If I understand correctly, to allow Infra self-service or "Environment as Code" some IDPs/tools has created drivers or webservices to connect with the infrastructure using Terraform.
Humanitec
Cloudify (Self Service Management UI),
Port.io,
Terraform no-code,
Gaia,
etc.
That is, every plan/apply/destroy request comes from the IDPs and
not from a tfvars stored in Git. That is, the
IDP would be the new source of truth and it seems to me a new vendor lock-in and a dependence on the availability of the IDP to recover from disaster scenarios where infrastructure redeployment is required.
Port.io showed me a very interesting alternative in which the platform simply
works asynchronously with your current terraform stack (my own TF plan/apply pipelines, Stack instances, Atlantis, Infracost, etc). However, all automation to
magically appear a "commit" with
tfvars file in our repos, it's a job that my team has to do, but it allows us to keep git as the source of truth for our IaC.
My point is, which approach makes the most sense to you? In terms of operation.