stocky-petabyte-29883
03/31/2022, 12:43 PMlet accountDetails = [
{name: 'test', email: '<mailto:testt@example.io|testt@example.io>', environment: 'test', billingInfoAccess: 'ALLOW'}
];
var accountOutput: { accountName: string, accountId: string }[] = [];
for (const accountDetail of accountDetails) {
const account = new aws.organizations.Account(accountDetail.name, {
email: accountDetail.email,
iamUserAccessToBilling: accountDetail.billingInfoAccess,
name: accountDetail.name,
tags: {
Environment: accountDetail.environment
},
});
account.arn.apply(arn => {
console.log(arn);
accountOutput.push({accountName: accountDetail.name, accountId: arn})
})
};
export const outputs = {
accountInfo: accountOutput,
}
lively-waitress-2524
04/01/2022, 1:21 AMpulumi stack output
inside of Github actions.
When I run pulumi stack output website_url
on my local, it prints the bucket URL with the AWS region us-west-2
included (<http://s3-website-bucket-1234567.s3-website-us-west-2.amazonaws.com|s3-website-bucket-1234567.s3-website-us-west-2.amazonaws.com>
) while my Github action sets the region as `***`: s3-website-bucket-1234567.s3-website-***.<http://amazonaws.com|amazonaws.com>
. My Github action uses steps.<id>.outputs.website_url
to access the value (run: echo ${{ steps.publish_website.outputs.website_url }}
, but I don't know why it would be different.
I thought this was worth mentioning because the preceding curl
test succeeds with the same value, almost as if it's using a different URL than what I'm seeing in the Github web console logs. The test reads curl -I s3-website-bucket-4ac29a1.s3-website-***.<http://amazonaws.com|amazonaws.com>
.
For reference, the project is the S3 static website on AWS Python tutorial and the Github Action is the push workflow for Python.quaint-guitar-13446
04/01/2022, 1:38 AMephemeralStorage
for a FargateTaskDefinition
?
https://docs.aws.amazon.com/AmazonECS/latest/developerguide/fargate-task-storage.htmlwitty-park-12681
04/01/2022, 9:29 PMerror: 1 error occurred:
* updating urn:pulumi:STAGE::rms-strata::aws:lb:ApplicationLoadBalancer$aws:lb/loadBalancer:LoadBalancer::strata-lb-stage: 1 error occurred:
* failure Setting LB Security Groups: InvalidConfigurationRequest: Security group 'sg-08d526aacc421c6e8' does not belong to VPC 'vpc-ee8dcb97'
status code: 400, request id: a925e681-199d-48a8-bd0d-31ce8344a40e
Hoping to find a way around this since there is data in this environment that can't be lost. I don't want to tear down the entire thing. What options do I have to get around this?witty-pharmacist-42636
04/03/2022, 1:06 PMpreview_iaac:
name: Preview IaaC
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v2
- uses: actions/setup-python@v2
with:
python-version: 3.8
- name: Configure AWS Credentials
uses: aws-actions/configure-aws-credentials@v1
with:
aws-access-key-id: ${{ secrets.PULUMI_AWS_ACCESS_KEY_ID }}
aws-secret-access-key: ${{ secrets.PULUMI_AWS_SECRET_ACCESS_KEY }}
aws-region: ${{ secrets.STAGING_AWS_DEFAULT_REGION }}
- run: pip install pipenv && pipenv lock -r > requirements.txt && pip install -r requirements.txt
- uses: pulumi/actions@v3
with:
command: preview
stack-name: ***/dev
env:
PULUMI_ACCESS_TOKEN: ${{ secrets.PULUMI_ACCESS_TOKEN }}
Here is an output that I get:
docker:image:Image ***-api-dev-django-dockerimage Successfully built 481a2e057dd2
docker:image:Image ***-api-dev-django-dockerimage Successfully tagged ***.dkr.ecr.***.<http://amazonaws.com/***-api-dev-ecr-repo-5b4a376:latest|amazonaws.com/***-api-dev-ecr-repo-5b4a376:latest>
pulumi:pulumi:Stack ***-dev running error: Program failed with an unhandled exception:
pulumi:pulumi:Stack ***-dev running error: Traceback (most recent call last):
pulumi:pulumi:Stack ***-dev running error: an unhandled error occurred: Program exited with non-zero exit code: 1
pulumi:pulumi:Stack ***-dev 3 errors
Diagnostics:
pulumi:pulumi:Stack (***-dev):
error: Program failed with an unhandled exception:
error: Traceback (most recent call last):
File "/opt/hostedtoolcache/pulumi/3.28.0/x64/pulumi-language-python-exec", line 107, in <module>
loop.run_until_complete(coro)
File "/opt/hostedtoolcache/Python/3.8.12/x64/lib/python3.8/asyncio/base_events.py", line 616, in run_until_complete
return future.result()
File "/opt/hostedtoolcache/Python/3.8.12/x64/lib/python3.8/site-packages/pulumi/runtime/stack.py", line 126, in run_in_stack
await run_pulumi_func(lambda: Stack(func))
File "/opt/hostedtoolcache/Python/3.8.12/x64/lib/python3.8/site-packages/pulumi/runtime/stack.py", line 51, in run_pulumi_func
await wait_for_rpcs()
File "/opt/hostedtoolcache/Python/3.8.12/x64/lib/python3.8/site-packages/pulumi/runtime/stack.py", line 110, in wait_for_rpcs
raise exception
File "/opt/hostedtoolcache/Python/3.8.12/x64/lib/python3.8/site-packages/pulumi/output.py", line 98, in is_value_known
return await is_known and not contains_unknowns(await future)
File "/opt/hostedtoolcache/Python/3.8.12/x64/lib/python3.8/site-packages/pulumi/output.py", line 214, in run
return await cast(Awaitable[U], transformed)
File "/opt/hostedtoolcache/Python/3.8.12/x64/lib/python3.8/site-packages/pulumi_docker/docker.py", line 243, in build_and_push_image
build_result = await build_image(base_image_name, path_or_build, log_resource, cache_from)
File "/opt/hostedtoolcache/Python/3.8.12/x64/lib/python3.8/site-packages/pulumi_docker/docker.py", line 444, in build_image
raise ResourceError(
pulumi_docker.docker.ResourceError: No digest available for image ***.dkr.ecr.***.<http://amazonaws.com/***-api-dev-ecr-repo-5b4a376|amazonaws.com/***-api-dev-ecr-repo-5b4a376>
error: an unhandled error occurred: Program exited with non-zero exit code: 1
stderr:
err?:
(node:1766) UnhandledPromiseRejectionWarning: Error: ENOENT: no such file or directory, stat '/tmp/automation-logs-preview-pp2jEL/eventlog.txt'
(node:1766) UnhandledPromiseRejectionWarning: Unhandled promise rejection. This error originated either by throwing inside of an async function without a catch block, or by rejecting a promise which was not handled with .catch(). To terminate the node process on unhandled promise rejection, use the CLI flag `--unhandled-rejections=strict` (see <https://nodejs.org/api/cli.html#cli_unhandled_rejections_mode>). (rejection id: 2)
(node:1766) [DEP0018] DeprecationWarning: Unhandled promise rejections are deprecated. In the future, promise rejections that are not handled will terminate the Node.js process with a non-zero exit code.
mammoth-art-6111
04/04/2022, 8:02 PMdry-teacher-74595
04/04/2022, 8:16 PMdry-teacher-74595
04/04/2022, 8:16 PMwitty-park-12681
04/05/2022, 3:33 AMsnapshotIdentifier
string
Specifies whether or not to create this database from a snapshot. This correlates to the snapshot ID you'd find in the RDS console, e.g: rds:production-2015-06-26-06-05.
