crooked-laptop-67565
07/06/2022, 8:57 PMcurl '<https://21d11ca8c29669f0b6b22de0b70e2570.gr7.us-east-2.eks.amazonaws.com/openapi/v2?timeout=32s>'
I get the error curl: (6) Could not resolve host: <http://21d11ca8c29669f0b6b22de0b70e2570.gr7.us-east-2.eks.amazonaws.com|21d11ca8c29669f0b6b22de0b70e2570.gr7.us-east-2.eks.amazonaws.com>
but I don't know where this URL comes from or why Pulumi thinks it should be able to connect to itmagnificent-psychiatrist-75197
07/06/2022, 9:38 PMblue-leather-96987
07/07/2022, 12:28 AMmodern-evening-83482
07/07/2022, 6:57 AMpulumi:pulumi:Stack pulumi-infrastructure-network.dev running Calling __str__ on an Output[T] is not supported.
pulumi:pulumi:Stack pulumi-infrastructure-network.dev running To get the value of an Output[T] as an Output[str] consider:
pulumi:pulumi:Stack pulumi-infrastructure-network.dev running 1. o.apply(lambda v => f"prefix{v}suffix")
pulumi:pulumi:Stack pulumi-infrastructure-network.dev running See <https://pulumi.io/help/outputs> for more details.
pulumi:pulumi:Stack pulumi-infrastructure-network.dev running This function may throw in a future version of Pulumi.
pulumi:pulumi:Stack pulumi-infrastructure-network.dev 5 messages
Hello Guys, Any clue why pulumi is throwing the following warning. I am create a aws vpc and then using the vpc.id
fieldbig-psychiatrist-43588
07/07/2022, 11:26 AMerror: Error: invocation of gcp:organizations/getIAMPolicy:getIAMPolicy returned an error: unknown Invoke type "gcp:organizations/getIAMPolicy:getIAMPolicy"
at Object.callback (/home/workstation/thx/workspace/shared-services/30062022/thxcs-shared-services/node_modules/@pulumi/runtime/invoke.ts:159:33)
at Object.onReceiveStatus (/home/workstation/thx/workspace/shared-services/30062022/thxcs-shared-services/node_modules/@grpc/grpc-js/src/client.ts:338:26)
at Object.onReceiveStatus (/home/workstation/thx/workspace/shared-services/30062022/thxcs-shared-services/node_modules/@grpc/grpc-js/src/client-interceptors.ts:426:34)
at Object.onReceiveStatus (/home/workstation/thx/workspace/shared-services/30062022/thxcs-shared-services/node_modules/@grpc/grpc-js/src/client-interceptors.ts:389:48)
at /home/workstation/thx/workspace/shared-services/30062022/thxcs-shared-services/node_modules/@grpc/grpc-js/src/call-stream.ts:276:24
Here is my code
private createIAMBinding = (gsaKsaBinding: string, ksa: k8s.core.v1.ServiceAccount): void =>{
let account =pulumi.interpolate`serviceAccount:<projectId>.svc.id.goog[${this.namespace}/${ksa.metadata.name}]`;
const iam_role = gcp.organizations.getIAMPolicy({
bindings: [{
role: "roles/iam.workloadIdentityUser",
members: [account.get.name],
}],
},{provider: this.provider});
new gcp.serviceaccount.IAMPolicy(gsaKsaBinding, {
serviceAccountId: this.serviceAccountEmailId,
//project: project,
policyData: iam_role.then(iam_role => iam_role.policyData),
}, { dependsOn: [ksa], provider: this.provider });
}
Is there any clue why pulumi is throwing itbulky-agent-73210
07/07/2022, 1:16 PMsticky-wolf-35263
07/07/2022, 4:52 PMrapid-spoon-72613
07/07/2022, 7:24 PMblue-leather-96987
07/07/2022, 8:19 PMsteep-portugal-37539
07/07/2022, 9:40 PMmagnificent-helicopter-3467
07/08/2022, 1:42 AMpulumi refresh
, I get the following error for these k8s resources:
failed to read resource state due to unreachable cluster. If the cluster has been deleted, you can edit the pulumi state to remove this resource
So I get the URN by executing pulumi stack --show-urns
. But when I copy the URN for the k8s resource in to pulumi state delete <urn>
, I see the error: No such resource "<urn>" exists in the current state
Is there a way to sync state so I can reliably do pulumi destroy/up
again with the correct assumptions about current state of cloud infra?early-postman-62454
07/08/2022, 6:00 AMearly-postman-62454
07/08/2022, 6:00 AMearly-postman-62454
07/08/2022, 6:01 AMearly-postman-62454
07/08/2022, 6:01 AM[bucket.arn]
part cannot be JSONifiedearly-postman-62454
07/08/2022, 6:02 AM["%s" % bucket.arn]
JSONify is ok but AWS API returns [aws-sdk-go] DEBUG: Validate Response iam/PutRolePolicy failed, attempt 0/25, error MalformedPolicyDocument: Partition "
which is weirdearly-postman-62454
07/08/2022, 6:03 AMearly-postman-62454
07/08/2022, 6:03 AMambitious-agent-35343
07/08/2022, 11:18 AMsteep-toddler-94095
07/08/2022, 6:28 PMcrooked-laptop-67565
07/08/2022, 7:33 PMConfig.requireSecret
to create k8s secrets from Pulumi's config store, eg for my database password. But Secrets Manager's code samples suggest having apps retrieve secrets directly from Secrets Manager. I'm also thinking that rather than using Config.requireSecret
my Pulumi code could fetch credentials from Secrets Manager and use those to create the k8s secrets...?mammoth-salesclerk-61945
07/09/2022, 1:40 AMgentle-advantage-80069
07/09/2022, 2:23 PMearly-postman-62454
07/10/2022, 8:45 AMgentle-advantage-80069
07/10/2022, 11:08 AMprehistoric-sandwich-7272
07/10/2022, 11:22 AMclusterArgs
the subnet ID’s of the VPC I have created in a different stack.
