通过terraform更改redis集群的auth_token会导致其被销毁并重新创建。如何避免呢?

时间:2020-04-14 02:39:25

标签: redis terraform

我希望能够更改Redis集群的auth_token。但是当我更改它时,terrafrom计划告诉我它想重新创建集群:

An execution plan has been generated and is shown below.
Resource actions are indicated with the following symbols:
-/+ destroy and then create replacement

Terraform will perform the following actions:

      # module.live_presentation_elasticache.aws_elasticache_replication_group.main[0] must be replaced
    -/+ resource "aws_elasticache_replication_group" "main" {
          + apply_immediately              = (known after apply)
            at_rest_encryption_enabled     = true
          ~ auth_token                     = (sensitive value)
            auto_minor_version_upgrade     = false
            automatic_failover_enabled     = true
          ~ configuration_endpoint_address = "clustercfg.my-project.abcde5.use1.cache.amazonaws.com" -> (known after apply)
            engine                         = "redis"
            engine_version                 = "5.0.3"
          ~ id                             = "my-project" -> (known after apply)
            maintenance_window             = "sun:07:00-sun:08:00"
          ~ member_clusters                = [
              - "my-project-0001-001",
              - "my-project-0002-001",
              - "my-project-0003-001",
            ] -> (known after apply)
            node_type                      = "cache.t2.micro"
          ~ number_cache_clusters          = 3 -> (known after apply)
            parameter_group_name           = "default.redis5.0.cluster.on"
            port                           = 6379
          + primary_endpoint_address       = (known after apply)
            replication_group_id           = "my-project"
            security_group_ids             = [
                "sg-0600b285b055c64b1",
            ]
          ~ security_group_names           = [] -> (known after apply)
            snapshot_retention_limit       = 30
            snapshot_window                = "06:00-07:00"
            subnet_group_name              = "my-project-redis-subnet"
            tags                           = {
                "Flavor" = "dev"
                "Name"   = "live-presentation"
            }
            transit_encryption_enabled     = true

            cluster_mode {
                num_node_groups         = 3
                replicas_per_node_group = 0
            }
        }

    Plan: 1 to add, 0 to change, 1 to destroy.

我想避免重新创建Redis集群。一些明显的原因是:我想避免丢失数据和停机时间。

是否存在破坏性较小的方法来更新auth_token?优选地是地形解决方案,但不是必需的。

0 个答案:

没有答案