. Feel dumb now 😄 thanks

i mean its a deep topic, there are entire startups out there, offering "terraform-apply-integrated-with-ci" as a service :)