pulumi-community #general

cool-egg-852

10/25/2019, 5:20 PM

Does pulumi do anything to change the output so that CI systems like CodeFresh don’t kill the build due to inactivity?

quick-action-34599

10/25/2019, 5:25 PM

Is there any way one could re-deploy an existing ECS service with pulumi, like

aws ecs update-service

? The image is being built by CI not using pulumi

early-intern-90238

10/25/2019, 7:01 PM

Ok this should be easy but how in the world do I get a value out of the Configuration values?

high-morning-18773

10/25/2019, 10:35 PM

is there any example of codebuild project for githhub private repos. The example works fine when using public repos. I did configure oauth however i get timeout when building code in private repos. IF i configure the same job from ui it all seems to work fine.

bored-cartoon-33302

10/26/2019, 12:38 PM

Can anyone confirm if pulumi actually works in Windows? Here is what I tried to get started: choco install pulumi (OR upgrade) pulumi version (result: v1.4.0) python3 https://console.aws.amazon.com/iam/ created user, downloaded csv Download the AWS CLI MSI installer for Windows (64-bit) aws --version (result: aws-cli/1.16.266 Python/3.6.0 Windows/10 botocore/1.13.2) python --version (Python 3.8.0) pip3 --version (result: pip 19.3.1) aws configure (key from csv) mkdir quickstart (pulumi-qs) cd quickstart pulumi new aws-python pip install virtualenv virtualenv -p python3 venv virtualenv venv . .\venv\Scripts\activate pip3 install -r requirements.txt Result: Building wheel for pulumi-aws (setup.py) ... done Created wheel for pulumi-aws: filename=pulumi_aws-1.7.0-cp38-none-any.whl size=1544097 sha256=xxx Stored in directory: C:\Users\gunna\AppData\Local\pip\Cache\wheels\e7\18\87\id Building wheel for grpcio (setup.py) ... error ERROR: Command errored out with exit status 1: command: 'c:\users\gunna\pulumi-qs\venv\scripts\python.exe' -u -c 'import sys, setuptools, tokenize; sys.argv[0] = '"'"'C:\\Users\\gunna\\AppData\\Local\\Temp\\pip-install-mf51566e\\grpcio\\setup.py'"'"'; file='"'"'C:\\Users\\gunna\\AppData\\Local\\Temp\\pip-install-mf51566e\\grpcio\\setup.py'"'"';f=getattr(tokenize, '"'"'open'"'"', open)(file);code=f.read().replace('"'"'\r\n'"'"', '"'"'\n'"'"');f.close();exec(compile(code, file, '"'"'exec'"'"'))' bdist_wheel -d 'C:\Users\gunna\AppData\Local\Temp\pip-wheel-4x1bc1ec' --python-tag cp38 cwd: C:\Users\gunna\AppData\Local\Temp\pip-install-mf51566e\grpcio\

early-intern-90238

10/26/2019, 2:35 PM

How would I call an async method that I need to export as a value in my stack?

early-intern-90238

10/26/2019, 8:34 PM

Would it be really difficult to add an attribute to an export so it doesn't show up in output?

early-intern-90238

10/26/2019, 10:01 PM

I feel like the Docker container used for pulumi/actions is way too large? Why is it over 500MB? I'm gonna see if I can fork that and get it running on Alpine or something...

early-intern-90238

10/26/2019, 10:11 PM

Another question, is there a way to specify a wildcard in ci.json? For instance if I want to deploy by using Releases in GitHub it ends up throwing an exception No stack configured for branch "refs/tags/v1.0.0": "<stack-name>", but in reality this could just map to master branch...

wet-sunset-4939

10/28/2019, 11:23 AM

HI, I just started with Pulumi today with Azure. However, seems .net Core is not supported. Please share it any workaround?

wonderful-daybreak-2504

10/28/2019, 12:17 PM

Any chance to have https://github.com/pulumi/pulumi-kubernetes/pull/666 merged? Maybe we can split it into two and at least merge the extended functionality of

transformations

? it's a blocker for using helm charts currently...

rhythmic-finland-36256

10/28/2019, 5:10 PM

[RESOLVED] Using

pulumi.kubernetes.ConfigFile

and disabling kubectl validation for CRD unknown fields (relating to

cert-manager

)

rhythmic-finland-36256

10/28/2019, 5:40 PM

Is there a generic

k8s

resource I can use to create an object of a CRD without implementing a full

pulumi custom resource

? Looking into specifying some

cert-manager

`Issuer`s and `Certificate`s in code without just dropping everything in a yaml file and using

ConfigFile

for it.

witty-yacht-82771

10/28/2019, 5:43 PM

Hey all, LOVING the project, been porting my infra over to it as fast as I can. Question (I don’t write much JS/TS ordinarily): is there a cleaner way to make variables from the main

index.ts

available for testing? I’m currently exporting them as needed and importing in my tests, but obviously that really clutters up each stack’s output variables.

thankful-optician-22583

10/28/2019, 6:33 PM

Hey guys, I am using Gitlab right now and my Runner is not able to assume a role that I pass it. Instead it uses the system-node role.

thankful-optician-22583

10/28/2019, 6:34 PM

I was wondering if any of you had this problem and how you fixed it?

thankful-optician-22583

10/28/2019, 7:40 PM

When I run pulumi up from a pod within an eks cluster the pod uses the role that is associated with the worker node (EC2 instance) to deploy applications. How do I go about setting up a service account for pulumi execution. My runner has a service account but I am not sure how to run pulumi up with the service account.

busy-umbrella-36067

10/28/2019, 8:23 PM

Is the Go test harness supposed to fail on different resource types that have the same URN?

