https://pulumi.com logo
Join the conversationJoin Slack
Channels
announcements
automation-api
aws
azure
blog-posts
built-with-pulumi
cloudengineering
cloudengineering-support
content-share
contribex
contribute
docs
dotnet
finops
general
getting-started
gitlab
golang
google-cloud
hackathon-03-19-2020
hacktoberfest
install
java
jobs
kubernetes
learn-pulumi-events
linen
localstack
multi-language-hackathon
office-hours
oracle-cloud-infrastructure
plugin-framework
pulumi-cdk
pulumi-crosscode
pulumi-deployments
pulumi-kubernetes-operator
pulumi-service
pulumiverse
python
registry
status
testingtesting123
testingtesting321
typescript
welcome
workshops
yaml
Powered by Linen
general
  • q

    quiet-wolf-18467

    10/25/2019, 11:31 AM
    https://github.com/pulumi/pulumi/issues/2791
  • q

    quiet-wolf-18467

    10/25/2019, 11:31 AM
    May ... I've not had a build green since May 😞
  • q

    quiet-wolf-18467

    10/25/2019, 1:58 PM
    I'm trying to use a secret as the kubeconfig for the k8s.Provider, but it keeps failing. Does anyone know what I am doing wrong? 😞
    const kubernetesProvider = new k8s.Provider("metrics", {
      kubeconfig: config.requireSecret("kubeconfig")
    });
    g
    • 2
    • 22
  • q

    quiet-wolf-18467

    10/25/2019, 2:12 PM
    I'm now doing
    pulumi config get kubeconfig > kubeconfig
    and loaded this file during
    pulumi up
    . Please tell me there's a better way 🙂
  • q

    quiet-wolf-18467

    10/25/2019, 2:28 PM
    OK. Found some sort of problem 😕
    const kconfig = fs.readFileSync("../kubeconfig").toString();
    const kubernetesProvider = new k8s.Provider("metrics", {
      kubeconfig: kconfig
    });
    Fails:
    error: unable to load Kubernetes client configuration from kubeconfig file: invalid configuration: no configuration has been provide
    But
    kubectl get pods -n community --kubeconfig=./kubeconfig
    works 😞
  • i

    incalculable-diamond-5088

    10/25/2019, 3:14 PM
    Trying to create a lambda for handling S3 object creation:
    transcriptionJobs.bucket.onObjectCreated('publish', async ev => {
      const s3Client = new aws.sdk.S3()
      const kinesisCliet = new aws.sdk.Kinesis()
      for (const { s3: { bucket, object } } of ev.Records || []) {
        console.log({ bucket, object })
      }
    })
    and getting an error:
    Error: failed to register new resource publish [aws:lambda/function:Function]: 2 UNKNOWN: failed to compute asset hash: asset path 'node_modules/@lemonade/infra-common' is a directory; try using an archive
    w
    • 2
    • 3
  • q

    quiet-wolf-18467

    10/25/2019, 3:36 PM
    Arch AUR updated to 1.4.0 🙂 https://aur.archlinux.org/packages/pulumi-bin/
    🙌 1
    👍 1
  • q

    quick-action-34599

    10/25/2019, 3:50 PM
    Following this guide: https://www.pulumi.com/docs/guides/crosswalk/aws/ecs/#creating-an-auto-scaling-group-for-ecs-cluster-instances I am calling
    createAutoScalingGroup
    on an
    awsx.ecs.Cluster
    . I get the error
    Property AvailabilityZones cannot be empty
    . I don’t see an option for setting
    availabilityZones
    through
    createAutoScalingGroup
    .
    l
    a
    • 3
    • 19
  • a

    adamant-dress-73325

    10/25/2019, 4:18 PM
    Is there an easier way to copy a stack config with secrets? I am creating a new stack and right now I just copy the yaml and redo all the secret values with
    pulumi config set --secret ...
    w
    • 2
    • 1
  • b

    bored-cartoon-33302

    10/25/2019, 4:28 PM
    what is the Windows PS equivalent to the instructions at https://www.pulumi.com/docs/get-started/aws/review-project/
    c
    • 2
    • 8
  • c

    cool-egg-852

    10/25/2019, 5:20 PM
    Does pulumi do anything to change the output so that CI systems like CodeFresh don’t kill the build due to inactivity?
  • q

    quick-action-34599

    10/25/2019, 5:25 PM
    Is there any way one could re-deploy an existing ECS service with pulumi, like
    aws ecs update-service
    ? The image is being built by CI not using pulumi
  • e

