pulumi-community #general

Docs

Join the conversation Join Slack

Channels

general

ambitious-helmet-24352

10/30/2019, 8:34 PM

Is there specific reference to istio from pulumi library ?

breezy-butcher-78604

10/31/2019, 5:41 AM

is it possible to specify a colour for each stack in the pulumi console. eg would it be possible to have dev be a different colour to staging?

nice-cat-91582

10/31/2019, 11:50 AM

Hi folks - I'm trying to share an AWS IAM role between two different projects, but cannot figure out the correct syntax for making this work

nice-cat-91582

10/31/2019, 11:50 AM

I'm not quite sure what to pass into

iam.Role.get()

in order to actually get the role from a different policy. I have the ARN/URN/Name/Id all easily available, it's just a matter of what to do with those. Anyone know the right way to make that work?

breezy-mechanic-41259

10/31/2019, 1:19 PM

Hi, I would like to create a meetup about pulumi in Paris (France) , anybody in Paris interested in talking of pulumi in a bar ? 🙂

billowy-laptop-45963

10/31/2019, 3:31 PM

While importing aws resources that were originally created with ansible, I ran into a weird case where I can import a RoleAttachment fine, but subsequent pulumi ups what to do a replace/import-replacement.

pulumi refresh

shows no changes. If I remove the import: from the resource

pulumi up

shows no changes. Is this normal behaviour? Will this cause infrastructure changes? Can I get to a point where

pulumi up

doesn't return changes without removing the import?

elegant-crayon-4967

10/31/2019, 6:03 PM

easy question...when creating an EKS cluster, Pulumi seems to tack on random characters at the end, I suppose to keep the cluster name unique. Is there a place where I can set the cluster name and omit the random postfix of characters?

some-carpenter-53382

11/01/2019, 7:12 AM

is there an "open-source" or "free tier" of pulumi where I can manage and templatize my k8s manifests and configs?

some-carpenter-53382

11/01/2019, 7:12 AM

I'd like to use terraform to setup the EKS cluster, but then use Pulumi in place or helm or kustomize

some-carpenter-53382

11/01/2019, 7:59 AM

is pulumi generally used for CD? I'm currently looking into ArgoCD, Tekton and Spinnaker for CD; I wonder how Pulumi's CD compares

rapid-ram-37207

11/01/2019, 9:44 AM

Hi everyone, I'm still stuck on this : https://pulumi-community.slack.com/archives/CJ909TL6P/p1572375960100600 Anybody has any suggestion, please ?

nice-cat-91582

11/01/2019, 10:41 AM

Is there any good way to apply a tag to all resources created by a project? I'd like to tag all of my AWS stuff with the name of the Pulumi stack that creates it

👍 1

better-rainbow-14549

11/01/2019, 1:38 PM

Have there been any changes to secrets in 1.4.0? I've started getting fails on CI without any other changes, the same stacks / state work fine locally.

error: decrypting secret value: failed to decrypt: incorrect passphrase, please set PULUMI_CONFIG_PASSPHRASE to the correct passphrase

It's set correctly... the only slightly unusual thing is it contains lots of weird characters like $?`>[]' etc and ends in a semi-colon but this hasn't changed, only the pulumi version.

big-potato-91793

11/01/2019, 2:03 PM

Hey, which version of node is recommanded for pulumi?

alert-beard-9601

11/01/2019, 4:00 PM

I am trying to save a private key with

--

at the start and pulumi's cli is interpreting that as a flag. Is there a way to get around that? I need to save it as a secret

billowy-laptop-45963

11/01/2019, 4:24 PM

Has anyone used pulumi import extensively to import ansible created resources or cloudformation created resources? If so do you recommend it? Any caveats? Any tips/tricks?

billowy-laptop-45963

11/01/2019, 4:25 PM

On a related question, if I want to completely abandon all resources managed by pulumi I can simply do

pulumi stack rm --force -y STACKNAME

right? This never touches actually deployed resources?

ambitious-ram-5811

11/01/2019, 9:32 PM

I have a Philosophical Pulumi Question™ - I have an infra project that has two different scripts to instantiate; one is a development-based one that spins up a bunch of Docker containers, and one is a production one that sets up AppService and like, a managed DB in Azure

ambitious-ram-5811

11/01/2019, 9:32 PM

Are those the same Pulumi "project" but different Stacks?

☝️ 1

ambitious-ram-5811

11/01/2019, 9:32 PM

Or are those better managed by two separate Pulumi.yamls

ambitious-ram-5811

11/01/2019, 9:33 PM

(I realize that the real answer is, "Why not just use the production one for all your devs!" and if I wasn't so cheap and just one person, that'd be a much better solution 😅)

ambitious-ram-5811

11/01/2019, 10:00 PM

I think that you have to use two separate projects, because

Pulumi.yaml

at the end of the day defines the script that will be run

ambitious-ram-5811

11/01/2019, 10:01 PM

You can't be like

pulumi up -s ./path/to/index.js

or sth

tall-terabyte-42834

11/01/2019, 11:04 PM

Hi pulumi, I'd like to know is it possible to

protect

a resource without having to run

pulumi up

? i.e. to add the

protect: true

to something directly. More context on why in the thread:

ambitious-ram-5811

11/02/2019, 2:33 AM

Has anyone ever managed to set up an Azure VM that has public key authentication?

ambitious-ram-5811

11/02/2019, 2:34 AM

(i.e. used

osProfileLinuxConfig.sshKeys

)

ambitious-ram-5811

11/02/2019, 2:34 AM

It always barfs out with

InvalidParameter" Message="The value of parameter linuxConfiguration.ssh.publicKeys.keyData is invalid.

ambitious-ram-5811

11/02/2019, 2:34 AM

I'm using the output of

ssh-keygen -e -f ./path/to/public-key.pub

ambitious-ram-5811

11/02/2019, 2:47 AM

Alright

ambitious-ram-5811

11/02/2019, 2:48 AM

So the answer is, that you must use

-t rsa -b 2048

when you run

ssh-keygen