Hi, I have created an azure container registry 'acracr166usdevt' using pulumi native 1.66. I have used both the following methods to retrieve admin user and password var registry = GetRegistryCredentials.Invoke(new GetRegistryCredentialsInvokeArgs { ResourceGroupName = _settings.ResourceGroup, RegistryName = registryName }); but getting following errors 2022-07-25T183248.1317669Z Grpc.Core.RpcException: Status(StatusCode="Unknown", Detail="invocation of azure-nativecontainerregistrygetRegistryCredentials returned an error: request failed /subscriptions/............./resourceGroups/.............../providers/Microsoft.ContainerRegistry/registries/acracr166usdevt/getCredentials: autorest/azure: Service returned an error. Status=404 Code="ParentResourceNotFound" Message="Can not perform requested operation on nested resource. Parent resource 'acracr166usdevt' not found."") and var registry = GetRegistryCredentials.InvokeAsync(new GetRegistryCredentialsArgs() { ResourceGroupName = _settings.ResourceGroup, RegistryName = registryName }).GetAwaiter().GetResult(); at Task<int> Pulumi.Deployment+Runner.Pulumi.IRunner.RunAsync<TStack>(IServiceProvider serviceProvider)+() => { } 2022-07-25T181250.0562862Z at Task<int> Pulumi.Deployment+Runner.RunAsync<TStack>(Func<TStack> stackFactory) ---> Grpc.Core.RpcException: Status(StatusCode="Unknown", Detail="invocation of azure-nativecontainerregistrygetRegistryCredentials returned an error: request failed /subscriptions/......../resourceGroups/..................../providers/Microsoft.ContainerRegistry/registries/acracr166usdevt/getCredentials: autorest/azure: Service returned an error. Status=404 Code="ParentResourceNotFound" Message="Can not perform requested operation on nested resource. Parent resource 'acracr166usdevt' not found."") 2022-07-25T181250.0564522Z at async Task<InvokeResponse> Pulumi.GrpcMonitor.InvokeAsync(ResourceInvokeRequest request) 2022-07-25T181250.0565245Z at async Task<SerializationResult> Pulumi.Deployment.InvokeRawAsync(string token, SerializationResult argsSerializationResult, InvokeOptions options) x 2 2022-07-25T181250.0566041Z at async Task<T> Pulumi.Deployment.InvokeAsync<T>(string token, InvokeArgs args, InvokeOptions options, bool convertResult) 2022-07-25T181250.0567018Z at ContainerApp ....Pulumi.Resources.ContainerAppService.CreateContainerApp(string appName, Input<string> envId, Input<string> registryServer) in D/a/1/s/build/pulumi/...Pulumi/Resources/ContainerAppService.csline 56 2022-07-25T181250.0568101Z at void ........Pulumi.Resources.ContainerAppService.CreateContainerApp() in D/a/1/s/build/pulumi/.......Pulumi/Resources/ContainerAppService.csline 30 2022-07-25T181250.0569006Z at new ......Pulumi.CoreRuntimeStack() in D/a/1/s/build/pulumi/.....Pulumi/CoreRuntimeStack.csline 18 2022-07-25T181250.0569605Z --- End of inner exception stack trace ---

Hey all, got a quick question. Say we run

pulumi preview

with

--target

flags. If a resource is not in the targets list and is not in the dependency path, will its state still be read? I know its state is not included in the CLI output but I'm wondering if it is read at all.

Hey, do you know if Pulumi supports the following features of Azure B2C identity provider: api : https://docs.microsoft.com/da-dk/azure/active-directory-b2c/microsoft-graph-operations) custom policies: https://docs.microsoft.com/da-dk/azure/active-directory-b2c/deploy-custom-policies-devops So far I can only find the ability to create B2C tenant

Another question: How can I setup Azure resources in different regions for the same stack?

