clever-plumber-29709
09/25/2020, 4:57 PMbig-potato-91793
09/25/2020, 6:28 PMstraight-insurance-27894
09/25/2020, 7:31 PMaz login
.
This is an octopus deploy job using a service principal. The job uses the variables
$env:ARM_CLIENT_ID = $AzAccountClient
$env:ARM_CLIENT_SECRET = $AzAccountPassword
$env:ARM_TENANT_ID = $AzAccountTenantId
$env:ARM_SUBSCRIPTION_ID = $AzAccountSubscriptionNumber
We have dozens of deployments per week across 20 stacks that has been using this process. Its stable.
We are trying something new, creating privatelinks from subscription A to a vnet in subscription B. Since most of the code executes in subscription A, the env variable ARM_SUBSCRIPTION_ID is set to "A". However, when we get to the privatelink, we build a new provider and pass into the service principal the credentials, tenant, secret and subscription B. But when we use this new provider in the private link, we still get the same error. We know we have to pass in subscription B to privatelink. Older versions of the pulumi azure provider would default the credenatials, secret and tenant, but the newer version seems to require them.
@pulumi 2.1
@pulumi/azure 3.20.1
//Provider Code
const Sub = new vznaz.azure.Provider("subscription B", { //TODO
subscriptionId: "subscription B",
metadataHost: '<http://management.azure.com|management.azure.com>',
clientId: process.env["ARM_CLIENT_ID"],
clientSecret: process.env["ARM_CLIENT_SECRET"],
tenantId: vznaz.AADTenantId,
});
vznpulumi.pulumi.ProviderResource.register(Sub).then(p => p);
//PrivateLink Code that is failing with above error message
const privateLinkTags = TAGS;
const PrivateLinkSubnet = vznpulumi.pulumi.output(vznaz.azure.network.getSubnet({
resourceGroupName: 'vznz-net_rg',
virtualNetworkName: 'vznz-net_vnet',
name: 'private-link-hub01',
}, {
provider: Sub,
async: true,
}));
//sqlServer
const SqlPrivateLink = new vznaz.azure.privatelink.Endpoint('sql-link', { //was vznaz.azure.privatelink.Endpoint but was getting an error below that privateIpAddress didn't exist on SqlPrivateLink.privateServiceConnection.privateIpAddress
resourceGroupName: '_prod-rg-01',
privateServiceConnection: {
privateConnectionResourceId: sqlServer.id,
isManualConnection: false,
name: sqlServer.name,
subresourceNames: [ 'sqlServer' ],
},
subnetId: PrivateLinkSubnet.id,
name: sqlServer.name,
tags: privateLinkTags,
},{
provider: Sub,
});
We are stumped. Any help would be greatly appreciated.witty-vegetable-61961
09/25/2020, 9:46 PMchilly-magazine-6129
09/25/2020, 9:53 PMpulumi up
always updates lambdas (~code). Then:
pulumi refresh
always shows those same lambdas needing update. I let it update. Refreshing / Previewing says no changes need to happen.
I then change the memory size of one of the lambdas, but it triggers all Lambdas to update (~code), and one of them ~code + memorySize.
This happened recently - I'm using WSL2, I've diff-ed stack exports, and file sizes before and after - and I see nothing that stands out.
Any thoughts on what may be the issue or where I should look next?chilly-magazine-6129
09/25/2020, 9:54 PMadamant-dress-73325
09/25/2020, 10:52 PMdelightful-jordan-36077
09/25/2020, 11:35 PMbroad-keyboard-684
09/27/2020, 2:48 AMTo understand how to write and distribute your own plugins, please consult the relevant documentation.... here https://www.pulumi.com/docs/reference/cli/pulumi_plugin/ but I don't know where " the relevant documentation" is. Many thanks in advance.
curved-pharmacist-41509
09/27/2020, 5:04 AMwonderful-dog-9045
09/27/2020, 1:29 PMtsc
locally also detects the type issue.
