pulumi-community #general

general

worried-plastic-45846

09/17/2020, 4:00 PM

Hello, When running

pulumi up

, I sometimes run into some issues caused by an out of sync stack.

pulumi refresh

fixes these issues. Is there any reason why systematically running
pulumi refresh
before
pulumi up
would be a bad idea? I have a CI/CD pipeline running pulumi, and am considering replacing

pulumi up

with

pulumi up -r

, but I'm afraid of unforeseen consequences.

some-chef-79525

09/17/2020, 4:25 PM

Hi all - is it possible to transfer all my stacks, etc, from one account to another? Basically, I need to change ownership.

bitter-application-91815

09/17/2020, 4:36 PM

how would one go about applying an autoscaler yaml to a kubs cluster through pulumi, like do i need to call out to kubectl via exec or something

worried-umbrella-80893

09/17/2020, 5:53 PM

Hi all, I have stacks that were previously created outside of the repo, resulting in the 'built-in' repository tags not getting applied. We've made changes to the stack since then and they still seem to not be updated. How can I reconcile existing stacks to make sure they appear in the pulumi.com UI under the proper repository?

clever-plumber-29709

09/17/2020, 8:39 PM

Should a stack rm be reflected immediately? I'm doing a stack rm, it says that the stack has been removed, but then the stack ls still shows it

brief-animal-10307

09/18/2020, 12:09 AM

Does pulumi serverless feature available for Alibaba Cloud (top cloud vendor in APAC)? If not, any plan for it?

curved-waitress-45592

09/18/2020, 1:08 AM

hi there, is there a way to Pulumi/Python without the venv mechanism that's built in? we use conda a lot and would love to stick to it.

narrow-jackal-57645

09/18/2020, 2:26 AM

Q: There are quite a number of attribures in resources that takes in a

string

instead of

Output<string>

. It makes thing quite inconvenient and hard in certain cases to reference the output of other resources. I still don't know what's the best way to cast an object of

Output<string>

string

so I ending up hardcoding the value. Any guidance is greatly appreciated.

damp-table-85095

09/18/2020, 3:30 AM

Hi. How do I tell pulumi about dependencies it doesn't pick up automatically? For example, pulumi is smart enough to redeploy a docker image if the corresponding Dockerfile changes, but it doesn't seem know to redeploy if one of the files COPYed in the Dockerfile is modified.

billowy-kangaroo-51688

09/18/2020, 3:45 AM

Helloo 😃 Can anyone tell me if & how it’s possible to use a

aws.apigatewayv2.DomainName

across AWS accounts within an organization?? I mean I could have each service setup its own domain, just curious, especially as I thought I could have

<http://api.domain.com|api.domain.com>

for everything and than deploy services via

aws.apigatewayv2.ApiMapping

🤔

narrow-jackal-57645

09/18/2020, 5:48 AM

Q: Wondering if anyone has run into this error:

Type                                Name                                              Status                   Info
     pulumi:pulumi:Stack                 clui-infrastructure-dev                           **failed**               1 error
     └─ awsx:x:ec2:Vpc                   clui-dev-vpc                                                               
        └─ awsx:x:ec2:SecurityGroup      clui-dev-fargate-sg                                                        
 +-        └─ aws:ec2:SecurityGroupRule  clui-dev-farget-sg-egress-containers-to-internet  **replacing failed**     [diff: ~toPort]; 1 error
 
Diagnostics:
  aws:ec2:SecurityGroupRule (clui-dev-farget-sg-egress-containers-to-internet):
    error: [WARN] A duplicate Security Group rule was found on (sg-09f699aa68e2866bd). This may be
    a side effect of a now-fixed Terraform issue causing two security groups with
    identical attributes but different source_security_group_ids to overwrite each
    other in the state. See <https://github.com/hashicorp/terraform/pull/2376> for more
    information and instructions for recovery.

The step to re-produce is very simple:

import * as awsx from '@pulumi/awsx';
import * as aws from '@pulumi/aws';

const albSg = new awsx.ec2.SecurityGroup(`my-alb-sg`, {
  ingress: [],
  egress: []
};

new aws.ec2.SecurityGroupRule(`sg-ingress-alb-to-containers`, {
  type: 'ingress',
  description: 'Allow all traffics from ALB to ECS containers',
  protocol: 'all',
  fromPort: 0,
  toPort: 65535,
  securityGroupId: albSg.id,
});

pulumi up

then updating the SG rule:

toPort: 65534,

then

pulumi up

again, this time I get the error when pulumi is trying to replace the SG Rule resource.

wet-exabyte-21510

09/18/2020, 10:32 AM

Hi, I'm trying to set-up a Pulumi organization and start an Enterprise plan trial for that organization. I signed up with my work e-mail address at https://app.pulumi.com/signup/email and somehow that created an organization with the desired name for me, however I cannot start the trial for that organization. I created a new one and subscribed for the free trial, however then I cannot delete the "old" organization which was created automatically, I can only delete the whole account. Can you provide some assistance please?

elegant-island-39916

09/18/2020, 12:59 PM

Hi, is there a

kubeconfig

provider

property I can access on an EKS Cluster (

pulumi_aws.eks.cluster

) object in Python? I would like the provider for adding helm charts and deploying services to EKS

bitter-application-91815

09/18/2020, 1:01 PM

hey there, having issues deploying a helm chart for ALB.

