https://pulumi.com logo
Join the conversationJoin Slack
Channels
announcements
automation-api
aws
azure
blog-posts
built-with-pulumi
cloudengineering
cloudengineering-support
content-share
contribex
contribute
docs
dotnet
finops
general
getting-started
gitlab
golang
google-cloud
hackathon-03-19-2020
hacktoberfest
install
java
jobs
kubernetes
learn-pulumi-events
linen
localstack
multi-language-hackathon
office-hours
oracle-cloud-infrastructure
plugin-framework
pulumi-cdk
pulumi-crosscode
pulumi-deployments
pulumi-kubernetes-operator
pulumi-service
pulumiverse
python
registry
status
testingtesting123
testingtesting321
typescript
welcome
workshops
yaml
Powered by Linen
general
  • p

    plain-park-4925

    06/05/2020, 8:43 PM
    I'm very new to Pulumi.. I've used it for a total of about 1 hour or so.. haha.. Does anyone know how I can override the default AWS S3 endpoint that Pulumi uses? I found this documentation where is shows how to override the AWS Kinesis and DynamoDB endpoints, but that's it... I took a guess and tried doing this.. Although it didn't error out, I don't think it actually worked as expected..?
    pulumi config set s3Endpoint: <http://localhost:4566>
    g
    • 2
    • 19
  • n

    numerous-garage-30550

    06/05/2020, 8:49 PM
    I'd like to create a few Azure Service Principals in Pulumi program and link them with other resources. Somebody told me that this is possibile in Pulumi, but I failed to find it in the documentation and grepping sources code of azure provider didnt give me a clue 😞
    a
    • 2
    • 5
  • n

    numerous-garage-30550

    06/06/2020, 12:30 AM
    Example not compiling - challenge with declaring output values for dynamic.Resource, aren't they supposed to be def-initialized in ctor? (adding details to thread)
    • 1
    • 3
  • f

    future-magazine-24902

    06/06/2020, 6:26 AM
    Creating Azure secret using Typescript add 8 random chars at the end od the resource name. Anyone knows a work around this?
  • b

    blue-businessperson-90950

    06/06/2020, 7:05 AM
    It is written in the doc
  • b

    blue-businessperson-90950

    06/06/2020, 7:06 AM
    https://www.pulumi.com/docs/intro/concepts/programming-model/#autonaming
  • b

    bumpy-needle-576

    06/06/2020, 10:11 AM
    Hey guys! https://github.com/pulumi/pulumi/issues/2707 is there a way to adopt this feature? 😄
  • g

    gray-helicopter-10230

    06/06/2020, 3:49 PM
    Hi there, I am generating random secrets for things like database users, keycloak admin etc. If I do this just like this in my script, each run will update all secrets in my entire installation, which is a bit disruptive. Is there some way to say e.g. "if RDS is already running, don't generate a new password"? Or maybe even some out of the box functionality for generating random secrets/passwords that takes this into account?
    s
    a
    • 3
    • 5
  • h

    helpful-processor-86468

    06/06/2020, 6:50 PM
    How can i transform 
    pulumi.StringOutput
     to simple 
    string
    ? I'm constructing dynamically gcp subscription which has a 
    PushEndpoint
     parameter that takes 
    string
     instead of 
    pulumi.String
      and I'm blocked.
    a
    • 2
    • 7
  • h

    hundreds-musician-51496

    06/06/2020, 7:59 PM
    Does the install script (
    curl  ...
    ) allow me to install a specific version or is it always the latest?
    b
    • 2
    • 1
  • a

    alert-restaurant-79151

    06/06/2020, 10:13 PM
    For AWS cost tracking; how do I assign a tag to every resource on a stack?
    g
    w
    s
    • 4
    • 7
  • a

