iacconsole-cli

command module
v0.5.2 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jan 10, 2026 License: Apache-2.0 Imports: 1 Imported by: 0

README

IaCConsole CLI — Configuration Management for OpenTofu and Terraform

GitHub stars GitHub license Go Report Card GitHub release Go Version Downloads

IaCConsole CLI is a configuration management tool that dynamically orchestrates OpenTofu or Terraform deployments. It separates infrastructure configuration from code, enabling DevOps teams to reuse Terraform modules across multiple environments (dev, staging, production) without code duplication. Configuration can be sourced from files or the IaCConsole API (CMDB), an OpenAPI-powered configuration database.

Table of Contents

  • Key Features

  • Use Cases

  • Quick Start

  • Installation

  • Usage

  • Configuration

  • License

  • Environment configuration stored outside the Terraform/OpenTofu code

  • Terraform/OpenTofu code, called "tofi", should be generic enough to handle provided configuration to deploy the same resources with different configurations

  • tfvars and variables are automatically generated in the temporary folder with selected terraform code ("tofi") resulting in a full set of the Terraform code and configuration variables

  • After the temporary folder is ready, it executes terraform or tofu with specified parameters

  • Maintains separate state files for each environment, automatically providing configuration for remote state management (different path on storage based on configured dimensions). So the deployed configuration is stored in different tfstate files in remote storage (S3, GCS)

Use Cases

  • Infrastructure as Code management across multiple environments
  • CI/CD pipeline integration for automated deployments
  • Configuration management for development, staging, and production
  • Terraform/OpenTofu workflow automation
  • Multi-cloud infrastructure orchestration

Quick start with Jenkins and demo configuration

You will need any Kubernetes cluster (best small temporary like Podman+Kind or MiniKube). Check that kubectl context poiting to this test cluster! Not Production!

For a full end-to-end example of using IaCConsole CLI in a CI/CD pipeline, see the pre-configured Jenkins deployment in examples/jenkins/README.md. 2025-11-07_20-41

Installation

Download Pre-built Binaries
  1. Download the latest release from GitHub Releases (version >= 0.5.0)
  2. Extract the binary for your platform (Linux/macOS)
  3. Make it executable: chmod +x tofugu
  4. Move to your PATH: sudo mv tofugu /usr/local/bin/
Build from Source
git clone https://github.com/alt-dima/iacconsole-cli.git
cd iacconsole-cli
go build -o bin/tofugu .
Prerequisites

Quick start locally with demo configuration

  1. Install OpenTofu
  2. Execute to generate simple demo configuration with connection to demo account in the IaCConsole API (CMDB):
tofugu init

To generate with file based inventory:

tofugu init --toaster=false
  1. Follow on-screen instructions

Quick start with AI Coding Assistants

Getting started with IaCConsole CLI is even easier using AI coding assistants:

  1. Open the repository in your preferred editor with an AI assistant installed:
  • GitHub Copilot in VS Code
  • Cursor
  • Claude/Anthropic
  • WindSurf
  • Cline
  1. Ask questions like:
  • "How do I set up IaCConsole for AWS resources?"
  • "Help me create a new tofi for a GCP instance"
  • "How do I use the IaCConsole API (CMDB)?"
  • "Show me how to pass environment variables to my terraform code"

These instructions provide context about:

  • The architecture and key concepts of IaCConsole CLI
  • How to work with tofies, dimensions, and inventory sources
  • Integration with the IaCConsole API (CMDB) and IaCConsole Web UI for centralized configuration
  • Project-specific conventions and workflows

For more complex tasks, you can ask the AI assistant to guide you step-by-step through creating configurations, setting up the backend, or troubleshooting deployment issues.

What about alternative tools?

Yes, you should check other Infrastructure as Code (IaC) orchestration tools for Terraform:

So why another tool?

  1. The more open source tools, the better (for GitHub Copilot, not for Earth).
  2. The more choice, the better (there are countries where people have no choice).
  3. Imagine there is only AWS CloudFormation.

