brash-airline-37413
05/15/2021, 10:24 PMchilly-night-36370
05/16/2021, 11:10 AMazure-nextgen
to azure-native
and it wants to re-create the resource group. Is there a way I can force pulumi to think those are the same resource groups?clever-lawyer-94920
05/16/2021, 5:46 PMclever-lawyer-94920
05/16/2021, 7:06 PMproud-spoon-58287
05/17/2021, 10:45 AMaws:lambda:Function (data-feed-property-data-fetcher):
error: 1 error occurred:
* error creating Lambda Function (1): InvalidParameterValueException: The provided execution role does not have permissions to call SendMessage on SQS
{
RespMetadata: {
StatusCode: 400,
RequestID: "1ca54399-576d-40bc-829a-c2c31790fd72"
},
Message_: "The provided execution role does not have permissions to call SendMessage on SQS",
Type: "User"
}
as per AWS docs, I have attached the following policy:
arn:aws:iam::aws:policy/service-role/AWSLambdaSQSQueueExecutionRole'
but I got the same error.
I am using the latest version of pulumi and aws in node.creamy-ice-56481
05/17/2021, 1:21 PMId = "/subscriptions/subid/resourceGroups/rg1/providers/Microsoft.Network/frontDoors/frontDoor1/frontendEndpoints/frontendEndpoint1",
bumpy-autumn-37588
05/17/2021, 3:43 PMpurple-train-14007
05/17/2021, 4:44 PMenough-truck-34175
05/17/2021, 6:52 PMdependsOn
behavior for Functions? For example, I would like listManagedClusterAdminCrdenetials
(Doc) to wait for the managed cluster to be created.full-dress-10026
05/17/2021, 7:08 PMpulumi.output(queueUrl).get()
? More context in thread.full-artist-27215
05/17/2021, 7:44 PMpulumi login --local
), what would be the value to use for organization
in a fully-qualified StackReference?curved-cartoon-90054
05/17/2021, 7:53 PMmany-psychiatrist-74327
05/17/2021, 8:49 PMgcloud
in the current machine (which makes sense, because I believe the kubeconfig for the clusters defers to the gcloud
command for auth). Is there a way to explicitly tell pulumi to use the same service account it used for creating the GCP resources? I tried setting GOOGLE_CREDENTIALS
but the behavior didn’t change.
Thanksambitious-father-68746
05/17/2021, 9:46 PMhundreds-traffic-617
05/17/2021, 11:00 PMaws.cloudwatch.EventTarget
type like sqsTarget
, but nothing explicitly mentioning step functionsred-football-97286
05/18/2021, 10:45 AMpulumi new <https://git-codecommit>
gives me an error: authentication required
.bland-army-56447
05/18/2021, 11:14 AMgifted-island-55702
05/18/2021, 12:24 PMnpm install
gifted-island-55702
05/18/2021, 12:28 PMwet-noon-14291
05/18/2021, 1:16 PMechoing-angle-67526
05/18/2021, 1:58 PMgorgeous-country-43026
05/18/2021, 2:09 PMService
for a Statefulset
- postgresql to be more specific. Statefulset
is created and pods appear as expected and based from logs etc everything is just fine including volume bindings etc. This is also true from Pulumi side when running pulumi up
to an empty cluster. Service
creation hangs up however and it finally gives up with the following error:
kubernetes:core/v1:Service (postgres):
error: 2 errors occurred:
* the Kubernetes API server reported that "default/postgres" failed to fully initialize or become live: 'postgres' timed out waiting to be Ready
* Service does not target any Pods. Selected Pods may not be ready, or field '.spec.selector' may not match labels on any Pods
I am however absolutely certain that yes, there are specified nodes available and also that those pods are indeed running. I've been banging my head against the wall with this problem for some time now and would appreciate ideas.