    early-intern-90238

    10/25/2019, 7:01 PM
    Ok this should be easy but how in the world do I get a value out of the Configuration values?
    • 1
    • 3
  • h

    high-morning-18773

    10/25/2019, 10:35 PM
    is there any example of codebuild project for githhub private repos. The example works fine when using public repos. I did configure oauth however i get timeout when building code in private repos. IF i configure the same job from ui it all seems to work fine.
  • b

    bored-cartoon-33302

    10/26/2019, 12:38 PM
    Can anyone confirm if pulumi actually works in Windows? Here is what I tried to get started: choco install pulumi (OR upgrade) pulumi version (result: v1.4.0) python3 https://console.aws.amazon.com/iam/ created user, downloaded csv Download the AWS CLI MSI installer for Windows (64-bit) aws --version (result: aws-cli/1.16.266 Python/3.6.0 Windows/10 botocore/1.13.2) python --version (Python 3.8.0) pip3 --version (result: pip 19.3.1) aws configure (key from csv) mkdir quickstart (pulumi-qs) cd quickstart pulumi new aws-python pip install virtualenv virtualenv -p python3 venv virtualenv venv . .\venv\Scripts\activate pip3 install -r requirements.txt Result: Building wheel for pulumi-aws (setup.py) ... done Created wheel for pulumi-aws: filename=pulumi_aws-1.7.0-cp38-none-any.whl size=1544097 sha256=xxx Stored in directory: C:\Users\gunna\AppData\Local\pip\Cache\wheels\e7\18\87\id Building wheel for grpcio (setup.py) ... error ERROR: Command errored out with exit status 1: command: 'c:\users\gunna\pulumi-qs\venv\scripts\python.exe' -u -c 'import sys, setuptools, tokenize; sys.argv[0] = '"'"'C:\\Users\\gunna\\AppData\\Local\\Temp\\pip-install-mf51566e\\grpcio\\setup.py'"'"'; file='"'"'C:\\Users\\gunna\\AppData\\Local\\Temp\\pip-install-mf51566e\\grpcio\\setup.py'"'"';f=getattr(tokenize, '"'"'open'"'"', open)(file);code=f.read().replace('"'"'\r\n'"'"', '"'"'\n'"'"');f.close();exec(compile(code, file, '"'"'exec'"'"'))' bdist_wheel -d 'C:\Users\gunna\AppData\Local\Temp\pip-wheel-4x1bc1ec' --python-tag cp38 cwd: C:\Users\gunna\AppData\Local\Temp\pip-install-mf51566e\grpcio\
  • e

    early-intern-90238

    10/26/2019, 2:35 PM
    How would I call an async method that I need to export as a value in my stack?
    w
    • 2
    • 5
  • e

    early-intern-90238

    10/26/2019, 8:34 PM
    Would it be really difficult to add an attribute to an export so it doesn't show up in output?
    w
    • 2
    • 1
  • e

    early-intern-90238

    10/26/2019, 10:01 PM
    I feel like the Docker container used for pulumi/actions is way too large? Why is it over 500MB? I'm gonna see if I can fork that and get it running on Alpine or something...
    q
    s
    • 3
    • 8
  • e

    early-intern-90238

    10/26/2019, 10:11 PM
    Another question, is there a way to specify a wildcard in ci.json? For instance if I want to deploy by using Releases in GitHub it ends up throwing an exception No stack configured for branch "refs/tags/v1.0.0": "<stack-name>", but in reality this could just map to master branch...
    w
    • 2
    • 15
  • w

    wet-sunset-4939

    10/28/2019, 11:23 AM
    HI, I just started with Pulumi today with Azure. However, seems .net Core is not supported. Please share it any workaround?
    b
    t
    r
    • 4
    • 10
  • w

    wonderful-daybreak-2504

    10/28/2019, 12:17 PM
    Any chance to have https://github.com/pulumi/pulumi-kubernetes/pull/666 merged? Maybe we can split it into two and at least merge the extended functionality of
    transformations
    ? it's a blocker for using helm charts currently...
  • r

    rhythmic-finland-36256

    10/28/2019, 5:10 PM
    [RESOLVED] Using
    pulumi.kubernetes.ConfigFile
    and disabling kubectl validation for CRD unknown fields (relating to
    cert-manager
    )
    • 1
    • 2
  • r