Copy code

panic: fatal: An assertion has failed: Two resources ('urn:pulumi:fuckit::XXXXX::kubernetes:apps/v1:Deployment::squid' and 'urn:pulumi:fuckit::XXXXX::kubernetes:core/v1:Service::squid') aliased to the same: 'urn:pulumi:fuckit::XXXXX::kubernetes:apps/v1:Deployment::squid'

elegant-crayon-4967

10/28/2019, 9:35 PM

Is there anyway to move a stack to a different project?

early-musician-41645

10/28/2019, 11:42 PM

I'm running a

awsx.ec2.Vpc.fromExistingIds

and it works as expected in a different project.

Copy code

Error: invocation of aws:ec2/getVpc:getVpc returned an error: invoking aws:ec2/getVpc:getVpc: no matching VPC found

Is there a flag or something I'm missing? The VPC id definitely exists.

thankful-optician-22583

10/28/2019, 11:47 PM

Hi, is there a way to replace strings files in pulumi like in terraform. I want to pass in a kubeconfig into a K8s provider and pass in config variables in to the string of the file:

Copy code

apiVersion: v1
preferences: {}
kind: Config
clusters:
- cluster:
    server: ${server}   
    certificate-authority-data: ${certificate-authority-data}
  name: current-cluster
contexts:
- context:
    cluster: current-cluster
    user: runner-user
  name: runner-context
current-context: runner-context
users:
- name: runner-user
  user:
    token: ${token}

wet-sunset-4939

10/29/2019, 2:35 AM

Hi All, Quick question regarding to Self-service of ServicePrincipal on Azure. Seems pulumi is not support this yet and we may need to develop a DynamicResourceProvider. So I would like to check is there anyone already implement this?

ambitious-helmet-24352

10/29/2019, 4:11 PM

Hey how to I run pulumi up on my stack while excluding certain items ?

better-rainbow-14549

10/29/2019, 5:18 PM

https://github.com/terraform-providers/terraform-provider-azurerm/issues/4747

early-musician-41645

10/29/2019, 6:35 PM

I'm trying to run this code:

Copy code

const tentacleVpcId = tentacleConfig.require("vpcId");
console.log("VPC-ID: "+tentacleVpcId);

export const tentacleVpc = awsx.ec2.Vpc.fromExistingIds("tentacle-vpc", {
  vpcId: tentacleVpcId,
});

However I get this error:

Copy code

Error: invocation of aws:ec2/getVpc:getVpc returned an error: invoking aws:ec2/getVpc:getVpc: no matching VPC found

I've checked and rechecked everything (account, credentials, resource ids, config, stack) and still no luck. I ran a

pulumi preview --debug

and I see that there's this output:

Copy code

Reading AWS VPC: {
  Filters: [{
    Name: "isDefault",
    Values: ["true"]
  }]
}

The VPC is not the default one. It's one of many VPCs. How can I make pulumi get a non-default VPC?

rich-lamp-32782

10/30/2019, 12:57 AM

Does anyone have any examples of editing K8s kube-system configmaps that aren’t being defined in IaC in pulumi? Ideally I’d like to adopt them and then append to them

better-actor-92669

10/30/2019, 9:29 AM

Hello Pulumi Community! Silly question, but how to get the actual value of pulumi output object `<pulumi.output.Output object at 0x107d985b0>`or

<pulumi_gcp.compute.ha_vpn_gateway.HaVpnGateway object at 0x107523430>

in python? I want to assign it to a variable or use it later in a script. Thank you in advance!

witty-yacht-82771

10/30/2019, 11:19 AM

Hey, question about how to check values in testing. I have the following in my `index.ts`:

Copy code

export const service = new awsx.ecs.FargateService("click-router", {
  assignPublicIp: false,
  cluster,
  subnets: pubSubnets,
  desiredCount: 2,
  taskDefinition: taskDef
});

and then in my tests, I’m trying to do:

Copy code

it("should have 2 desired instances", async () => {
    const di = await promise(service.service.desiredCount);
    expect(di).to.equal(2);
  });

I get the error that the variable

di

is undefined. How can I do tests on assigned values prior to deploying?

quiet-wolf-18467

10/30/2019, 11:45 AM

OK. I've hit an interesting snag. When GKE releases a new nodeVersion/masterVersion - this causes the dynamic provider to be "replaced" - in-turn replacing all resources that use it 😮

quiet-wolf-18467

10/30/2019, 11:46 AM

Copy code

pulumi:pulumi:Stack                                  devrel-metrics-production              
 ~   ├─ gcp:container:Cluster                             metrics                    update      [diff: ~minMasterVersion,nodeVersion]
 +-  ├─ pulumi:providers:kubernetes                       metrics                    replace     [diff: ~kubeconfig]
 +-  ├─ kubernetes:core:Namespace                         community                  replace     [diff: ~metadata,provider]
 +-  ├─ kubernetes:core:ServiceAccount                    community                  replace     [diff: ~metadata,provider]
 +-  ├─ kubernetes:<http://rbac.authorization.k8s.io:Role|rbac.authorization.k8s.io:Role>         community                  replace     [diff: ~metadata,provider]
 +-  └─ kubernetes:<http://rbac.authorization.k8s.io:RoleBinding|rbac.authorization.k8s.io:RoleBinding>  community                  replace     [diff: ~metadata,provider,roleRef,subjects]