Terragrunt 导入通过 for_each 循环创建的资源

Question

我正在使用 for_each 循环创建 GCP 存储桶，并希望将现有存储桶导入我的 terraform 状态

An execution plan has been generated and is shown below.
Resource actions are indicated with the following symbols:
  + create

Terraform will perform the following actions:

  # google_storage_bucket.buckets["a-test-test-test"] will be created
  + resource "google_storage_bucket" "buckets" {
      + bucket_policy_only          = (known after apply)
      + force_destroy               = false
      + id                          = (known after apply)
      + location                    = "US"
      + name                        = "a-test-test-test"
      + project                     = "xxx"
      + self_link                   = (known after apply)
      + storage_class               = "STANDARD"
      + uniform_bucket_level_access = false
      + url                         = (known after apply)

      + versioning {
          + enabled = true
        }
    }

Plan: 1 to add, 0 to change, 0 to destroy.

Changes to Outputs:
  ~ urls = [
      - "gs://a-test-test-test",
      + (known after apply),
    ]

Do you want to perform these actions?
  Terraform will perform the actions described above.
  Only 'yes' will be accepted to approve.

  Enter a value: yes

google_storage_bucket.buckets["a-test-test-test"]: Creating...

Error: googleapi: Error 409: You already own this bucket. Please select another name., conflict

资源已经存在，但是没关系，我可以导入它，问题是如何导入

因为像这样运行

MacBook-Pro% terragrunt import google_storage_bucket.buckets a-test-test-test
...
Acquiring state lock. This may take a few moments...
google_storage_bucket.buckets: Importing from ID "a-test-test-test"...
google_storage_bucket.buckets: Import prepared!
  Prepared google_storage_bucket for import
google_storage_bucket.buckets: Refreshing state... [id=a-test-test-test]

Import successful!

似乎有效，但它“错误”地导入了它

terragrunt state list
...
google_storage_bucket.buckets

它显示在我的 tfstate 中，但应该是这样的

google_storage_bucket.buckets["a-test-test-test"]

因为如果我现在运行 apply - 它说它想要删除google_storage_bucket.buckets并创建google_storage_bucket.buckets["a-test-test-test"]

google_storage_bucket.buckets: Refreshing state... [id=a-test-test-test]

An execution plan has been generated and is shown below.
Resource actions are indicated with the following symbols:
  + create
  - destroy

Terraform will perform the following actions:

  # google_storage_bucket.buckets will be destroyed
  - resource "google_storage_bucket" "buckets" {
      - bucket_policy_only          = false -> null
      - default_event_based_hold    = false -> null
      - force_destroy               = false -> null
      - id                          = "a-test-test-test" -> null
      - labels                      = {} -> null
      - location                    = "US" -> null
      - name                        = "a-test-test-test" -> null
      - project                     = "xxx" -> null
      - requester_pays              = false -> null
      - self_link                   = "https://www.googleapis.com/storage/v1/b/a-test-test-test" -> null
      - storage_class               = "STANDARD" -> null
      - uniform_bucket_level_access = false -> null
      - url                         = "gs://a-test-test-test" -> null

      - versioning {
          - enabled = true -> null
        }
    }

  # google_storage_bucket.buckets["a-test-test-test"] will be created
  + resource "google_storage_bucket" "buckets" {
      + bucket_policy_only          = (known after apply)
      + force_destroy               = false
      + id                          = (known after apply)
      + location                    = "US"
      + name                        = "a-test-test-test"
      + project                     = "xxx"
      + self_link                   = (known after apply)
      + storage_class               = "STANDARD"
      + uniform_bucket_level_access = false
      + url                         = (known after apply)

      + versioning {
          + enabled = true
        }
    }

Plan: 1 to add, 0 to change, 1 to destroy.

Changes to Outputs:
  + urls = [
      + (known after apply),
    ]

Do you want to perform these actions?
  Terraform will perform the actions described above.
  Only 'yes' will be accepted to approve.

有什么想法如何导入 terragrunt 中的 for_each 吗？

我尝试过

terragrunt import google_storage_bucket.buckets a-test-test-test
terragrunt import google_storage_bucket.buckets.a-test-test-test a-test-test-test
terragrunt import google_storage_bucket.buckets["a-test-test-test"] a-test-test-test
terragrunt import google_storage_bucket.buckets[\"a-test-test-test\"] a-test-test-test

没有人工作只是让我犯错误

zsh: no matches found: google_storage_bucket.buckets["a-test-test-test"]

虽然第一个选项terragrunt import google_storage_bucket.buckets a-test-test-test是导入的（又名有效）但不是正确的方式

---

terraform 代码如下：

inputs = {
  project_id  = "${local.project_id}"
    {
      name                        = "a-test-test-test"
      location                    = "US"
    }
}

locals {
  buckets        = {for b in jsondecode(var.buckets) : b.name => b }
}

variable "buckets" {
  description = "The name of the bucket."
}

resource "google_storage_bucket" "buckets" {
  for_each      = local.buckets
  name          = each.key
  project       = var.project_id
  location      = each.value.location

Answer 1

导入完整实例地址（包括实例键索引部分）是正确的方法，但这里的技巧是确定解决 shell 语法的最佳方法，以便必要的字符可以到达 Terraform。

对于 Unix 风格的 shell，我通常建议将地址放在单引号中以禁用元字符解释，如下所示：

terragrunt import 'google_storage_bucket.buckets["a-test-test-test"]' a-test-test-test

我没有太多的经验zsh，但通过参考其部分文档的副本，我得到的印象是上面的语法也是有效的zsh语法。如果上述方法不起作用，可能值得尝试使用不同的 shell，例如bash看看是否会得到不同的结果。

尽管您特别提到zsh，为了完整起见，我还要指出，在 Windows 上，规则有点不同：传统的 Windows 命令行语法不支持单引号，因此不幸的是，当从运行 Terraform 时，我们必须转义引号。 Windows 命令提示符：

terragrunt import google_storage_bucket.buckets[\"a-test-test-test\"] a-test-test-test

重要的是，"地址中的引号字符使其通过 shell 到达 Terraform，以便 Terraform 可以成功地将参数解析为资源地址语法。