As an interesting detail if running pulumi up
again also the Statefulset
update seems to hang. I'll provide code snippets regarding this issue to a thread under this message.full-artist-27215
05/18/2021, 3:07 PM"grant-<ROLE_NAME>-permissions-on-X"
. Resources don't expose their logical name directly, but do expose them (at least in Python) with a "private" property _name
. The information seems to always be available (since Resource names are strings, and not pulumi.Output[str]
, so it seems "safe" from that perspective, at least). Will I be sent to Programmer Jail for doing this? Is there any thought to formally exposing the logical resource name as an officially blessed read-only property that we can use to generate additional names (or is there already a way to do this that I've missed)? Thanks 🙇gorgeous-window-12350
05/18/2021, 5:37 PMpulumi up
. Any guidance here?full-artist-27215
05/18/2021, 5:49 PMpulumi_docker.Image
, passing "DOCKER_BUILDKIT": "1"
in the pulumi_docker.DockerBuild
env
argument, as documented (https://www.pulumi.com/docs/reference/pkg/docker/image/#dockerbuild) to enable BuildKit support, but my image builds are failing with errors like
error: the --mount option requires BuildKit. Refer to <https://docs.docker.com/go/buildkit/> to learn how to build images with BuildKit enabled
which suggests that BuildKit somehow isn't being used. Has anyone else been successful with a BuildKit-enabled image build?broad-eve-12764
05/18/2021, 6:31 PMdocker.RegistryImage
to have a bit more control over the docker build, following @faint-table-42725’s example in #132, but I'm not getting any logs from docker now, just:
docker:index:RegistryImage registry-image-for-deps creating...
Do I need to configure logging explicitly for RegistryImage
?mysterious-lighter-33699
05/18/2021, 6:48 PMignore_changes=["scaling_config.desired_size"]
(this is in python). Unfortunately, this is not the string you can use to ignore changes to the desired_size setting. You have to use ``ignore_changes=["scalingConfig.desiredSize"]`` instead. Which we learned when our node groups all got sized to one node each after applying an unrelated update.broad-eve-12764
05/18/2021, 7:27 PMpulumi up
locally, but re-builds each layer with no caching when run in GitHub Actions.
Excerpt from Pulumi `index.ts`:
const image = repo.buildAndPushImage({
target: 'app',
cacheFrom: { stages: ['deps', 'files', 'app'] },
context: '../',
})
Dockerfile is essentially:
FROM external.image as deps
# install dependencies
FROM deps as files
# copy in some files, precompile assets
FROM files as app
# copy in other files, build app
When run locally, it builds each layer and uploads to the repo. When I run it in GitHub Actions, it does this:
• builds deps
• builds deps
again as part of building files
• builds files
• builds deps
again as part of building app
• builds files
again as part of building app
• builds app
Not sure why caching is failing to work only in CI. Any thoughts?shy-author-33795
05/18/2021, 8:02 PMpulumi up
but fails to build on Buildkite.
To tell you more about what I have going on...
