happy-pencil-64085
11/09/2020, 10:27 PMsticky-bear-14421
11/10/2020, 10:43 AMsticky-bear-14421
11/10/2020, 10:43 AMsteep-spoon-2023
11/10/2020, 3:07 PMable-morning-18592
11/10/2020, 5:15 PMlittle-cartoon-10569
11/11/2020, 1:54 AMcreateIngressRule()
etc. For at least the rules defined using location
and cidrBlocks
, if I update the cidrBlocks, then it causes duplicated security group rules, and errors out. I can't add deleteBeforeCreate
because the opts
field on this class takes a CustomResourceOptions, not a ComponentResourceOptions.dazzling-sundown-39670
11/11/2020, 10:53 PMaws:ec2/launchTemplate:LaunchTemplate resource 'spot-workers' has a problem: ConflictsWith
dazzling-sundown-39670
11/12/2020, 8:51 PMNodeGroup
changes will remove the nodes or just update them?breezy-butcher-78604
11/13/2020, 7:14 AMcomment
property when nothing is provided, the import fails since there's a difference. I've tried supplying an empty string but that still causes a difference to be picked up. is there a way to simply not include the comment property?colossal-librarian-55280
11/13/2020, 10:44 PMkind-school-28825
11/15/2020, 6:00 PMmost-address-4174
11/16/2020, 6:15 PMconst server = new aws.ec2.Instance('xyz-staging-server-instance', {
instanceType: 't2.micro',
vpcSecurityGroupIds: [securityGroup.id], // reference the security group resource above
ami: ami.id,
})
And I get the following error:
awsec2Instance (xyz-staging-server-instance):
error: 1 error occurred:
* Error launching source instance: VPCIdNotSpecified: No default VPC for this user. GroupName is only supported for EC2-Classic and default VPC.I found this issue, which says specifying a subnet ID should help, but I canβt seem to work out how specifying the
subnetId
property should work π€
Has anyone seen/dealt with this before?dazzling-sundown-39670
11/16/2020, 9:45 PMerror: configured Kubernetes cluster is unreachable: unable to load Kubernetes client configuration from kubeconfig file: invalid configuration: no configuration has been provided, try setting KUBERNETES_MASTER environment variable
. What can I do? It's worked so many times before. I'm using pulumi.StackReference
to retrieve the kubeconfig. Works fine locallyhundreds-musician-51496
11/17/2020, 12:08 AMerror: deleting urn:pulumi:zzz::deploy::aws:lambda/function:Function::xxx: Error deleting Lambda Function: InvalidParameterValueException: Lambda was unable to delete arn:aws:lambda:us-east-1:1111:function:xxx:1 because it is a replicated function. Please see our documentation for Deleting Lambda@Edge Functions and Replicas.
most-address-4174
11/17/2020, 1:47 PMfuture-journalist-90839
11/20/2020, 2:33 AMerror: Error serializing '() => { const typeDefs = ` type Quer ...': index.js(10,16)
const aws = require("@pulumi/aws");
const pulumi = require("@pulumi/pulumi");
const env = pulumi.getStack();
const { ApolloServer } = require("apollo-server-lambda");
const factory = () => {
const typeDefs = `
type Query {
dummy: String!
}
`;
const resolvers = {
Query: {
hello: () => "Hello world!",
},
};
const server = new ApolloServer({
typeDefs,
resolvers,
playground: true,
introspection: true,
});
return server.createHandler();
};
module.exports = {
route: {
path: "/social/grapqql",
method: "ANY",
eventHandler: new aws.lambda.CallbackFunction(`${env}-social`, {
callback: factory,
}),
apiKeyRequired: true,
},
};
future-journalist-90839
11/20/2020, 3:18 AMconst { ApolloServer } = require("apollo-server-lambda");
future-journalist-90839
11/20/2020, 3:22 AMalert-raincoat-81485
11/20/2020, 6:55 AMingress=[aws.ec2.SecurityGroupIngressArgs(
AttributeError: module 'pulumi_aws.ec2' has no attribute 'SecurityGroupIngressArgs'
The code was referred from an Pulumi docs example.
