https://pulumi.com logo
Join the conversationJoin Slack
Channels
announcements
automation-api
aws
azure
blog-posts
built-with-pulumi
cloudengineering
cloudengineering-support
content-share
contribex
contribute
docs
dotnet
finops
general
getting-started
gitlab
golang
google-cloud
hackathon-03-19-2020
hacktoberfest
install
java
jobs
kubernetes
learn-pulumi-events
linen
localstack
multi-language-hackathon
office-hours
oracle-cloud-infrastructure
plugin-framework
pulumi-cdk
pulumi-crosscode
pulumi-deployments
pulumi-kubernetes-operator
pulumi-service
pulumiverse
python
registry
status
testingtesting123
testingtesting321
typescript
welcome
workshops
yaml
Powered by Linen
general
  • g

    glamorous-printer-66548

    10/11/2018, 12:00 AM
    @white-balloon-205 is there an example of using the provider-level
    deleteBeforeReplace
    option? Related issue: https://github.com/pulumi/pulumi/issues/1620
    w
    • 2
    • 7
  • t

    thankful-artist-95425

    10/11/2018, 12:42 AM
    Has anyone tried to load docker registry credentials into a k8s cluster with pulumi?
  • s

    sparse-insurance-40223

    10/11/2018, 12:57 PM
    how can i get an azure.msi.UserAssignedIdentity clientId please - it doesn't seem to exist in the pulumi source at all but it's an essential part of using them
    b
    • 2
    • 31
  • b

    busy-umbrella-36067

    10/11/2018, 3:50 PM
    is this PR included in the latest npm release? https://github.com/pulumi/pulumi-docker/pull/25
    b
    w
    • 3
    • 5
  • s

    sparse-insurance-40223

    10/11/2018, 4:25 PM
    hooray i got pod MSI working on azure kubernetes
    šŸŽ‰ 5
  • s

    sparse-insurance-40223

    10/11/2018, 4:25 PM
    pulumi's awesome again
  • i

    important-jackal-88836

    10/11/2018, 8:06 PM
    Sign In button on www.pulumi.com redirects me to 404
    a
    m
    • 3
    • 6
  • b

    busy-umbrella-36067

    10/11/2018, 9:57 PM
    is there any way to hide the docker build output when creating docker builds/pushes?
  • b

    busy-umbrella-36067

    10/11/2018, 9:57 PM
    im building 30 containers at once and its like a firehose
    šŸ‘ 1
    c
    b
    +2
    • 5
    • 19
  • g

    glamorous-printer-66548

    10/12/2018, 9:28 AM
    Off-topic: Using pulumi sparked an idea in me: How about generating YAML files for YAML-based CI systems (circle, travis, gitlab and basically almost every ā€œmodernā€ ci system) via a CLI and a bunch of TypeScript libraries? Why? We’re using more and more of gitlab-ci and either our config files becomes super large or we’re using a lot of yaml anchors which are not exactly readable and it’s a lot of try and error to get actually valid YAML out of it. In general it’s also often not clear what config options an CI system offers without checking the documentation in detail. I think it should be possible (and probably not super hard) to build a TypeScript library which can generate for example gitlab CI yamls and is strictly typed, so if you put in some invalid config keys / values the compiler yells at you instead of having to run a lot of try-and-error ci jobs. Also it would be possible to build some reuse / abstraction library to create a set of common jobs that can be reused in multiple repos. Wdyt think of something like this? Anybody heard whether something similar already exists?
    q
    b
    • 3
    • 36
  • b

    bright-motherboard-93404

    10/12/2018, 1:08 PM
    Is it normal for pulumi-aws ec2 resources to get spun up/down serially, even though `pulumi up`/`down` is being called with
    --parallel 100
    . I simply have a list of ec2 instances that I'm spinning up and down, and I've notices that the bigger the list, the longer these operations take. Have I accidentally introduced some kind of data dependency between my machines that forces Pulumi to process them one-by-one?
    b
    b
    i
    • 4
    • 15
  • i

    incalculable-sundown-82514

    10/12/2018, 4:54 PM
    Hi everyone! I created a #python channel just now to talk about using Pulumi with Python, if people are interested. There’s also #golang for Go!
  • b