Does anybody have any ideas what could contribute to typeissues being ignored by the pulumi runtime locally?wet-noon-14291
09/28/2020, 6:56 AMpulumi up
or will pulumi just check its own state when deploying and not seeing the change? If yes, does that apply to all types of resources?bitter-application-91815
09/28/2020, 9:30 AMbitter-application-91815
09/28/2020, 9:30 AMbitter-application-91815
09/28/2020, 12:21 PMbitter-application-91815
09/28/2020, 12:22 PMfierce-memory-34976
09/28/2020, 12:29 PMquick-finland-93793
09/28/2020, 12:53 PMminiature-leather-70472
09/28/2020, 1:32 PMminiature-leather-70472
09/28/2020, 1:54 PMrich-exabyte-94739
09/28/2020, 4:11 PMcluster, err := ecs.NewCluster(ctx, "test-cluster", &ecs.ClusterArgs{
CapacityProviders: pulumi.StringArray{pulumi.String("FARGATE")},
Name: pulumi.String("test-cluster"),
Settings: nil,
Tags: nil,
})
Where would the previously defined VPC be specified in the above?rich-exabyte-94739
09/28/2020, 7:38 PMvpc, err := ec2.NewVpc(ctx, vpcName, vpcArgs)
if err != nil {
fmt.Println(err.Error())
return err
}
ctx.Export("VPC-ID", vpc.ID())
In the above example, vpc.ID()
is an IDOutput
parameter. How do I convert it to an actual string so I can use the actual VPC ID in other Pulumi calls (i.e. ec2.GetSubnetIds
)?clever-plumber-29709
09/28/2020, 9:52 PM<https://www.pulumi.com/docs/reference/pkg/aws/apigateway/vpclink/#target_arn_python|target_arn>
should be a list, but dosent work like that, i tested and it worked setting the arn as a str
also https://www.pulumi.com/docs/reference/pkg/aws/lb/listener/ says that protocol "The protocol for connections from clients to the load balancer. Valid values are TCP
, TLS
, UDP
, TCP_UDP
, HTTP
and HTTPS
. Defaults to HTTP
." but when testing i get:
* error creating ELBv2 Listener: ValidationError: Listener protocol 'HTTP' must be one of 'TLS, TCP, TCP_UDP, UDP'
proud-pizza-80589
09/28/2020, 10:03 PMkind-mechanic-53546
09/28/2020, 11:17 PMclever-plumber-29709
09/29/2020, 12:59 AMmysterious-easter-19881
09/29/2020, 3:45 AMError: invocation of kubernetes:yaml:decode returned an error: error converting YAML to JSON: yaml: mapping values are not allowed in this context
at monitor.invoke (/tmp/issuer-phone-twilio/node_modules/@pulumi/pulumi/runtime/invoke.js:137:33)
at Http2CallStream.call.on (/tmp/issuer-phone-twilio/node_modules/@grpc/grpc-js/src/client.ts:155:9)
at Http2CallStream.emit (events.js:203:15)
at process.nextTick (/tmp/issuer-phone-twilio/node_modules/@grpc/grpc-js/src/call-stream.ts:186:14)
at process._tickCallback (internal/process/next_tick.js:61:11)
I'd share the whole thing but it has some secrets at the moment. What's even weirder is a previously working version of the chart is now giving the same error.quiet-daybreak-92184
09/29/2020, 9:02 AMlimited-rainbow-51650
09/29/2020, 12:41 PM~ pulumi:providers:postgresql: (update)
[id=6577980b-b7e1-466c-8a2d-18edaa0bc9fa]
[urn=urn:pulumi:development::orthanc::pulumi:providers:postgresql::adminconnection]
connectTimeout : "180"
database : "postgres"
databaseUsername: "psqladminun"
host : "<redacted>.<http://postgres.database.azure.com|postgres.database.azure.com>"
password : "[secret]"
port : "5432"
superuser : "false"
username : "psqladminun@<redacted>.<http://postgres.database.azure.com|postgres.database.azure.com>"
Pulumi reports a change to the provider, but none of the settings are different. Why reporting a change then?incalculable-dream-27508
09/29/2020, 2:12 PM"__defaults": [],
repeating everywhere in pulumi stack export
?incalculable-dream-27508
09/29/2020, 2:12 PM"__defaults": [],
repeating everywhere in pulumi stack export
?