    rhythmic-finland-36256

    10/28/2019, 5:40 PM
    Is there a generic
    k8s
    resource I can use to create an object of a CRD without implementing a full
    pulumi custom resource
    ? Looking into specifying some
    cert-manager
    `Issuer`s and `Certificate`s in code without just dropping everything in a yaml file and using
    ConfigFile
    for it.
    g
    • 2
    • 3
  • w

    witty-yacht-82771

    10/28/2019, 5:43 PM
    Hey all, LOVING the project, been porting my infra over to it as fast as I can. Question (I don’t write much JS/TS ordinarily): is there a cleaner way to make variables from the main
    index.ts
    available for testing? I’m currently exporting them as needed and importing in my tests, but obviously that really clutters up each stack’s output variables.
    w
    • 2
    • 2
  • t

    thankful-optician-22583

    10/28/2019, 6:33 PM
    Hey guys, I am using Gitlab right now and my Runner is not able to assume a role that I pass it. Instead it uses the system-node role.
  • t

    thankful-optician-22583

    10/28/2019, 6:34 PM
    I was wondering if any of you had this problem and how you fixed it?
  • t

    thankful-optician-22583

    10/28/2019, 7:40 PM
    When I run pulumi up from a pod within an eks cluster the pod uses the role that is associated with the worker node (EC2 instance) to deploy applications. How do I go about setting up a service account for pulumi execution. My runner has a service account but I am not sure how to run pulumi up with the service account.
  • b

    busy-umbrella-36067

    10/28/2019, 8:23 PM
    Is the Go test harness supposed to fail on different resource types that have the same URN?
    panic: fatal: An assertion has failed: Two resources ('urn:pulumi:fuckit::XXXXX::kubernetes:apps/v1:Deployment::squid' and 'urn:pulumi:fuckit::XXXXX::kubernetes:core/v1:Service::squid') aliased to the same: 'urn:pulumi:fuckit::XXXXX::kubernetes:apps/v1:Deployment::squid'
    g
    • 2
    • 1
  • e

    elegant-crayon-4967

    10/28/2019, 9:35 PM
    Is there anyway to move a stack to a different project?
    c
    • 2
    • 5
  • e

    early-musician-41645

    10/28/2019, 11:42 PM
    I'm running a
    awsx.ec2.Vpc.fromExistingIds
    and it works as expected in a different project.
    Error: invocation of aws:ec2/getVpc:getVpc returned an error: invoking aws:ec2/getVpc:getVpc: no matching VPC found
    Is there a flag or something I'm missing? The VPC id definitely exists.
    w
    • 2
    • 9
Powered by Linen
Title
e

early-musician-41645

10/28/2019, 11:42 PM
I'm running a
awsx.ec2.Vpc.fromExistingIds
and it works as expected in a different project.
Error: invocation of aws:ec2/getVpc:getVpc returned an error: invoking aws:ec2/getVpc:getVpc: no matching VPC found
Is there a flag or something I'm missing? The VPC id definitely exists.
w

white-balloon-205

10/28/2019, 11:45 PM
Only thing I can think of is that you are somehow in a different account? Are you passing explicit provider information to either of the calls? Have you passed the same configuration into both stacks for the AWS role/account to use?
e

early-musician-41645

10/28/2019, 11:46 PM
I'm just using the account setup from the shell. When I do
sts get-caller-identity
it is set up properly.
How can I log the current aws role/account used by Pulumi?
w

white-balloon-205

10/28/2019, 11:50 PM
You can do something like:
aws.getCallerIdentity().then(console.log)
e

early-musician-41645

10/28/2019, 11:52 PM
the logged ID looks exactly right, and the vpcId I'm using looks right. Here's the code:
const vpcId = tentacleConfig.require("vpcId");
console.log("vpcId: "+vpcId);
export const vpc = awsx.ec2.Vpc.fromExistingIds("tentacle-vpc", {
  vpcId: vpcId,
});
I thought I had the syntax wrong, but the same code in another project works okay
w

white-balloon-205

10/28/2019, 11:55 PM
Pretty hard to tell for sure - seems it almost has to be that somehow you are using a different account. To debug further - you could run
TF_LOG=TRACE pulumi up --debug
(and may need to pipe that output to a file as it will be quite verbose). You can then see the exact calls being made to AWS.
e

early-musician-41645

10/28/2019, 11:57 PM
I see the
DescribeVpcsResponse
and it has the exact same
vpcId
that I'm using in the config... 😕
Although, I do see an earlier call with an empty
vpcSet
, but later calls with it filled in
View count: 1