    average-receptionist-65239

    06/07/2020, 3:13 AM
    How can secrets be shared across stacks?
  • l

    little-dentist-8150

    06/07/2020, 7:01 AM
    Hi, I started using Pulumi few days ago and was already been able to create a stack I wasn’t able to create on Cloud Formation. So that’s a good start :) However, I have an issue with a stack deploying ECS service with blue/green deployment using aws.ecs.Services(). After the creation of the service in AWS, even if I didn’t make any change to the existing service, Pulumi detects there is an update to the service.(probably because the TG or task definition revision was changed on AWS) Pulumi up -> the service is created. Running Pulum up without making any changes -> an update is detected on the service. Because of AWS limitations, I can’t update an ecs service with a CODE_DEPLOY deployment. (“InvalidParameterException: Unable to update network parameters on services with a CODE_DEPLOY deployment controller. Use AWS CodeDeploy to trigger a new deployment.”) This actually forces me to delete all existing services and recreate them only to make a change or create a new service. I tried to use ignoreChanges and transformations, but nothing changed: ignoreChanges: ['desiredCount',   'loadBalancers',   'taskDefinition',   ], transformations: [     args => {     if (args.type === 'aws:ecs/service:Service') {       return {       props: args.props,       opts: pulumi.mergeOptions(args.opts, {         ignoreChanges: [         'desiredCount',         'loadBalancers',         'taskDefinition',         ],       }),       };     }     return undefined;     },   ] Related issues: https://github.com/pulumi/pulumi/issues/3569 https://github.com/pulumi/pulumi/issues/3974 Can you please advice what can solve this issue? Thank you!
    g
    • 2
    • 1
  • h

    helpful-processor-86468

    06/07/2020, 4:31 PM
    when dynamic providers will be available in golang?
  • r

    rapid-lamp-12050

    06/07/2020, 5:15 PM
    hey, what is the CI story when using?
    renderYamlToDirectory
    const provider = new k8s.Provider('k8s-provider', {
      renderYamlToDirectory: 'kubernetes',
    });
    if we gitignore output directory and run pulumi up on build pipeline, then it will only write files that have changed since last
    pulumi up
    command?
    g
    • 2
    • 7
  • m

    miniature-leather-70472

    06/07/2020, 6:30 PM
    I'm just getting going with Pulumi, I'm trying to create a component which takes a list of items which is basically the argument list for an Azure Network Security Group Rule, minus the name and parent Security Group reference, I'm trying to figure out whether I should be creating my own class for this, or can I just use the existing Pulumi class? Seems like a waste to redeclare a class that is almost the same, but I think the Securty Group reference is required for the Pulumi class
    b
    r
    • 3
    • 6
  • v

    victorious-xylophone-55816

    06/07/2020, 7:46 PM
    Can anyone speak to their workflows for Local Dev -> Staging/Prod with Pulumi? I was testing out using Pulumi to manage local Docker container instances, which I could then push to something like Cloud Run/Fargate for the
    staging/prod
    environments, but I can't seem to find any content online of people using it this way. Rather than use
    docker-compose
    for local, and maintaining that setup (with all the env vars etc) it seems like a better flow to have everything inside of Pulumi, and just toggle the target based on environment. But I couldn't seem to figure out how to get Pulumi to force a re-deploy locally of a Docker container from the
    stack
    , so I think maybe this isn't an intended use? Any experience/input would be greatly appreciated 🙏
    h
    a
    • 3
    • 3
  • h

    helpful-advantage-49286

    06/07/2020, 7:46 PM
    Question, how can you move a resource between projects/stacks?
    l
    • 2
    • 4
  • p

    plain-park-4925

    06/07/2020, 8:32 PM
    This maybe more of a Python question than Pulumi itself..but I'm trying to instantiate the AWS Provider class and would like to overwrite the s3 endpoint. I'm following the Pulumi sample on Github for creating a static S3 bucket. Whenever I run
    pulumi up
    it throws a stack trace and says "NameError: name 'ResourceOptions' is not defined".. Can anyone point me in the right direction? Here's a snippet.
    import json
    import mimetypes
    import os
    
    from pulumi import export, FileAsset
    from pulumi_aws import s3, Provider
    
    provider = Provider("provider", region="us-east-1", endpoints="<http://localhost:4566>")
    
    web_bucket = s3.Bucket('jon-pulumi-localstack-bucket', website={"index_document": "index.html"}, opts=ResourceOptions(provider=provider))
    l
    • 2
    • 23
  • l

    little-cartoon-10569

    06/07/2020, 11:37 PM
    I've just come across the mixins in aws.cloudwatch's nodejs SDK. Awesome stuff, solves my problem perfectly. It doesn't seem to exist in any of the other SDKs. It also doesn't map to the Terraform provider, and it creates a nice ComponentResource (based on the Lambda mixin). Does anyone know if this in is the aws module for mostly historical reasons? It seems like it (and the Lambda mixins) are perfectly suited to the awsx module. Also, are there other extended resources like this? These are the sorts of things I use Pulumi for, I'm collecting them :)
    f
    c
    • 3
    • 4
  • f

