pulumi-community #general

swift-monitor-84282

01/17/2021, 12:25 AM

Hey everyone, good evening! Could someone please provide me a link to the docs or just give me a tip on how can I interact with other AWS services from within a "magic lambda"? To be more specific, given the following code:

Copy code

const MyBucket = new aws.s3.Bucket("MyBucket")

const api = new awsx.apigateway.API("hello-world", {
    routes: [{
        path: "/",
        method: "POST",
        eventHandler: async (event) => {
            return {
                statusCode: 200,
                body: "Hello, world!",
            };
        },
    }],
})

How could I create/upload a file to "MyBucket" in the "eventHandler" lambda function logic?

magnificent-restaurant-51456

01/17/2021, 2:15 PM

is there anything compared to terraform's chef provisioner in pulumi?

little-cartoon-10569

01/17/2021, 9:07 PM

Did

<http://api.pulumi.com|api.pulumi.com>

fall off the internet for a few minutes? A deployment failed, but I can now reach the webui..

faint-motherboard-95438

01/17/2021, 11:23 PM

Hello there, Getting a weird error at preview since last pulumi packages update :

Copy code

Diagnostics:
  pulumi:providers:eks (default):
    error: no resource plugin 'eks' found in the workspace or on your $PATH

I have no idea what that’s supposed to mean or what to do to get rid of it, never had this one in 2 years. Using typescript, cleaned up everything, started from a fresh built container, same problem.

Copy code

"@pulumi/aws": "3.23.0",
    "@pulumi/awsx": "0.23.0",
    "@pulumi/eks": "0.21.0",
    "@pulumi/kubernetes": "2.7.6",
    "@pulumi/postgresql": "2.5.3",
    "@pulumi/pulumi": "2.17.2",
    "@pulumi/random": "3.0.1",

Anyone would know what to do here ?

swift-monitor-84282

01/18/2021, 12:24 AM

Hello! How can I retrieve a queue URL after it's creation? An object of the type aws.sqs.Queue doesn't seem to have this attribute. Also, it seems I can't use the aws.sqs.getQueue method to get it.

jolly-camera-35709

01/18/2021, 6:57 AM

I was trying to print(config.require_secret('password')), and I got <pulumi.output.Output object at 0x7f229dc2b5c0>, why's that? 'password' is not output of a stack that pulumi got to know only after deploying the stack, here 'password' is a string written in the config file, why can't it be read as a normal string as read other plain text item from the config file?

narrow-battery-9106

01/18/2021, 11:50 AM

Hello everyone I am running kubernetes cluster with istio on top of it. I want to use pulumi to automate everything related to infrastructure. Everything is great, but I have a question regarding resources that is provided by istio (ex: VitualService, Gateway etc). How I should define these resources so that pulumi understands how to work with them. I've managed to do it with Go using

apiextensions.NewCustomResource

. Is it right way to do? Or is there better solution using go or other languages?

prehistoric-nail-50687

01/18/2021, 12:46 PM

Is there any central place for unofficial/community driven pulumi ResourceManagers or Plugins. My guess is, that most people requiring to manage a resource which is not officially documented and managed by Pulumi (the Company) will just write a Dynamic Resource/Custom Resource and hack it in whatever language he needs it. e.g. I’m using TypeScript and It would take me a to long to implement a proper Plugin with Go so everyone could take advantage of my work. If there would be a central place for such stuff, some new things could grow out of it. I have the feeling there is quite some potential for something like this.

swift-agency-29333

01/18/2021, 1:16 PM

I am working locally. Right now pulumi saves all stack and project info in .pulumi installation directory. Is there a way I can save all info in my own selected folder or preferably in some NoSQL db.

eager-petabyte-62054

01/18/2021, 9:23 PM

Hi, team! I’m trying to batch import several AWS sagemaker resources using the

pulumi import -f <resource.json>

tool. One problem I ran into is how to get

id

s of the resources. I can import them using

pulumi import <type> <name>

without specifying ids. For example,

pulumi import aws:sagemaker/endpoint:Endpoint 'model-endpoint' 'mode'

works as expected. I tried not specifying ids in the json, but that caused the tool to panic. I took a look at the doc, but still couldn’t find an answer.

mammoth-honey-6147

01/18/2021, 9:38 PM

Just getting started with Pulumi and wondering if you have a large IaC project, how would you normally manage the resources - ie place them in their own individual stacks? (ie stacks for ec2, securitygroup, etc)

little-cartoon-10569

01/18/2021, 10:08 PM

Is there a command-line way to decrypt a RandomPassword or other encrypted value?

full-dress-10026

01/19/2021, 1:34 AM

Switching from

cCluster.cluster.apply(cluster => {...

services = pulumi.all([cCluster.cluster, taskDefs]).apply(([cluster, taskDefs]) => {

causes the Pulumi preview diff to think it needs to delete many resources. The key change is the switch to

pulumi.all

. Once running the

up

, it does not actually delete the resources it thought it needed to. Is there some way to get the Pulumi diff to operate correctly with

pulumi.all

? This issue makes the preview unusable.