Hey all! I have a question I couldn’t solve with the online resources. I have a simple GitHub Actions workflow to build the resources, with the following yaml file content:

name: Build staging resources

on:
  push:
    branches:
    - develop
    paths-ignore:
      - "*.md"
      - "*.gitignore"

jobs:
  deploy:
    name: Build staging resources
    runs-on: ubuntu-latest
    steps:
      - uses: pulumi/actions@v3
        with:
          command: up
          stack-name: tachikoma/tachikoma-backend/staging
        env:
          PULUMI_ACCESS_TOKEN: ${{ secrets.PULUMI_ACCESS_TOKEN }}

However, when pushing, I get the following output from GitHub Actions: `stderr: error: no Pulumi.yaml project file found (searching upwards from ). If you have not created a project yet, use

pulumi new

to do so` I don’t get it since I got a Pulumi.yaml file at the root of the project and I’m following the Pulumi GitHub Actions example. What did I got wrong?

Hi! I’m trying to create a resource in Azure, that needs to be accessible from AKS. To do this, I’d like to look up the AKS vnet. Unfortunately, the azure-native.network.LookupVirtualNetwork() method takes a resource group name and the vnet name. The vnets for our AKS clusters have random names, but there should only be one vnet in the resource group. Is it possible to look up the vnet without knowing the name?

Hi. Do you know how to get the deployment token from Azure with Pulumi? I need this token to get access to the app from CI pipeline

Reposting for additional help: https://pulumi-community.slack.com/archives/CRH5ENVDX/p1658800319880859

gooood afternoon! I have two machines running pulumi up. One on machine, we get to the preview prompt - on the second machine the pulumi up command hangs forever just after the compile (C#) finishes. Where would i start looking to dig into this in more detail? It clearly seems to be an environment issue ... (the stack uses our own Key Vault for secrets)

Hi all, the docs for tag policies point to what looks an unmaintained personal repo. In particular there's a hardcoded list of AWS resources that can be tagged, which hasn't been updated for 2 years. Is this documentation still current, and is this still the best way to go about it?

Hi all, I’m working on a pulumi project in ClojureScript. the tldr is that in order to get a repl going to do live coding, I need to have a runtime for the output js. I have tried

node -e "require('./compiled-js')"

and i get

Error: Program run without the Pulumi engine available; re-run using the pulumi CLI

then when i run

pulumi watch compiled-js

i get

pulumi watch is not currently supported on darwin/arm64

Hey! i recently started working with Pulumi on AWS with python I'm trying to deploy tasks to ECS using Pulumi but i couldn't find anywhere how it can be done.. I am able to create ECS cluster and task-definition, but for some reason there is no option to deploy it with Task type(instead Service type) Is there any workaround to get past that? Or perhaps any future plans?

Hi, I am using Pulumi with AWS KMS for encrypting secrets. In one project Pulumi insists on asking me for a secrets passphrase even though all stacks use AWS KMS. Has anybody encoutered this as well and has solved it? (Currently using pulumi v3.36.0)

How can I change Output<String> to string in C#?

How do you generate dynamic names for each resource based on a similar pattern as this: <resource type>-<product>-<environment>-<region> like: func-todosaas-dev-ne

Hi , I am trying to use Pulumi for a specific use case , I am not sure , if it can cater it or not so please if someone can let me know it will be a great help. So basically we are trying to handover the responsibility of hitting all cloud APIs ( AWS , Azure , GCP ) like getting ec2 instances , creating new EC2 instance , or getting ec2 utilisation and many more such things that are supported by SDKs , to our cloud / platform team , who are not very good with coding languages and API hitting and parsing etc. So can Pulumi make it easier for them to do all the stuff a sdk does and then can send the JSON they got to other teams to use. Basically , can Pulumi get all the data an SDK can get ?