    famous-jelly-72366

    06/08/2020, 7:38 AM
    how to use StackReferences with e.g. s3 backend?
    a
    r
    • 3
    • 10
  • r

    rhythmic-finland-36256

    06/08/2020, 5:13 PM
    Proposed way of integrating some provider that has a terraform provider but no pulumi integration (yet)?
    b
    • 2
    • 26
  • i

    icy-jordan-58549

    06/08/2020, 8:27 PM
    Can someone expand on this topic:
    Pulumi has deep support for cloud native technologies, like Kubernetes, and supports advanced deployment scenarios that cannot be expressed with Terraform. This includes Prometheus-based canaries, automatic Envoy sidecar injection, and more. Pulumi is a proud member of the Cloud Native Computing Foundation (CNCF).
    why you can’t do it using terraform? Thanks
    g
    • 2
    • 4
  • w

    wide-boots-39023

    06/09/2020, 12:59 AM
    hi, with typescript, i know it is possible to reference resource outputs in lambda functions, so i can do
    const file = new aws.s3.BucketObject("filename", {...});
    and later in a lambda access it using
    file.id.get()
    . is it possible to create an array of resources and access them from a lambda too? when i try the naive way of pushing resources into an array it seems to turn up empty thank you
  • a

    average-receptionist-65239

    06/09/2020, 5:31 AM
    What's the
    template|url
    parameter refered to in the
    pulumi up
    man page?
    pulumi up [template|url] [flags]
    m
    • 2
    • 2
  • c

    cold-iron-6673

    06/09/2020, 7:23 AM
    Quick question. Is it possible to read the config for an existing azure cs function somehow and use this in a new pulumi project
    g
    • 2
    • 1
  • f

    faint-accountant-59646

    06/09/2020, 8:11 AM
    Hi! How can I remove a resource listed in pulumi stack which does no longer exist? In particular I am stuck because an AWS Service (which does not exists) cannot be found by pulumi because it doesn't have access to the assigned cluster (because this also doesn't exist anymore). Pulumi refresh crashes to update the service because of the missing cluster. I want to destroy the whole stack anyways, but there are still 80 something more resources I do not want to manually delete. Is there any way I can tell pulumi to ignore that non-existing Service it tries to refresh ? (btw. pulumi state delete <service urn> tells me the service does not exist
    a
    g
    • 3
    • 4
  • f

    fast-ice-1848

    06/09/2020, 8:37 AM
    Hi all, i'm using Pulumi to setup AKS on our gov cloud and faced the error of
    Addon kubeDashboard is not supported in this cloud env
    . Disable this addon doesn't work. Is there any about this?
    a
    • 2
    • 2
  • g

    gray-helicopter-10230

    06/09/2020, 9:36 AM
    Hi there, how are people dealing with more closed environments? E.g., you are setting up AWS RDS or the EKS Kubernetes API only reachable from within a VPC and you want to install something there? Does Pulumi have something e.g. for jumphosts or port forwarding?
    l
    b
    • 3
    • 3
  • m

    millions-furniture-75402

    06/09/2020, 3:20 PM
    Is there a suggested way to see if a secret already exists in aws secrets manager, if not populate it with a random password? I don’t want to overwrite existing existing secrets.
    e
    • 2
    • 3
Powered by Linen
Title
m

millions-furniture-75402

06/09/2020, 3:20 PM
Is there a suggested way to see if a secret already exists in aws secrets manager, if not populate it with a random password? I don’t want to overwrite existing existing secrets.
e

echoing-breakfast-73834

06/09/2020, 6:42 PM
I'm doing something similar for Cloudflare zones. If you use the AWS library (i.e. boto3 in python) you can get a list of secrets, and conditionally create the secret resource if it doesn't exist or do getsecret (https://www.pulumi.com/docs/reference/pkg/aws/secretsmanager/getsecret/) to retrieve info if it does
m

millions-furniture-75402

06/09/2020, 8:51 PM
I was hoping to avoid also using the AWS SDK, but if that’s our only solution, I guess it will have to do. Thank you.
e

echoing-breakfast-73834

06/09/2020, 9:47 PM
you can try
GetSecret
with a try catch around it but not sure if that'll work if it doesnt exist - pulumi might just error
View count: 1