ripe-holiday-8134

01/19/2021, 7:44 AM

Hi, running the next simple import GCP firewall rule command:

pulumi import gcp:compute/firewall:Firewall default projects/my-test-project/global/firewalls/my-firwall-rule

and getting the next error: `error: gcpcompute/firewallFirewall resource 'my-firwall-rule' has a problem: "deny": one of

allow,deny

must be specified` `error: gcpcompute/firewallFirewall resource 'my-firwall-rule' has a problem: "allow": one of

allow,deny

must be specified` https://www.pulumi.com/docs/reference/pkg/gcp/compute/firewall/#import someone knows what is missing?

famous-twilight-87777

01/19/2021, 4:24 PM

Hi, I've got an issue with using a key assigned to a service account in gcp - I can create the service account, assign roles and create the key and then write the private key (which is required in my usecase) to a local file, then in a separate invocation of a different stack, read and use the private key. However trying to combine these two steps fails as the private key is an Output<string> and I cannot pass it into some further typescript where I need to template it into a file

famous-twilight-87777

01/19/2021, 4:25 PM

so I can do this:

famous-twilight-87777

01/19/2021, 4:25 PM

Copy code

service_account_key.privateKey.apply(k => writeFileSync("/tmp/test.json", Buffer.from(k,'base64').toString()));

famous-twilight-87777

01/19/2021, 4:26 PM

but I cannot access the string ^ 'k' directly - quite frustrating and I know it's something associated with the async model that I'm not groking

proud-hair-78501

01/20/2021, 8:47 AM

I’m working on quite a large Pulumi infra, and trying to work out the best way to divide up the code into multiple files. I assume using pulumi.ComponentResource is the best idea here and trying to roughly divide them up into components?

proud-hair-78501

01/20/2021, 8:54 AM

My only issue so far with that, has been trying to get a provider inside one of these components

proud-hair-78501

01/20/2021, 8:54 AM

I pass it into the opts using providers: { kubernetes: theProvider } and then inside the component use this.getProvider(‘kubernetes’) but it just gives me undefined 😞

gifted-lifeguard-15584

01/20/2021, 10:26 AM

Hi, It might sound like a dumb question, but I'm using Pulumi with python and the aws provider and when a go to the aws console, I can see that most resources names are empty (vpc, subnet, instance, ...). Is is normal ? Is there a way for me to tell Pulumi to set the name field on these resources ?

incalculable-engineer-92975

01/20/2021, 2:17 PM

is it possible to install both pulumi 2.x and pulumi 1.x cli's at the same time?

incalculable-engineer-92975

01/20/2021, 2:18 PM

we have a bunch of 1.x apps that we're going to start upgrading to 2.x

bumpy-laptop-30846

01/20/2021, 4:46 PM

Hi, I have my aws cli configured and want to create a project with

pulumi new aws-typescript

. The pulumi requests that I login to the console. Is it normal? I follow this guide

proud-hair-78501

01/20/2021, 6:35 PM

Is there a nice way of waiting for an abritrary k8s resource to appear?

proud-hair-78501

01/20/2021, 6:36 PM

It’s created by an operator that I deploy as part of the Pulumi, so there’s no immediate way springing to mind other than some polling style thing in an apply?

rough-optician-63632

01/20/2021, 6:51 PM

Hi! I am trying to create an ECS Task Definition’s

ContainerDefinition

string using a lookup value as part of my string in TypeScript.

Copy code

const ecr = pulumi.output(
   aws.ecr.getRepository(
    {
     name: `${environmentName}/${repositoryName}`,
    },
    { async: true }
   )
  )

const containerDefinitions = JSON.stringify([
   {
    name: this.FormattedName,
    image: pulumi.interpolate`${ecr.repositoryUrl}:${imageVersion}`,
    portMappings: portMappings,
    environment: environmentVariables
   },
  ])

The containerDefinition variable later goes on to be used in the args of a

new aws.ecs.TaskDefinition(name, args)

. When I console.log that container definition I get the following value for image:

Copy code

[{… "image":"Calling [toJSON] on an [Output<T>] is not supported.\n\nTo get the value of an Output as a JSON value or JSON string consider either:\n  1: o.apply(v => v.toJSON())\n  2: o.apply(v => JSON.stringify(v))\n\nSee <https://pulumi.io/help/outputs> for more details.\nThis function may throw in a future version of @pulumi/pulumi." …}]

I started without the interpolate and I got a similar error (for toString instead of toJSON) suggesting I add the interpolate. Appending

.apply((x) => JSON.stringify(x))

as it suggests to that interpolate results in the same error. I'm sure I'm misusing something here. Can anyone help point out what I’m doing wrong please?

elegant-island-39916

01/21/2021, 10:30 AM

hi, how do people get around

pulumi up

on k8s when their images target

:latest

? no changes will be required after the first update, but i would like k8s to pull down the new image

elegant-island-39916

01/21/2021, 11:33 AM

ive got a troublesome helm chart

aws-load-balancer-controller

that generates a new secret each time

pulumi up

is run, is there any way to get pulumi to

ignore_changes

of the generated outputs of the helm chart plan?