I am getting the output from the stack reference like this:
stack, err := pulumi.NewStackReference(ctx, Name, nil)
if err != nil {
log.Fatalf("Got error while trying to get a new stack reference! Error: %s", err)
}
VpcPublicSubnetIdsOutput := stack.GetStringOutput(pulumi.String("vpcPublicSubnetIds"))
vpcPrivateSubnetIdsOutput := stack.GetStringOutput(pulumi.String("vpcPrivateSubnetIds"))
VpcPublicSubnetIds := pulumi.ToStringArrayOutput([]pulumi.StringOutput{VpcPublicSubnetIdsOutput})
vpcPrivateSubnetIds := pulumi.ToStringArrayOutput([]pulumi.StringOutput{vpcPrivateSubnetIdsOutput})
So VpcPublicSubnetIds & vpcPrivateSubnetIds are both of type pulumi.StringArrayOutput
But I can’t figure out how to pass the subnet ID’s to the clusterArgs, by indexing the elements from VpcPublicSubnetIds & vpcPrivateSubnetIds !
I tried doing it like this:
eksCluster, err := eks.NewCluster(ctx, values.Name, &eks.ClusterArgs{
Name: pulumi.StringPtr(values.Name),
VpcId: vpcId,
PublicSubnetIds: pulumi.StringArray{
pulumi.StringInput(VpcPublicSubnetIds.Index(<http://pulumi.Int|pulumi.Int>(0))),
pulumi.StringInput(VpcPublicSubnetIds.Index(<http://pulumi.Int|pulumi.Int>(1))),
pulumi.StringInput(VpcPublicSubnetIds.Index(<http://pulumi.Int|pulumi.Int>(2))),
pulumi.StringInput(VpcPublicSubnetIds.Index(<http://pulumi.Int|pulumi.Int>(3))),
},
PrivateSubnetIds: pulumi.StringArray{
pulumi.StringInput(vpcPrivateSubnetIds.Index(<http://pulumi.Int|pulumi.Int>(0))),
pulumi.StringInput(vpcPrivateSubnetIds.Index(<http://pulumi.Int|pulumi.Int>(1))),
pulumi.StringInput(vpcPrivateSubnetIds.Index(<http://pulumi.Int|pulumi.Int>(2))),
pulumi.StringInput(vpcPrivateSubnetIds.Index(<http://pulumi.Int|pulumi.Int>(3))),
},
what am I doing wrong?sparse-intern-71089
07/10/2022, 6:26 PMsparse-intern-71089
07/10/2022, 8:18 PMproud-mechanic-27789
07/10/2022, 8:35 PMstocky-petabyte-29883
07/11/2022, 8:07 AMconst albPolicy = new aws.iam.Policy("alb-policy", {
name: "AWSLoadBalancerControllerIAMPolicy",
policy: new pulumi.asset.RemoteAsset("<https://raw.githubusercontent.com/kubernetes-sigs/aws-load-balancer-controller/v2.4.0/docs/install/iam_policy.json>"),
tags: {
Environment: stack,
},
});
The code I sent doesn't work, but is there any way to achieve this?stocky-petabyte-29883
07/11/2022, 8:07 AMconst albPolicy = new aws.iam.Policy("alb-policy", {
name: "AWSLoadBalancerControllerIAMPolicy",
policy: new pulumi.asset.RemoteAsset("<https://raw.githubusercontent.com/kubernetes-sigs/aws-load-balancer-controller/v2.4.0/docs/install/iam_policy.json>"),
tags: {
Environment: stack,
},
});
The code I sent doesn't work, but is there any way to achieve this?