Usage

Organization with AWS resources and state stored in S3

./tofugu cook --config examples/.tofugu -o demo-org -d account:test-account -d datacenter:staging1 -t vpc -- init
./tofugu cook --config examples/.tofugu -o demo-org -d account:test-account -d datacenter:staging1 -t vpc -- plan
./tofugu cook --config examples/.tofugu -o demo-org -d account:test-account -d datacenter:staging1 -t vpc -- apply

Organization with Google Cloud resources and state stored in Google Cloud Storage

./tofugu cook --config examples/.tofugu -o gcp-org -d account:free-tier -t free_instance -- init
./tofugu cook --config examples/.tofugu -o gcp-org -d account:free-tier -t free_instance -- plan
./tofugu cook --config examples/.tofugu -o gcp-org -d account:free-tier -t free_instance -- apply
  • Everything after -- will be passed as parameters to the cmd_to_exec
  • -c = to remove temp dir after any tofugu execution (after apply or destroy and exit code=0 temp dir removed automatically)
  • -o = name of the organization (subfolder in Inventory, tofies folders and in .tofugu config section)
  • -d = dimension to attach to tofu/terraform. You may specify as many -d pairs as you need!
  • -t = name of the tofi in the tofies folder

Tofi Manifest

Special JSON file with the name tofi_manifest.json in the tofi folder provides options for TofuGu.

Currently, only dimensions with a list of the required/expected dimensions (from Inventory Store)

tofi_manifest.json example

Configuration Storage

Configuration Management Database (CMDB) — IaCConsole API

IaCConsole API is an OpenAPI-powered Configuration Management Database with a web-based IaCConsole Web UI for centrally managing infrastructure configurations.

You can set the env variable toasterurl to point to the IaCConsole API (CMDB), like:

export toasterurl='https://accountid:accountpass@toaster.altuhov.su'

To generate your own credentials please go to https://iacconsole.com/, fill the form with Account Name, Email, and press Create Account and you will receive generated credentials and a ready-to-use export command like:

export toasterurl=https://6634b72292e9e996105de19e:generatedpassword@toaster.altuhov.su
Screenshot_20250915_222318

With the correct toasterurl, the CLI will connect and receive all the required dimension data from the IaCConsole API (CMDB). An additional parameter could be passed to tofugu -w workspacename. In general, workspacename is the branch name of the source repo where the dimension is stored. If Toaster CMDB does not find the dimension with the specified workspacename, it will try to return the dimension from the master workspace/branch!

IaCConsole API (CMDB) provides additional features for your CI/CD pipelines:

  • IaCConsole Web UI - Visual console for managing configurations at https://iacconsole.com/console
  • OpenAPI RESTful API - Programmatic access to configuration data with full API documentation
  • CI/CD Integration - Fetch configurations directly in pipelines (e.g., first-app.json for validation)
  • Dynamic Dropdowns - Get dimension lists for Jenkins drop-downs to select deployment targets
Screenshot_20250915_222357

OpenAPI Documentation: Swagger API docs - Full RESTful API documentation and examples

To upload/update dimensions to the IaCConsole API from your Inventory Files repo you can use inventory-to-toaster.sh script example and execute it like bash examples/inventory-to-toaster.sh examples/inventory/

Please join the IaCConsole beta-testers!

File-based Configuration Storage (Inventory Files)

If the env variable toasterurl is not set, the CLI will use file-based configuration Storage (probably dedicated git repo), specified by the path configured in inventory_path.

Examples:

Dimensions usage in tf-code

When you set dimensions in the CLI flags -d datacenter:staging1, IaCConsole CLI will provide you inside tf-code the following variables:

  • var.tofugu_datacenter_name = will contain string staging1
  • var.tofugu_datacenter_data = will contain the whole object from staging1.json
  • var.tofugu_datacenter_defaults = will contain the whole object from dim_defaults.json IF the file dim_defaults.json exists!

Examples:

Passing environment variables from shell

For example, you need to pass a variable (AWS region) from shell to the terraform code, simply set it and use it!

Environment variable must start with tofugu_envvar_ prefix!

export tofugu_envvar_awsregion=us-east-1

In the TF code:

provider "aws" {
    region = var.tofugu_envvar_awsregion
}

Env variables used in code example

$HOME/.tofugu

Config file (in YAML format) path may be provided by the --config flag, for example:

tofugu --config path_to_config/tofuguconfig cook -o demo-org -d account:test-account -d datacenter:staging1 -t vpc -- init

If the --config flag is not set, then it will try to load from the default location $HOME/.tofugu (current binary name remains tofugu).

