wooden-vegetable-26535
10/05/2022, 7:31 AMapi/stacks/<org>/<project>/<stack>/export
to get a stacks output. Some of those outputs are encrypted, and i need a way to decrypt those for my script.
Is there a way to decrypt the encrypted outputs of a stack/export rest api call without using the pulumi cli/sdk? Can you point me to documenation for this use case?rhythmic-tailor-1242
10/08/2022, 4:26 PMpublicKey
in aws.ec2.KeyPair
? is it my AWS_ACCESS_KEY_ID
?echoing-dinner-19531
10/08/2022, 4:29 PMearly-cat-34152
10/10/2022, 8:27 AMkubectl
. But kubectl
on the CL works fine. How can I find out which user Pulumi is using for authentication?early-cat-34152
10/10/2022, 11:41 AMrefined-engine-12125
10/11/2022, 4:15 PMable-ability-11203
10/11/2022, 4:59 PMup
command is completed on definitely ready stack? Should I do a custom provider, or a local Command perhaps? I am off k8s at the moment (as I know it has a notion of readiness probes etc), going by sole containers for dev and pure VMs for prod.
This probably extends to eventual regular checks of infrastructure, that pulumi up
will conduct when run by cron, as that's the IaaC way, right? š
Thanks!able-ability-11203
10/11/2022, 5:35 PMfile://~
), both having the same sets of stacks (like dev
). But when doing pulumi stack init dev
at the second project. Pulumi tells me that stack dev
already exists. My structure is like depicted here (as in docs).creamy-window-21036
10/11/2022, 7:40 PMAWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY, AWS_SESSION_TOKEN
from pulumi import automation as auto
def program():
pass
auto.create_stack(
stack_name="Dev",
project_name="MyfirstProject",
program=program,
opts=auto.LocalWorkspaceOptions(
project_settings=auto.ProjectSettings(
name="Test",
runtime="python",
backend=auto.ProjectBackend(url="<s3://test-bucket>")
)
)
)
clean-controller-92732
10/11/2022, 11:27 PMupdating stack...
Updating (test22):
pulumi:pulumi:Stack AUTOIAM-TAMTOOL-test22 running
aws:iam:User test22 [diff: ~tags]
~ aws:iam:UserPolicy useast-partner-datafeed updating [diff: ~policy]
~ aws:iam:UserPolicy useast-partner-datafeed updated [diff: ~policy]
pulumi:pulumi:Stack AUTOIAM-TAMTOOL-test22
Resources:
~ 1 updated
2 unchanged
few-carpenter-12885
10/12/2022, 5:19 PMOutput<string>
types. I'm dealing with a MongoDB URI, db name, and an associated username/password. I have all 4 of these as outputs, and i am trying to form them into a proper MongoDB connection string. This involves taking the URI in the format <mongodb+srv://mycluster.randomchars.mongodb.net>
and inserting the username/password to form this format: mongodb+srv://<username>:<password>@mycluster.randomchars.mongodb.net/<dbName>
.
The problem I have is that I need to do some sort of replace in order to retain the mycluster.randomchars
section of the URI - this means that pulumi.interpolate
is not sufficient for my use-case. Any suggestions where I can go from here? Just keep them separate and form them properly in the application?ancient-nightfall-54764
10/13/2022, 7:23 AMwitty-vegetable-61961
10/14/2022, 2:21 PMpolite-ocean-13631
10/14/2022, 3:25 PMaws.cloudwatch.EventTarget
with the ecs_target
parameter? I have the parameter set to a aws.cloudwatch.EventTargetEcsTargetArgs
with task_definition_arn
set to the ARN of my task definition, but after bringing the stack up the AWS console shows no targets for the EventBridge rule, and no tasks are created from the task definition even though the EventTarget
is using a rule that should run it on a schedule every few minutes.polite-ocean-13631
10/14/2022, 4:22 PMOutput
wrapped value? I can't do pulumi.export(name='export-name', value=x)
because x
is of type Output
, but when I rewrite that to use x.apply(fn)
where fn
calls pulumi.export
the name & value don't appear with the other exported values. Tossing a print
statement in there reveals in the diagnostics that it is being run, and the correct name/value pairs get through, but despite that they don't seem to get exported.green-bird-4706
10/16/2022, 11:06 PMprivate_key
(rsa certicate) and private_key_passphrase
in the Terrform provider. I would like to add these as config secrets in Pulumi, but looking at the docs it only has the option to set the path to the certificate?few-plastic-88435
10/17/2022, 12:38 PMquaint-hydrogen-7228
10/18/2022, 6:52 AMbrave-motorcycle-67487
10/18/2022, 7:58 PMpulumi up
to not make changes to it:
⢠If I provide any value for the listener_arn
field in the auto-generated code, Pulumi attempts to update it via AWS's API and that fails because it has to be set on creation.
⢠If I don't provide listener_arn
, Pulumi errors out because it's a required field.
⢠If I don't define the resource at all, Pulumi errors out because it would attempt to delete it from AWS (but thankfully protect=True
)
I'd like to either back out of the import or move forward in a no-op way, but I'm not sure how to do either of those. I think my options are
1. Set up replace_on_changes
to let Pulumi delete and recreate the resource in AWS. Theoretically fine, but since this is in-use infrastructure and I'm just getting this set up for the first time, I'm nervous about this happening correctly.
2. Do some sort of stack edit to remove the imported resource, and try it again but with aws
instead of aws-native
. I'm not sure how I would do this, and it seems like the sort of dangerous path that I shouldn't be pursuing as a beginner.
3. Do some sort of stack edit to fix the imported resource so it correctly knows what is set up in AWS and doesn't try to make any changes to it. Similarly sounds risky.
Any advice on a path out of this? I haven't yet learned many of the tools for dealing with problems I create in Pulumi. simple smilebrave-motorcycle-67487
10/18/2022, 8:59 PMpulumi import
? I thought it would be the type field in the yaml tab of the docs, but that seems inconsistent:
⢠type: aws-native:elasticloadbalancingv2:ListenerRule
-> aws-native:elasticloadbalancingv2:ListenerRule
⢠type: aws:s3:Bucket
-> aws:s3/bucket:Bucket
⢠type: aws:lb:ListenerRule
-> ??? (not any of: aws:lb:ListenerRule
, aws:lb/listenerrule:ListenerRule
, aws:lb/loadbalancer:ListenerRule
)
I assume there is some other place to look this up that I'm just missingfew-carpenter-12885
10/19/2022, 3:30 PMmillions-train-91139
10/20/2022, 8:53 AMhelpful-baker-38839
10/20/2022, 4:19 PMTypeError: 'NoneType' object is not subscriptable
? If verbose logging is telling me what object is NoneType, Iām not finding it.few-carpenter-12885
10/21/2022, 6:55 PMResource monitor is terminating
errors during development. I'm assuming this is because the stack hasn't reached a final state after a failure or cancellation. I'm using the Automation API - is there any way I can safeguard against this error? Would checking the state of the stack work for this or inspecting the refresResult?sparse-intern-71089
10/26/2022, 1:26 AMthousands-area-40147
10/26/2022, 8:56 PM.apply( v => console.log( v ) )
method?prehistoric-waitress-34998
10/27/2022, 2:19 PMicy-pilot-31118
10/27/2022, 3:04 PMcurved-application-45650
11/01/2022, 8:35 PMastonishing-artist-72290
11/03/2022, 12:19 AM