    brave-angle-33257

    10/12/2018, 6:49 PM
    missing something here.. I'm creating a resource in Azure, and I want the principal ID of that item, it's an output.. but it's giving me back a function. I realize that's because its' from a promise of some type, but how do i get the value as an output? it says I can't use
    .get()
    during an update.. is this where I'd use
    apply()
    instead?
    w
    • 2
    • 22
  • f

    full-dress-10026

    10/12/2018, 11:42 PM
    If I set
    cloud-aws:acmCertificateARN
    in my stack config, my
    cloud.Service
    does not create an ALB with the SSL cert set.
    w
    • 2
    • 2
  • f

    full-dress-10026

    10/12/2018, 11:44 PM
    Is this expected? Or perhaps something else needs to be configured?
  • f

    full-dress-10026

    10/12/2018, 11:46 PM
    Ah,
    cloud.Service
    uses a NLB not a ALB. Hmm.
  • b

    brave-angle-33257

    10/13/2018, 12:53 AM
    just posted an issue with pulumi azure, looks like terraform azurerm provider got updated to 1.16.0 but the pulumi azure branch is lagging behind a bit (posted Oct 1st) https://github.com/pulumi/pulumi-azure/issues/134 pretty please! I just hit this issue trying to create a role that allows data access, a new feature added in this TF release.
    b
    • 2
    • 2
  • g

    gifted-lion-29985

    10/14/2018, 2:59 AM
    Hi, firstly, thanks for the great work! Is there a way to add custom authorizer just by using the pulumi-cloud api? Or is there plans on adding it?
    w
    c
    • 3
    • 3
  • g

    gifted-lion-29985

    10/14/2018, 3:26 AM
    Thanks for the reply. Actually I am also enquiring on the direction. So if I need to have grain control over AWS, I should be using pulumi-AWS instead of Pulumi Cloud?
    w
    • 2
    • 1
  • g

    gifted-lion-29985

    10/14/2018, 3:56 AM
    To be honest I started with pulumi-cloud first but realised i could not create secondary indexes for dynamodb, and also authorizer for api therefore I went ahead to use pulumi-AWS instead.
  • g

    gifted-lion-29985

    10/14/2018, 3:58 AM
    Let me know if I am wrong, as I did went through the source and see it didn’t have apis to create global secondary index on dynamodb
  • c

    cold-coat-35200

    10/14/2018, 11:09 AM
    Hi everyone, I just started to play with Pulumi and from the documentation/examples not clear to me how can I change a resource property after it was created? The resources are immutables, they have only read only properties, the "get" methods return read only results as well. I created an eks cluster based on the "aws-ts-eks" example, it worked fine, then I added a kubernetes load balancer, which is not working, because unable to find the public subnets. To make it work, I need to add a "kubernetes.io/cluster/${cluster_name}" tag to the public subnets. My problem is, that the subnets are created before the eks cluster, in fact the "eks.Cluster" constructor expects the subnet ids. I can use the "aws.ec2.getSubnet" method to get the subnet informations, but unable to modify it. I can create a new subnet with "aws.ec2.Subnet" based on the previous one, but I not sure how would pulumi handle that(overwrite the old one, create a new one), especially because the "aws.ec2.Subnet" constructor expects a name, which is not available on the "GetSubnetResult" interface. What is the correct way to do this?
    b
    b
    +3
    • 6
    • 27
  • g

    glamorous-printer-66548

    10/15/2018, 12:10 AM
    Hi, is there a way to programmatically set a global default provider or (programmatically set a root resource which contains this provider)?? The concrete issue is the following: Currently in my stacks I’m programmatically creating a k8s provider that should be used as the deployment target for all resources in that stack (using https://gist.github.com/geekflyer/b78adab2667d8526a1dd593bc5c844bf#file-gke-ts). In order to use this dynamically created provider, however, I have pass it explicitly to each k8s resource that is created in that stack OR I have to explicitly set a common parent on each resource in that stack and set the k8s provider on that parent. If I accidentally forget to explicitly set the provider or parent on one of the resources, pulumi seems to create an implicit k8s provider based on my local kubectl config / context. Depending on what my current local kubectl context contains, pulumi may end up silently deploying resources to a different cluster than what I actually want. It would be very helpful if I could disable or override this ā€œimplicit default providerā€ programmatically in the entrypoint of my program.
    w
    c
    s
    • 4
    • 4
  • g

