@salmon-lawyer-85465 Ah I think I see what you’re asking, It is possible to use your languages module system to lay out your seperate concerns something like:

import * as pulumi from "@pulumi/pulumi";
import { createMyService } from "./myservice";

let myService = createMyService();

export const allServices = {
  myService
};

I think I have found a bug. In prototyping I am tearing down app and infrastructure (cluster, db) stacks, but leaving up the identity stack (gcp). It seems roles are disappearing from BOTH pulumi related gcp service accounts, and NON-pulumi related service accounts. We have not seen this issue prior to pulumi and so I am correlating it with my activity in the same gcp project.

Does something in pulumi cli keep overwriting my

~/.kube/config

? I use gcloud to setup auth access key and it keeps disappearing. I could be doing this somewhere but wanted to rule out the cli

I'm a bit confused about how [organizations, ]stacks and projects are namespaced. My expectation was that stacks are namespaced by project, but in reality they appear to be global. Reading https://pulumi.io/reference/organizing-stacks-projects.html , is it best practice to name your stacks like

project-name/environment-name

? I'm using the filesystem backend, it that's in any way relevant.

Is there a way to manually register stack outputs other than (for i.e. typescript) exporting at the top level.

it seems like some of the example code/documentation is missing on this property https://pulumi.io/reference/pkg/nodejs/@pulumi/aws/apigateway/#MethodArgs-requestParameters

What could it be? Debugging

<http://github.com/pulumi/pulumi|github.com/pulumi/pulumi>

on branch

v0.17.4

directly get’s the

readerr = EOF

(in

pkg/resource/plugin/plugin.go

).

/usr/local/bin/pulumi-language-nodejs 127.0.0.1:58785

returns a port number, as intended (just did

brew reinstall pulumi

).

just found out through failed deploy, that if you deploy a stack, then destroy it, then later redeploy the same stack, it keeps track of what version of pulumi/plugins that were used last time, and re-downloads and re-uses the old one?

Hi, how do I move a stack from my own personal account to an organization?

Hey i got this error trying to do a

pulumi up

, I got the

You must specify exactly two subnets because you've set zone count to two.

trying to deploy a AWS Elasticsearch service

Is there a known issue in regards to pulumi.kubernetes.helm.v2.Chart not rendering multiple components per helm template file?

Has anyone gotten the Pulumi Github App to work with buildkite (http://buildkite.com/)? I see it in the Github checks, but I haven’t seen the Pulumi bot actually make a PR comment yet. I tried to reverse engineer the environment variables that I need to set by looking at https://sourcegraph.com/search?q=repo:%5Egithub%5C.com/pulumi++%22PULUMI_CI%22#3 In my buildkite builds, I use the following script to set up the env vars:

#!/usr/bin/env bash

set -ex

cd "$(dirname "${BASH_SOURCE[0]}")/.."

if [ "$BUILDKITE_PULL_REQUEST" == "false" ]; then
    export PULUMI_CI_BUILD_TYPE=push
else
    export PULUMI_CI_BUILD_TYPE=pull_request
    export PULUMI_CI=pr
fi

export PULUMI_CI_BUILD_ID=$BUILDKITE_BUILD_ID
export PULUMI_CI_BUILD_URL=$BUILDKITE_BUILD_URL

In the build step that actually runs

pulumi preview --diff

, I can see that

PULUMI_CI_BUILD_TYPE == pull_request

and

PULUMI_CI == pr

. Is there anything else that I need to set?

am trying to use pulumi with k8s to install Knative + Isito

hit with this issue

any thoughts to skip duplicates during

pulumi up

?

@creamy-potato-29402 ^^

Hey, i'm trying to replicate some behavior of Skaffold using pulumi. I'm trying to deploy a few k8s deployments/services and then port forward them to the local machine using

kubectl port-forward

- except i'm trying to do all of this within pulumi so that a dev can just do a

pulumi up

and everything runs in their local minikube with automatic port forwarding. I don't suppose this is a supported use-case and i've just been hacking around trying to block pulumi up from exiting so that I can spawn the port-forward commands from nodejs. Has anyone else tried something like this? I guess i need a feature like a "post deployment callback" or a way to run before/after code and potenticall re-run pulumi (i.e. a watch mode). Should i just write a wrapper for pulumi?

@great-byte-67992 - IMHO you can use the

ClusterIP

transformation and then use the

minikube tunnel

command so that you can reach your pods cluster ip from the host machine

After updating to Pulumi AWS 0.18 I am still getting the "A duplicate Security Group rule was found on" when trying to assign a security group to an application load balancer. It looks like the load balancer creates its own security group and the one I am trying to get it to use just gets created along side it. However if I try and not assign any security groups to the load balancer it will not create it's own and gives me the "ValidationError: A security group must be specified". Am I doing something wrong or is this a bug?

Hey, it’s their a way to move a pulumi state to another login. For now, it’s on my personal account and i will need to move it the company one?

Another question, I know in

helm

we can ovveride a variable value in the command line. It’s their a way to do this in pulumi. I got a stack by branch… i want the version of the main app to be the SHA version… in helm we are doing something like

--set-string image.tag ${SHA}

.. what is the best way to do something like this in pulumi?

@creamy-potato-29402 @white-balloon-205 Guys, there are lot of open issue injunction with HELM/K8s Charts install. Namespace issue, now i had to handle capability issue....These come from the separated backend. "helm template" uses its own engine and "helm install" uses the tiller. We would have an idea with my college @cold-coat-35200. Can you guys put an option into the chart resource for example: templateBackend: "tiller|template" => if we use tiller, helm install --dry-run --debug can generate the resource files, I think...maybe it's not easy to parse, but should not be impossible...it could be a good option to solve a lots of issue in that case the pulumi client can reach the particular tiller to ask for a proper output. K8s does the same with its API (it's quite new: https://kubernetes.io/blog/2019/01/14/apiserver-dry-run-and-kubectl-diff/ ) it should be the same story with tiller. What do you think? Bullshit? 🙂

is there an equivalent to terraform's lifecycle { ignore_changes = [] } ?

is there a flag to disable validation for @pulumi.kubernetes.yaml.ConfigFile? Working with an extension with some CRD's that don't seem to validate out of the box currently: https://github.com/jetstack/cert-manager/issues/1143

what are the advantages of creating a ComponentResource over just creating a function that creates a bunch of resources?

I need to incorporate a shell command to

htpasswd

to create a basic auth token prior to creating a secret with that token, the equivalent of

htpasswd -cb ${FILE} admin@${DOMAIN} ${TRAEFIK_PW}

kubectl create secret generic \
    ${NAME} \
    --from-file=${FILE} \
    --namespace=${TRAEFIK_NAMESPACE}

can I use a promise or other to make this happen?

Hi, is there any plan to bump pulumi version for cloudflare provider?