Hi All, Setting up Reshift Cluster like this:

const redshiftCluster = new aws.redshift.Cluster(`redshift-cluster-${stack}`, {
    clusterSubnetGroupName: redshiftSubnetGroup.id,
    clusterIdentifier: `redshift-cluster-${stack}`,
    clusterType: "multi-node",
    numberOfNodes: Number(redshiftConfig.require("number-of-nodes")),
    encrypted: true,
    logging: {
        enable: true,
    },
    publiclyAccessible: false,
    enhancedVpcRouting: true,
    databaseName: redshiftConfig.require("database-name"),
    masterPassword: redshiftConfig.require("master-password"),
    masterUsername: redshiftConfig.require("master-username"),
    nodeType: redshiftConfig.require("node-type"),
    skipFinalSnapshot: true,
    tags: {
        Pulumi: "True",
        env: stack,
    },
});

the

logging

block is giving me a hard time. AWS recommends Cloudwatch, and Pulumi docs say I should be able to use it. But Pulumi does not like this:

logging: {
        enable: true,
        logDestinationType: "cloudwatch",
    },

Pulumi v3.34.1 pulumi/aws 4.29.0 What am I doing wrong? Could it be that my aws provider is too old?

How can I delete all resources and all state for all resources? Because deployment failed I need to delete every resource manually

X-posting here but tldr is this error below consistent with using the wrong version of getAMI? (deprecated vs non deprecated)

Looks like a recent Pulumi update to version 3.37.0 broke functionality when using the CLI in Azure pipelines. Reverting to the previous version 3.36.0 worked error: Pulumi installation failed with error 'Directory does not exist: D:\a\_temp\2ee57406-8f66-477a-9f08-ca79696bd086\pulumi\bin

How do you assign a namespace to a pod inside a deployment in Pulumi? It always resorts to default, I tried to set the namespace name in metadata parameter of PodTemplateSpecArgs

I am trying to install a pulumi resource provider from a file but it seems that regardless of what I do, it's not accepting the file via the

file

parameter. e.g.

pulumi plugin install resource sample-resource-provider --file sample-resource-provider.tar.gz

error: 404 HTTP error fetching plugin from <https://api.github.com/repos/pgermishuys/sample-resource-provider/releases/latest>. If this is a private GitHub repository, try providing a token via the GITHUB_TOKEN environment variable. See: <https://github.com/settings/tokens>

When building your own provider, what's the link between the Provider and the SDK? More explicitly, when I run a pulumi action (e.g.

pulumi preview

). Pulumi knows to download and install the appropriate provider for the SDKs i'm using in my Pulumi project.

Have you experienced this error before, I get it when creating metric alert rule in azure monitor. ─ azure-nativeinsightsMetricAlert alert creating failed error: autorest/azure: Service returned an error. Status=400 Code="BadRequest" Message="Criteria field 'odata.type' is missing. Activity ID: 0e792dc4-7837-4fe2-9468-c9dddef9e3e2."

Why do I get this error when deploying API Management in Azure with Pulumi:

error: Code="InvalidParameters" Message="Invalid parameter: Cannot have two services in the same location 'East US'."

When you try to manually delete a resource group in Azure that was created with pulumi do you get this error sometimes:

"provisioningState": "Deleting"

We've just had Pulumi wanting to recreate a slew of resources seemingly out of the blue because it has decided to change some automatically generated attributes i.e. the hash that it automatically adds to say, a Cloud Run service name, is now different so it wants to replace the resource. The types of resources are varied and span three providers, AWS, GCP, GCP native. This happened just after applying changes to the stack, immediately after which it would not diff, but slightly later on the order of minutes/hour, it suddenly diffs. There are no known other factors that I can think of that would've caused this, and it's happened twice in short succession. Replacing the resources would cause downtime in our production system. First time we were able to accept the downtime as part of scheduled maintenance, but now we need to figure out what is going on. Does anyone have any suggestions on how to debug this further?

can you use

pulumi import

with the

aws-native

provider? I tried

pulumi import aws-native:s3/bucket:Bucket my-bucket my-bucket

and I get

Resource type aws-native:s3/bucket:Bucket not found

Not sure how to find the correct name for these

Hello everyone, we were lagging a bit, but the Public Pulumi Roadmap has been updated with our scope for Q3 and Q4 of this year: https://github.com/orgs/pulumi/projects/44

Hey Working with pulumi secrets, can we have a configuration object with all secrets or a mixture of secrets and plain text, if so how do we access the object programmatically?