I have the following `ComponentResource`:
class ECRRepo(ComponentResource):
ComponentResource.__init__(
self, "awsx:ecr:ECRRepo", name, {
"name": name,
"docker_build_dir": docker_build_dir,
"docker_image": docker_image,
"extra_protected_tags": extra_protected_tags,
"image_tag_mutability": image_tag_mutability,
"max_images": max_images,
"scan_on_push": scan_on_push,
"tags": tags
}, opts)
Here's how I grab registry information:
class ECRRepo(ComponentResource):
@staticmethod
def get_registry_info(rid):
creds = ecr.get_credentials(registry_id=rid)
decoded = base64.b64decode(creds.authorization_token).decode()
parts = decoded.split(':')
if len(parts) != 2:
raise Exception("Invalid credentials")
return ImageRegistry(creds.proxy_endpoint, parts[0], parts[1])
Here's how I'm creating a repo:
def _create(self):
repo = ecr.Repository(
resource_name = self.name,
image_scanning_configuration = ecr.RepositoryImageScanningConfigurationArgs(
scan_on_push = self.scan_on_push,
),
name = self.name,
image_tag_mutability = self.image_tag_mutability,
tags = self.tags,
opts = ResourceOptions(parent=self)
)
Here's how I'm building the image:
custom_image = "{image}".format(image=self.docker_image)
directory = "{dir}".format(dir=self.docker_build_dir)
Image(
self.name,
image_name=pulumi.Output.concat(repo.repository_url, ":v1.0.0"),
build=f'{directory}/{custom_image}',
registry=repo.registry_id.apply(ECRRepo.get_registry_info),
opts = ResourceOptions(parent=repo)
)
many-psychiatrist-74327
05/18/2021, 8:20 PMpanic: fatal: An assertion has failed
goroutine 181 [running]:
<http://github.com/pulumi/pulumi/sdk/v2/go/common/util/contract.failfast(...)|github.com/pulumi/pulumi/sdk/v2/go/common/util/contract.failfast(...)>
/Users/runner/work/pulumi/pulumi/sdk/go/common/util/contract/failfast.go:23
<http://github.com/pulumi/pulumi/sdk/v2/go/common/util/contract.Assert(...)|github.com/pulumi/pulumi/sdk/v2/go/common/util/contract.Assert(...)>
/Users/runner/work/pulumi/pulumi/sdk/go/common/util/contract/assert.go:26
<http://github.com/pulumi/pulumi/pkg/v2/resource/deploy.NewDeleteReplacementStep|github.com/pulumi/pulumi/pkg/v2/resource/deploy.NewDeleteReplacementStep>(0xc000167720, 0xc001560fc0, 0xc0026ff201, 0x4d, 0xc0026ee780)
/Users/runner/work/pulumi/pulumi/pkg/resource/deploy/step.go:294 +0x1df
<http://github.com/pulumi/pulumi/pkg/v2/resource/deploy.(*stepGenerator).generateStepsFromDiff(0xc00191ed80|github.com/pulumi/pulumi/pkg/v2/resource/deploy.(*stepGenerator).generateStepsFromDiff(0xc00191ed80>, 0x7f192ec86318, 0xc002717c20, 0xc0009bf220, 0x46, 0xc001560a20, 0xc002724360, 0xc00160de90, 0xc001540450, 0xc0027dfc80, ...)
many-psychiatrist-74327
05/18/2021, 8:20 PMpanic: fatal: An assertion has failed
goroutine 181 [running]:
<http://github.com/pulumi/pulumi/sdk/v2/go/common/util/contract.failfast(...)|github.com/pulumi/pulumi/sdk/v2/go/common/util/contract.failfast(...)>
/Users/runner/work/pulumi/pulumi/sdk/go/common/util/contract/failfast.go:23
<http://github.com/pulumi/pulumi/sdk/v2/go/common/util/contract.Assert(...)|github.com/pulumi/pulumi/sdk/v2/go/common/util/contract.Assert(...)>
/Users/runner/work/pulumi/pulumi/sdk/go/common/util/contract/assert.go:26
<http://github.com/pulumi/pulumi/pkg/v2/resource/deploy.NewDeleteReplacementStep|github.com/pulumi/pulumi/pkg/v2/resource/deploy.NewDeleteReplacementStep>(0xc000167720, 0xc001560fc0, 0xc0026ff201, 0x4d, 0xc0026ee780)
/Users/runner/work/pulumi/pulumi/pkg/resource/deploy/step.go:294 +0x1df
<http://github.com/pulumi/pulumi/pkg/v2/resource/deploy.(*stepGenerator).generateStepsFromDiff(0xc00191ed80|github.com/pulumi/pulumi/pkg/v2/resource/deploy.(*stepGenerator).generateStepsFromDiff(0xc00191ed80>, 0x7f192ec86318, 0xc002717c20, 0xc0009bf220, 0x46, 0xc001560a20, 0xc002724360, 0xc00160de90, 0xc001540450, 0xc0027dfc80, ...)