Question 1

How to set up Tapir with AWS Cognito for authentication?

Accepted Answer

Tapir requires an OIDC IDP; configure AWS Cognito as the provider and set environment variables as detailed in the configuration docs. A blog post in the README provides a step-by-step guide for ECS deployment with Cognito.

Question 2

Tapir vs Terraform Cloud private registry: which is better for self-hosting?

Accepted Answer

Tapir is open-source and self-hosted, ideal for cost control and air-gapped environments, while Terraform Cloud offers a managed service with more features but at a subscription cost. Choose based on your need for customization versus convenience.

Question 3

Can Tapir scan custom Terraform providers for security issues?

Accepted Answer

Yes, Tapir supports custom providers and enforces GPG signing for security, but the Trivy scanning primarily focuses on module source code; provider binaries are stored and distributed with SHA256 checksums for integrity.

Question 4

How to deploy Tapir on Kubernetes in an air-gapped environment?

Accepted Answer

Use the local storage adapter and deploy via the Helm chart or Docker images from a private registry; Tapir can run without internet access by pre-loading dependencies and configuring environment variables for isolation.

Question 5

Does Tapir integrate with GitHub Actions for automated module pushes?

Accepted Answer

Tapir provides a REST API that can be used in CI/CD pipelines, but there's no built-in GitHub Action; you would need to write custom scripts to push modules via API calls as described in the usage docs.

Question 6

What databases are supported for Tapir metadata storage?

Accepted Answer

Currently DynamoDB (default), Elasticsearch, and CosmosDB; PostgreSQL is on the roadmap but not yet available, so you may need to adapt if using other databases.

tapir

What is tapir?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions