Channels
announcements
automation-api
aws
azure
blog-posts
built-with-pulumi
cloudengineering
cloudengineering-support
content-share
contribex
contribute
docs
dotnet
finops
general
getting-started
gitlab
golang
google-cloud
hackathon-03-19-2020
hacktoberfest
install
java
jobs
kubernetes
learn-pulumi-events
linen
localstack
multi-language-hackathon
office-hours
oracle-cloud-infrastructure
plugin-framework
pulumi-cdk
pulumi-crosscode
pulumi-deployments
pulumi-kubernetes-operator
pulumi-service
pulumiverse
python
registry
status
testingtesting123
testingtesting321
typescript
welcome
workshops
yaml
aws
- s
steep-lamp-20408
08/29/2022, 10:43 AMHi there! I’m having trouble creating a AWS S3 bucket with a name without a suffix created by Pulumi. Here is my code to create a bucket:
However, the name of the bucket created seems to be “`my-bucket-name-5d70fd9`” instead of “`my-bucket-name"`. I tried addingimport pulumi_aws as aws bucket = aws.s3.BucketV2( "my-bucket-name", tags={ "Client": "my-client-name, "Environment": "my-stack-name", }, ) b_acl = aws.s3.BucketAclV2("my-bucket-name", bucket=bucket.id, acl="private")
as a argument toresource_name
, like the doc suggests, but in that case I got the erroraws.s3.BucketV2
. Any idea?__init__() got multiple values for argument 'resource_name'b- 2
- 4
- a
average-cricket-30620
08/29/2022, 1:09 PMHey everyone, I'm going to use pulumi to create an EKS cluster and I want to use the AWS-provided add-ons (because why not?) Using pulumi eks plugin I can only disable the default add-ons and not manage it: https://www.pulumi.com/registry/packages/eks/api-docs/cluster/ Using pulumi aws classic (or native) plugin I can create and manage add-ons but the features for creating the cluster itself are very limited: https://www.pulumi.com/registry/packages/aws/api-docs/eks/addon/ What should I use? Can I use a mix of both?b- 2
- 2
- s
steep-lamp-20408
08/29/2022, 3:44 PMHi again! I have some issues understanding how works the AWS cloudfront distribution object (
), its arguments and the documentation about it: https://www.pulumi.com/registry/packages/aws/api-docs/cloudfront/distribution/#distributionorigin 1. How can I specify anaws.cloudfront.Distribution
(origin
) for theaws.cloudfront.DistributionOriginArgs
where it would correspond to “origin access” = “access control settings” (recommended AWS setting - the circled in red option on my screenshot), and/or “origin access” = “legacy access identities”? 2. I have trouble understanding what is theaws.cloudfront.Distribution
argument oforigin_id
on the same documentation page. Doc says “The unique identifier of the member origin”, but it’s very obscure to me. Is it the ARN of the S3 bucket? The ID of the S3 bucket? Something else?aws.cloudfront.DistributionOriginArgsbm- 3
- 10
- s
strong-helmet-83704
08/29/2022, 6:50 PMI’m getting this error during an import
but there is no trace of this resource in my current stack/state. How is Pulumi computing this? Is it referencing checkpoint history to find this historical resource?error: inputs to import do not match the existing resource- 1
- 1
- s
swift-fireman-31153
08/30/2022, 1:10 AMIs it possible to breakout the api gateway definition from the endpoint definitions? Have an "infra" project to manage usage plans and authorizers, etc. but then have a "services" project that references the stack and adds apigateway endpoints on top of the infra stack?b- 2
- 2
- g
gentle-zoo-32137
08/30/2022, 3:26 PMIs there an easy way to have all AWS resources created by a stack include a tag with the stack name and/or project name? I want to avoid having all our infra engineers need to repeat these tags for all resources. aws:defaultTags in the configuration seems to only support static tags, so each stack would need to configure these explicitly (which isn't terrible, but also seems redundant and error-prone).sf+4- 7
- 30
- v
victorious-dusk-75271
08/31/2022, 2:00 PMdoes anyone have an example of setting up cloudwatch on eks? - s
swift-fireman-31153
08/31/2022, 9:15 PMIf I have an infrastructure deployment that defines, API gateway stages and then a separate stack that refers to the original stack but I want to deploy additional methods and resources to an existing stage, what do I do?const apiDeployment = new aws.apigateway.Deployment("openAPI Deployment", { restApi: openApiId, triggers: { redeployment: pulumi.all([resource.id, methodGet.id, integration.id]).apply(([resourceId, methodGetId, integrationId]) => JSON.stringify([ resourceId, methodGetId, integrationId, ])).apply(toJSON => crypto.createHash('sha1').update(toJSON).digest('hex')), }, }); const deploymentStage = new aws.apigateway.Stage("stage", { deployment: openApiDeploymentId, restApi: openApiId, stageName: env, }); - s
swift-fireman-31153
08/31/2022, 9:15 PMDiagnostics: pulumi:pulumi:Stack (open-api-services-dev): error: update failed aws:apigateway:Stage (stage): error: 1 error occurred: * error creating API Gateway Stage (dev): ConflictException: Stage already exists - s
swift-fireman-31153
08/31/2022, 9:16 PMI get an error by trying to define it again and the documentation says using
onstage_name
is not advised as it causes an interruption in serviceDeployment - l
little-soccer-5693
08/31/2022, 9:39 PMdoes anyone know whether the deployment time for a cloudfront distribution can be reduced? often i find that every other stack resource deploys in <2 minutes but deployment time for a CF dist is often 10 minutes or longer.fb- 3
- 5
- s
steep-lamp-20408
09/01/2022, 9:20 AMHi there, I am using
to create a AWS lambda with Python (the lambda running under FastAPI+Mangum), but I’m a bit confused on how to pack the python dependencies for the lambda. So far I’ve been doing the following:aws.lambda_.Function
The lamba iteself is organized that way:import pulumi import pulumi_aws as aws my_lambda_lambda_func = aws.lambda_.Function( "my-lambda-name", name="my-lambda-name", role=iam_role_for_lambda.arn, runtime="python3.9", handler="main.handler", package_type="zip", code=pulumi.AssetArchive( {".": pulumi.FileArchive("./lambdas/my_lambda")} ), environment=aws.lambda_.FunctionEnvironmentArgs( variables={ "VAR": "my-env-var", }, ), )
How can I pack the Python dependencies? I would prefer using a zip instead of a Docker container as it is part of a big Pulumi stack. If I esport the dependencies toi a/lambdas/my_lambda/ main.py pyproject.toml requirements.txt
folder with something like/lib
, will it be taken into account? Should they be exported at the root of the lambda instead? Can we pass the libs/dependencies folder path to the Pulumipip install -t lib -r requirements.txt
object?lambda_.Function - l
little-soccer-5693
09/01/2022, 10:16 PMpulumi destroy is throwing an exception when attempting to delete an ECR registry:
however, I am setting the force delete flag:Diagnostics: aws:ecr:Repository (<reponame>): error: deleting urn:pulumi:dev::<reponame>::aws:ecr/repository:Repository::<reponame>: 1 error occurred: * ECR Repository (<reponame>-b14d0f6) not empty, consider using force_delete: RepositoryNotEmptyException: The repository with name '<reponame>-b14d0f6' in registry with id '<accountId>' cannot be deleted because it still contains images
is this a bug or am I setting the wrong attribute?repoArgs := &ecr.RepositoryArgs{ ForceDelete: pulumi.Bool(true), } repo, err := ecr.NewRepository(ctx, repoName, repoArgs) if err != nil { return err } - b
boundless-farmer-38967
09/02/2022, 11:15 AMHey Pulumi! I have a problem with subscribing Lambda to a SNS topic. I think I have all the components for that to happen, in fact I also see the Lambda subscribed, but when I publish messages to the topic it won't trigger the Lambda. Here are the important bits:
What I already checked: 1. Run lambda to ensure it's properly set up 2. Manually subscribe the deployed lambda and confirm it triggers on new message 3. Subscribed my email to the same topic to ensure it indeed publishes messages It has to be something in the above set up, but there's no document anywhere with a complete example for subscribing a lambda to a topic. Thanks!//lambda role const lambdaHandlerRole = new paws.iam.Role(`${projectToken}-data-topic-lambda-role`, { assumeRolePolicy: { Version: "2012-10-17", Statement: [{ Action: "sts:AssumeRole", Principal: { Service: "<http://lambda.amazonaws.com|lambda.amazonaws.com>", }, Effect: "Allow", Sid: "", }], }, }); new paws.iam.RolePolicyAttachment(`${projectToken}-role-attach`, { role: lambdaHandlerRole, policyArn: paws.iam.ManagedPolicies.AWSLambdaExecute, }); //SNS topic const topic = new paws.sns.Topic(`${projectToken}-data-topic`); //Lambda - code loaded from a sub-dir const badgerFunc = new paws.lambda.Function(`${projectToken}-data-sender-badger`, { code: new pulumi.asset.AssetArchive({ ".": new pulumi.asset.FileArchive("./lambda/badger"), }), runtime: "nodejs16.x", handler: "index.handler", role: lambdaHandlerRole.arn, }); //Subscribe lambda to SNS new paws.sns.TopicSubscription(`${projectToken}-badger`, { topic: topic.arn, protocol: "lambda", endpoint: badgerFunc.arn, });v- 2
- 8
- s
sparse-intern-71089
09/02/2022, 12:40 PMThis message was deleted. - v
victorious-dusk-75271
09/02/2022, 10:02 PM
Any idea what this unknown errors mean?-- kubernetes:apps/v1:Deployment allrites-frontend deleting original error: unknown -- kubernetes:apps/v1:Deployment allrites-frontend **deleting failed** error: unknown @ Updating.... aws:route53:Record ssl-cert-validation-dns-record pulumi:pulumi:Stack nuxt-application-primary-staging running error: update failed pulumi:pulumi:Stack nuxt-application-primary-staging **failed** 1 error Diagnostics: kubernetes:apps/v1:Deployment (allrites-frontend): error: unknown pulumi:pulumi:Stack (nuxt-application-primary-staging): error: update failed - v
victorious-dusk-75271
09/02/2022, 10:03 PMworks fine locally but its failing on codebuild- 1
- 1
- v
victorious-dusk-75271
09/03/2022, 1:46 PMI am trying to create nodegroup for EKS using
, even pulumi creating resources such as ec2 LaunchConfiguration and stuff. its not showing up on the cluster's node group@pulumi/eks
I dont know how to debug this issuenew eks.NodeGroup(`${name}-ng-1`, { cluster: cluster, labels: { preemptible: 'true' }, instanceType: "t2.medium", desiredCapacity: 2, minSize: 2, maxSize: 5, instanceProfile: instanceProfile, nodeSubnetIds: args.privateSubnetIds, nodeRootVolumeSize: 30, autoScalingGroupTags: this.cluster.core.cluster.name.apply(clusterName => ({ "<http://k8s.io/cluster-autoscaler/enabled|k8s.io/cluster-autoscaler/enabled>": "true", [`<http://k8s.io/cluster-autoscaler/${clusterName}`|k8s.io/cluster-autoscaler/${clusterName}`>]: "true", })), }, { provider: opts?.provider, parent: cluster })v- 2
- 2
- v
victorious-dusk-75271
09/04/2022, 12:11 AMmy eks cluster is not autoscaling even there is pending pods, do i need anything else with pulumi-eks? - f
freezing-artist-36980
09/04/2022, 12:48 PMHow do I delete a subnet group which is used by a RDS instance? I got this error for `pulumi destroy`:Destroying (staging):
*`pulumi😛ulumi:Stack myapp-infra-staging failed 1 error`* *`- └─ aws:rds:SubnetGroup rds-subnet-group deleting failed 1 error`*Type Name Status InfoDiagnostics:aws:rds:SubnetGroup (rds-subnet-group):
` deleting RDS Subnet Group (rds-subnet-group-84e29cf): InvalidDBSubnetGroupStateFault: Cannot delete the subnet group 'rds-subnet-group-84e29cf' because at least one database instance: myapp-staging is still using it.`*error: deleting urn:pulumi:staging::myapp-infra::aws:rds/subnetGroup:SubnetGroup::rds-subnet-group: 1 error occurred:status code: 400, request id: 2d691633-f9eb-4bf9-969c-f4db4ac4ee89pulumi:pulumi:Stack (myapp-infra-staging):error: update failedv- 2
- 1
- v
victorious-dusk-75271
09/04/2022, 6:13 PMHi, in my eks cluster roleMapping for bootstrap and other has been removed, how do i add them back?va- 3
- 13
- c
curved-appointment-51749
09/05/2022, 11:08 AMHi. With AWS Classic I can create a S3 bucket with a policy but can't seem to set Bucket Owner Enforced. With AWS Native I can set Bucket Owner Enforced but can't seem to set a policy. Is there a way to do both?- 1
- 1
- v
victorious-dusk-75271
09/05/2022, 5:44 PMhow do you create eks cluster with multiple spot instances?v- 2
- 4
- v
victorious-dusk-75271
09/05/2022, 6:47 PMhttps://puu.sh/JjR0X/d79d8e5cef.png▾
- v
victorious-dusk-75271
09/05/2022, 6:48 PMA task is stuck in creating replacement for long. is there a way to debug it?v- 2
- 31
- c
cool-glass-63014
09/06/2022, 9:27 AMAnybody here have experience with setting up DataDog Agent for AWS ECS Fargate in pulumi?q- 2
- 1
- v
victorious-dusk-75271
09/06/2022, 11:56 AMhi, does anyone know how to get coredns to work on tainted nodes?- 1
- 1
- c
creamy-pharmacist-70032
09/06/2022, 4:31 PMHi everybody, I'm looking to add a reverse DNS record (https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/elastic-ip-addresses-eip.html#Using_Elastic_Addressing_Reverse_DNS) which is done on elastic ip addresses, still,
does not give any hints about that being supported (https://www.pulumi.com/registry/packages/aws/api-docs/ec2/eip/), any ideas?eip- 1
- 1
- s
strong-helmet-83704
09/06/2022, 5:17 PMI have some cloud resources which take a very long time to create or delete. For this reason it's best to leave these resources up between Pulumi up/down cycles. Currently I'm using the resource's tag:Name as an identifier to maintain persistence. I'm using the retain-on-delete and import_ resource options to either create a new resource or find one already created and re-use it.
Is this is the best way to achieve this? It works but it doesn't seem particularly elegant for such a common / simple task.try: vgw = aws.ec2.get_vpn_gateway( filters=[aws.ec2.GetVpnGatewayFilterArgs( name="tag:Name", values=[f"Vgw"], )], opts=pulumi.ResourceOptions(provider=provider_options) ) vgw = aws.ec2.VpnGateway(f"Vgw", tags={"Name": f"Vgw"}, opts=pulumi.ResourceOptions( provider=provider_options, retain_on_delete=True, import_=vgw.id ) ) except: vgw = aws.ec2.VpnGateway(f"Vgw", tags={"Name": f"Vgw"}, opts=pulumi.ResourceOptions( provider=provider_options, retain_on_delete=True ) )mv+2- 5
- 12
- v
victorious-dusk-75271
09/07/2022, 6:23 PM
this constant changes to kubeconfig is very painfulResources: ~ 6 to update +-48 to replace 54 changes. 356 unchanged Do you want to perform this update? details pulumi:pulumi:Stack: (same) [urn=urn:pulumi:production::allrites-infrastructure::pulumi:pulumi:Stack::allrites-infrastructure-production] ~ eks:index:VpcCni: (update) [id=cb5e864952980aec] [urn=urn:pulumi:production::allrites-infrastructure::custom:resource:eks$eks:index:Cluster$eks:index:VpcCni::us-eks-eks-cluster-vpc-cni] + kubeconfig: output<string> ++pulumi:providers:kubernetes: (create-replacement) [id=f5843109-d992-4709-afac-e4be7342d1ea] [urn=urn:pulumi:production::allrites-infrastructure::pulumi:providers:kubernetes::us-eks-k8s-provider] - kubeconfig: { - apiVersion : "v1" - clusters : [ - [0]: { ................... } + kubeconfig: output<string>s- 2
- 2
Title
v
victorious-dusk-75271
09/07/2022, 6:23 PMResources:
~ 6 to update
+-48 to replace
54 changes. 356 unchanged
Do you want to perform this update? details
pulumi:pulumi:Stack: (same)
[urn=urn:pulumi:production::allrites-infrastructure::pulumi:pulumi:Stack::allrites-infrastructure-production]
~ eks:index:VpcCni: (update)
[id=cb5e864952980aec]
[urn=urn:pulumi:production::allrites-infrastructure::custom:resource:eks$eks:index:Cluster$eks:index:VpcCni::us-eks-eks-cluster-vpc-cni]
+ kubeconfig: output<string>
++pulumi:providers:kubernetes: (create-replacement)
[id=f5843109-d992-4709-afac-e4be7342d1ea]
[urn=urn:pulumi:production::allrites-infrastructure::pulumi:providers:kubernetes::us-eks-k8s-provider]
- kubeconfig: {
- apiVersion : "v1"
- clusters : [
- [0]: {
...................
}
+ kubeconfig: output<string>s
sparse-park-68967
09/07/2022, 9:00 PMI see you have an open issue here: https://github.com/pulumi/pulumi-eks/issues/764
👍 1
Will take a look
👍 1
View count: 1