.tofugu example:

defaults:
  tofies_path: examples/tofies
  shared_modules_path: examples/tofies/shared-modules
  inventory_path: examples/inventory
  cmd_to_exec: tofu
  backend:
    bucket: default-tfstates
    key: $tofugu_state_path
    region: us-east-2
gcp-org:
  backend:
    bucket: gcp-tfstates
    prefix: $tofugu_state_path
  • tofies_path = relative path to the folder with terraform code (tofi)
  • shared_modules_path = relative path to the folder with shared TF modules maybe used by any tofi
  • inventory_path = relative path to the folder with JSONs
  • cmd_to_exec = name of the binary to execute (tofu or terraform)
  • backend = Config values for backend provider. All the child key:values will be provided to init and $tofugu_state_path will be replaced by the generated path. For example, when you execute tofugu cook ...... -- init, IaCConsole CLI actually will execute init -backend-config=bucket=gcp-tfstates -backend-config=prefix=account_free-tier/free_instance.tfstate

At least

defaults:
  backend:
    bucket: default-tfstates
    key: $tofugu_state_path

must be set in the config file! With key:values specific for the backend provider being used in org!

Other options contain hard-coded defaults:

defaults:
  inventory_path: "examples/inventory"
  shared_modules_path: ""
  tofies_path: "examples/tofies"
  cmd_to_exec: "tofu"

Shared modules support

It is a good practice to move some generic terraform code to the modules and reuse those modules in multiple terraform code (tofies)

Path to the folder with such private shared modules is configured by the shared_modules_path parameter in the .tofugu configuration file.

This folder will be mounted/linked to every temporary folder (set) so you could use any module by short path like

//use shared-module
module "vpc" {
  source = "./shared-modules/create_vpc"
}

Examples:

Remote state (Terraform Backend where state data files are stored)

AWS, Google Cloud, and some other backends are supported! You can configure any backend provider in the Config file

For AWS S3 your terraform code (tofi) should contain at least::

terraform {
  backend "s3" {}
}

For Google Cloud Storage your terraform code (tofi) should contain at least::

terraform {
  backend "gcs" {}
}

If for the demo-org config bucket is set, then $tofugu_state_path will be like: dimName1_dimValue1/dimNameN_dimValueN/tofiName.tfstate

If for the demo-org config bucket is NOT set, then $tofugu_state_path will be like org_demo-org/dimName1_dimValue1/dimNameN_dimValueN/tofiName.tfstate

This could be useful if you want to store by default tfstate for all the organizations in the same/default bucket default-tfstates but for some specific organization you need to store tfstates in a dedicated bucket demo-org-tfstates

Data Source Configuration (data "terraform_remote_state")

To simplify "Data Source Configuration" (data "terraform_remote_state" "tfstate" { }) it will be nice to have backend config values as tfvars.

var.tofugu_backend_config will contain all the parameters from the config (backend Section)

For example, for AWS S3:

data "terraform_remote_state" "network" {
  backend = "s3"
  config = {
    bucket = var.tofugu_backend_config.bucket
    key    = "network/terraform.tfstate"
    region = var.tofugu_backend_config.region
  }
}

And for GCS:

data "terraform_remote_state" "free_instance" {
  backend = "gcs"
  config = {
    bucket  = var.tofugu_backend_config.bucket
    prefix  = "account_free-tier/free_instance.tfstate"
  }
}

You will set key/prefix to another tofie's tfstate, which outputs you want to use.

$HOME/.tofurc

Recommended to enable plugin_cache_dir to reuse providers.

.tofurc example:

plugin_cache_dir   = "$HOME/.terraform.d/plugin-cache"
plugin_cache_may_break_dependency_lock_file = true

Do not forget to create the plugin-cache dir: mkdir "$HOME/.terraform.d/plugin-cache"

License

IaCConsole CLI is licensed with Apache License Version 2.0. Please read the LICENSE file for more details.

Documentation

The Go Gopher

There is no documentation for this package.

Source Files

View all Source files

Directories

Path Synopsis

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.