Is this the snapshot name
? There is nothing in aws RDS specifically called snapshot ID
.. there is ARN
curious if this documentation should be updated?best-train-86003
04/05/2022, 12:07 PMbest-train-86003
04/05/2022, 12:08 PMdry-teacher-74595
04/05/2022, 7:04 PM├─ aws:acm:Certificate frontend-dev-cert [diff: +__defaults]
while actually running this, this tries to delete the certificate, and after waiting like half a hr, it gives me an error saying certificates in use
dry-teacher-74595
04/05/2022, 7:05 PMdry-teacher-74595
04/05/2022, 7:05 PMquaint-guitar-13446
04/06/2022, 12:45 AMcloud-aws
:
• What is the best way to get a secret into a RouteHandler
?
• Is there authentication for API
?quaint-guitar-13446
04/06/2022, 7:13 AMaloof-dress-1001
04/06/2022, 9:01 AMaloof-dress-1001
04/06/2022, 9:02 AMglue_schema_for_affected_entities = aws.glue.Schema("schema-for-glue-ent",
schema_name="affected_entities",
registry_arn=f"arn:aws:glue:{aws_region.id}:{user_id.id}:registry/default-registry",
data_format="JSON",
compatibility="NONE",
schema_definition=entities_data
)
aws_glue_catalog_table = aws.glue.CatalogTable("glue-table",
database_name="glue-for-xm-database",
name="glue-table",
opts=pulumi.ResourceOptions(depends_on=[aws_glue_catalog_database])
)
aloof-dress-1001
04/06/2022, 9:02 AMrapid-keyboard-69273
04/07/2022, 8:23 AMprehistoric-london-9917
04/08/2022, 2:47 AMerror: constructing secrets manager of type "cloud": secrets (code=Unknown): AccessDeniedException: The ciphertext refers to a customer master key that does not exist, does not exist in this region, or you are not allowed to access.
status code: 400, request id: bda7408f-f87b-43a1-86bd-bf0671c0346d
I have no issues creating/removing a new stack with the same KMS alias as the backing key still exists.
Any idea how I can remove that stack? I can just nuke it from the state bucket, but I’m wondering if there’s a more idiomatic way.faint-balloon-33174
04/11/2022, 2:30 PMfaint-balloon-33174
04/12/2022, 2:51 PMError deleting WAFv2 WebACL: WAFAssociatedItemException: AWS WAF couldn't perform the operation because your resource is being used by another resource or it's associated with another resource.
stocky-petabyte-29883
04/12/2022, 2:52 PMexport AWS_PROFILE=XXXX
to set our profile.
When we run pulumi up we are getting an error.
Error: It looks like you're using AWS profiles. Please specify this profile in providerCredentialOpts
I think this issue only happens when using crossrails EKS and not aws-classic(could be wrong here). I know there is a profile key in providerCredentialOpts I can add, but we can't ensure everyone who uses pulumi uses the same naming for their aws profiles.
Am I missing something here?millions-umbrella-34765
04/12/2022, 9:09 PMsome-kitchen-64615
04/13/2022, 7:13 PMUnsupportedActionException: The resource AWS::S3::Bucket is not yet supported via Cloud Control API
- is it true or I'm doing something completely wrong?ambitious-forest-23664
04/14/2022, 9:36 AMlambda:InvokeFunctionUrl
) and I don’t know how to add it because I don’t know how to add the necessary condition using the classic aws.lambda.Permission
resource. Any help?great-sunset-355
04/14/2022, 10:56 AMnice-father-44210
04/14/2022, 2:11 PMbitter-eve-53295
04/17/2022, 6:57 PMbitter-eve-53295
04/17/2022, 6:57 PMpolite-napkin-90098
04/18/2022, 1:25 PMgreen-musician-49057
04/19/2022, 4:48 PMCommand
pkg to use the aws CLI to use SendCommand. Verbose, but it should work?bitter-eve-53295
04/19/2022, 5:05 PMgreen-musician-49057
04/19/2022, 5:08 PMbitter-eve-53295
04/19/2022, 7:29 PM