security_group = aws.ec2.SecurityGroup( # type: ignore
"secgrp",
description="Splunk Hybrid cloud security group",
vpc_id=vpcid,
ingress=[aws.ec2.SecurityGroupIngressArgs(
description="TLS from VPC",
from_port=443,
to_port=443,
protocol="tcp",
cidr_blocks=["0.0.0.0/0"],
)],
egress=[aws.ec2.SecurityGroupEgressArgs(
from_port=0,
to_port=0,
protocol="-1",
cidr_blocks=["0.0.0.0/0"],
)],
)
Any suggestions?brash-student-27683
11/23/2020, 4:15 PMfuture-nail-59564
11/23/2020, 10:35 PMpgpKey
property of classes such aws.iam.AccessKey
and aws.iam.UserLoginProfile
. Itβs really unclear what the base-64 encoded PGP public key is expected to be. No matter what I try, I always get this:
* Error encrypting IAM Access Key Secret: error parsing given PGP key: openpgp: invalid data: tag byte does not have MSB set
I created my key-pair using:
$ openssl genrsa -out keypair.pem 2048
Then exported the public-key part with:
$ openssl rsa -in keypair.pem -pubout -out publickey.crt
Then I tried to pass that public key using different variations: 1. with/without BEGIN/END markers, 2. with/without new lines, 3. with/without over-base-64-encoding the whole thing, etcβ¦ But no luck! πalert-raincoat-81485
11/23/2020, 11:33 PMpolicy = aws.iam.Policy("policy",
description="A test policy",
policy="""{
"Version": "2012-10-17",
"Statement": [
{
"Action": [
"ec2:Describe*"
],
"Effect": "Allow",
"Resource": "*"
}
]
}
""")
test_attach = aws.iam.PolicyAttachment("test-attach",
users=[user.name],
roles=[role.name],
groups=[group.name],
policy_arn=policy.arn)
little-cartoon-10569
11/24/2020, 4:00 AMaws.iam.getPolicyDocument
, short of using pulumi.all().apply()
?victorious-helmet-11068
11/24/2020, 10:12 AMvictorious-helmet-11068
11/24/2020, 10:12 AMvictorious-helmet-11068
11/24/2020, 10:12 AMfuture-nail-59564
11/24/2020, 1:37 PMhundreds-receptionist-31352
11/24/2020, 3:39 PMpulumi import aws:eks/cluster:Cluster mserv-test-eks mserv-testing-eks -d -v 999
Previewing import (testing):
Type Name Plan Info
pulumi:pulumi:Stack qallariy-testing 1 error; 11 debugs
= ββ aws:eks:Cluster mserv-test-eks import 3 errors
Diagnostics:
pulumi:pulumi:Stack (qallariy-testing):
debug: Attempting to use session-derived credentials
debug: Successfully derived credentials from session
debug: AWS Auth provider used: "AssumeRoleProvider"
debug: Trying to get account information via sts:GetCallerIdentity
debug: Trying to get account information via sts:GetCallerIdentity
debug: Reading EKS Cluster: {
debug: Name: "mserv-testing-eks"
debug: }
debug: Truncating attribute path of 0 diagnostics for TypeSet
debug: Truncating attribute path of 0 diagnostics for TypeSet
debug: Truncating attribute path of 0 diagnostics for TypeSet
error: preview failed
aws:eks:Cluster (mserv-test-eks):
error: aws:eks/cluster:Cluster resource 'mserv-test-eks' has a problem: Computed attribute cannot be set
error: aws:eks/cluster:Cluster resource 'mserv-test-eks' has a problem: Computed attribute cannot be set
error: Preview failed: one or more inputs failed to validate
Please copy the following code into your Pulumi application. Not doing so
will cause Pulumi to report that an update will happen on the next update command.
Please note, that the imported resources are marked as protected. To destroy them
you will need to remove the `protect` option and run `pulumi update` *before*
the destroy will take effect.
does anyone have a clue? thanks in advance!broad-dog-22463
11/24/2020, 3:54 PMshy-football-10348
11/24/2020, 4:25 PMjupyterhub > tree
.
βββ README.md
βββ jupyterhub.png
βββ src
βββ docker-hub
βΒ Β βββ Dockerfile
βββ docker-notebook
βΒ Β βββ Dockerfile
βββ jupyterhub-code-pipeline
βΒ Β βββ Pulumi.jupyterhub-code-pipeline.yaml
βΒ Β βββ Pulumi.yaml
βΒ Β βββ __main__.py
βΒ Β βββ requirements.txt
βββ jupyterhub-ecs-infra
βΒ Β βββ Pulumi.jupyterhub-ecs-infra.yaml
βΒ Β βββ Pulumi.yaml
βΒ Β βββ __main__.py
βΒ Β βββ requirements.txt
βββ jupyterhub-net-infra
βΒ Β βββ Pulumi.jupyterhub-network-infra.yaml
βΒ Β βββ Pulumi.yaml
βΒ Β βββ __main__.py
βΒ Β βββ config.yml
βΒ Β βββ requirements.txt
βββ notebook-ecs-infra
βββ Pulumi.notebook-ecs-infra.yaml
βββ Pulumi.yaml
βββ __main__.py
βββ requirements.txt
Based on this structure and the following documentation for Pulumi + Codebuild β I believe I will need multiple buildspec.yml
files to account for these different stacks, is that correct? Looking at the Pulumi module for Codebuild shows a supporting type called ProjectSecondarySource
where you need to specify a buildspec β is there where I would specify each of my projects? For example, will I need a ProjectSecondarySource
for jupyterhub-net-infra
, notebook-ecs-infra
, and jupyterhub-ecs-infra
? It seems so.
Finally, one thing I am concerned about is this reliance of jupyterhub-ecs-infra
and notebook-ecs-infra
to be in sync. Specifically, when you make an update to the task definition in notebook-ecs-infra
the arn for the task definition changes, as a result, jupyterhub-ecs-infra
needs to be updated to reference that new taskdefiniton arn from the updated notebook stack. How do I account for this in my pipeline? Should I be completely rebuilding the infrastructure after every merge to master?
Apologies if this is a massive post. Thanks in advance!