bitter-application-91815

09/18/2020, 1:01 PM

kubernetes:<http://rbac.authorization.k8s.io:ClusterRoleBinding|rbac.authorization.k8s.io:ClusterRoleBinding> (axiom-alb-charts-staging-f-aws-alb-ingress-controller):
    error: configured Kubernetes cluster is unreachable: unable to load schema information from the API server: Get "<https://B28AFB458A821E98D3607A3F0B60F0F4.gr7.eu-west-1.eks.amazonaws.com/openapi/v2?timeout=32s>": dial tcp: lookup <http://B28AFB458A821E98D3607A3F0B60F0F4.gr7.eu-west-1.eks.amazonaws.com|B28AFB458A821E98D3607A3F0B60F0F4.gr7.eu-west-1.eks.amazonaws.com>: no such host

bitter-application-91815

09/18/2020, 1:01 PM

it's like it can't get to the boxes, i did work briefly the first time where at least i could export a valid config and check the pods from command line

bitter-application-91815

09/18/2020, 1:07 PM

now nothing

bitter-application-91815

09/18/2020, 1:11 PM

btw i used the default security group for the vpc (that i created, not the default vpc), have tried it with the default sg and the bespoke port 80 one from the example

bitter-application-91815

09/18/2020, 1:16 PM

My vpc, has 3 private, and 3 public subnets, with a NAT for each private with a Eib associated.

bitter-application-91815

09/18/2020, 1:17 PM

3 public connected to a IGW via a route table and `MapPublicIpOnLaunch`set to true on init

bitter-application-91815

09/18/2020, 1:18 PM

have tagged each subnet the way the docs say accordingly

bitter-application-91815

09/18/2020, 1:18 PM

for a private

bitter-application-91815

09/18/2020, 1:18 PM

Tags: pulumi.StringMap{
			"Name": pulumi.String(fmt.Sprintf("axiom-cloud-private-subnet-%s-%s", w.targetEnv, os.Getenv(AuroraTertiary))),
			fmt.Sprintf("<http://kubernetes.io/cluster/axiom-%s|kubernetes.io/cluster/axiom-%s>", w.targetEnv): pulumi.String("shared"),
			"<http://kubernetes.io/role/internal-elb|kubernetes.io/role/internal-elb>":                          pulumi.String("1"),
		},

bitter-application-91815

09/18/2020, 1:18 PM

for a public

bitter-application-91815

09/18/2020, 1:18 PM

Tags: pulumi.StringMap{
			"Name": pulumi.String(fmt.Sprintf("axiom-cloud-public-subnet-%s-%s", w.targetEnv, os.Getenv(AuroraSecondary))),
			fmt.Sprintf("<http://kubernetes.io/cluster/axiom-%s|kubernetes.io/cluster/axiom-%s>", w.targetEnv): pulumi.String("shared"),
			"<http://kubernetes.io/role/elb|kubernetes.io/role/elb>":                                   pulumi.String("1"),
		},

bitter-application-91815

09/18/2020, 1:20 PM

eks cluster is in all 6 subnets

damp-table-85095

09/18/2020, 1:43 PM

Hi. How do I instruct pulumi to redeploy a docker image if one of its dependent script files gets changed? The Dockerfile contains COPY instructions but Pulumi doesn't redeploy the image when those files are changed.

rapid-oil-61997

09/18/2020, 2:26 PM

Hi Guys. Its good to be here. I am trying out pulumi on Azure now. But i have a question ( I am a newbie to pulumi as well as kind of newbie to c# too ) . I have created a virtual network as below.

var virtualNetwork = new VirtualNetwork("vNet", new VirtualNetworkArgs
 {
     Location = resourceGroup.Location,
     ResourceGroupName = resourceGroup.Name,
     Tags = tag,
     AddressSpaces = vnetAddressSpace,
     Name = "midhun-poc-pulumi-vnet",
     Subnets =
     {
         new VirtualNetworkSubnetArgs
         {
             Name = "subnet1",
             AddressPrefix = "10.198.10.0/29",
             SecurityGroup = nsg.Id
         },
         new VirtualNetworkSubnetArgs
         {
             Name = "subnet2",
             AddressPrefix = "10.198.10.8/29",
             SecurityGroup = nsg.Id
         }
     }
 });

when creating network interface as below, how can i refer to the subnet that i created above in this section ?

var networkInterface = new NetworkInterface("nic", new NetworkInterfaceArgs
 {
     Name = "midhun-poc-pulumi-vm-nic",
     Tags = tag,
     Location = resourceGroup.Location,
     ResourceGroupName = resourceGroup.Name,
     IpConfigurations = new NetworkInterfaceIpConfigurationArgs
     {
         Name = "midhun-poc-pulumi-nic-ip",
         SubnetId = 
     }
 });

Any help is appreciated. Thanks in advance.

billowy-laptop-45963

09/18/2020, 3:22 PM

Is there a pulumi equivalend to https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-lambda-version.html I created a lambda@edge and am trying to associate it with the cloudfront distribution. It requires the full function arn including version number. It doesn't accept $LATEST for the version number. How would I accomplish this with pulumi?

hallowed-beach-15050

09/18/2020, 4:21 PM

does anyone know how I can look at the profiling output