    great-refrigerator-15198

    10/15/2018, 2:58 PM
    Hey there, when trying to create CloudWatch metric alarms I get this errors with no useful message attached:
    aws:cloudwatch:MetricAlarm: test-cache-redis-EngineCPUUtilization
        error: Plan apply failed: Creating metric alarm failed: ValidationError:
            status code: 400, request id: ...
    Does anyone with more experience in Pulumi and/or Terraform knows how may I proceed? AWS docs list an infinity of possibilities for 400, but the lack of message doesn’t help to pin down what is going on
    b
    • 2
    • 3
  • b

    busy-umbrella-36067

    10/15/2018, 5:44 PM
    is the eks module still being used? https://github.com/pulumi/eks or has it been merged into the aws provider?
  • c

    creamy-potato-29402

    10/15/2018, 5:45 PM
    It’s still separate.
  • b

    busy-umbrella-36067

    10/15/2018, 5:50 PM
    @creamy-potato-29402 I need a
    getCluster
    function that provides the kubeconfig. which repo should I file the issue under?
    c
    g
    b
    • 4
    • 12
  • b

    busy-umbrella-36067

    10/15/2018, 5:51 PM
    I think the terraform aws provider does give it as an output, so it should be feasible in both
  • g

    glamorous-printer-66548

    10/16/2018, 1:57 AM
    created a PR in the pulumi gcp repo but it’s travis jobs are failing, seemingly due to some CI setup issues, not because of my code: https://github.com/pulumi/pulumi-gcp/pull/53
  • t

    tall-monitor-77779

    10/16/2018, 2:33 PM
    hey, say I have an existing AWS resource (prior to deploying with pulumi) and I want to manage it with pulumi, specific case being I want to enable flow logs on a VPC resource, how would I do this? ie. without to risk of overwriting existing configuration
    w
    c
    • 3
    • 6
Powered by Linen
Title
t

tall-monitor-77779

10/16/2018, 2:33 PM
hey, say I have an existing AWS resource (prior to deploying with pulumi) and I want to manage it with pulumi, specific case being I want to enable flow logs on a VPC resource, how would I do this? ie. without to risk of overwriting existing configuration
w

white-balloon-205

10/16/2018, 4:22 PM
This is possible using a manual process currently - we are tracking making this really easy as part of https://github.com/pulumi/pulumi/issues/1662.
For now - check out the guidance at https://pulumi-community.slack.com/archives/C84L4E3N1/p1538054214000100. We'll make sure to get that into the issue or an FAQ soon.
t

tall-monitor-77779

10/16/2018, 5:01 PM
thanks @white-balloon-205 seems to make sense, but any pointers on the first part
Use '.get' methods and do a deployment to read the resource into the checkpoint file.
?
c

cold-coat-35200

10/16/2018, 6:35 PM
I think he refers to the get methods on the aws resources, like this: https://pulumi.io/reference/pkg/nodejs/@pulumi/aws/ec2/#Vpc
w

white-balloon-205

10/16/2018, 6:43 PM
That's right - something like:
const cluster = aws.eks.Cluster.get("mycluster", "eksCluster-4606f9f");
That gets an initialized instance of a Cluster and stores it in the checkpoint file. If you
pulumi stack export > stack.json
you'll see:
{
                "urn": "urn:pulumi:gettest-dev::gettest::aws:eks/cluster:Cluster::mycluster",
                "custom": true,
                "id": "eksCluster-4606f9f",
                "type": "aws:eks/cluster:Cluster",
                "outputs": {
                    ...
                },
                "parent": "urn:pulumi:gettest-dev::gettest::pulumi:pulumi:Stack::gettest-gettest-dev",
                "external": true,
                "dependencies": null,
                "initErrors": null,
                "provider": "urn:pulumi:gettest-dev::gettest::pulumi:providers:aws::default::3c21fdf5-0031-4f19-9576-838e47b613fb"
            }
Note the
external: true
- which indicates this is not managed by Pulumi.
t

tall-monitor-77779

10/16/2018, 7:11 PM
brilliant, thanks guys
View count: 1