nutritious-airline-70839
12/04/2019, 10:07 AMawsx
for pulumi for python?nutritious-airline-70839
12/04/2019, 10:08 AMastonishing-spoon-27005
12/04/2019, 4:10 PMnutritious-airline-70839
12/04/2019, 4:39 PMclean-engineer-75963
12/05/2019, 10:05 PMtags={
"Name": f"{config.require('cluster.name')}_"
f"{base_namespace.metadata['name'].apply(lambda x: str(x))}_backups",
}
Is giving me this tag:
clustername_<pulumi.output.Output object at 0x7f1d972fa160>_backups
clever-nest-47198
12/05/2019, 10:11 PMclean-engineer-75963
12/05/2019, 10:15 PMHow am I supposed to be doing this?
clever-nest-47198
12/05/2019, 10:16 PMmysterious-egg-7415
12/06/2019, 2:06 AMcluster_name = config.require("cluster.name")
tags = {
"Name": pulumi.Output.concat(cluster_name, "_", base_namespace.metadata['name'], "_backups")
}
clever-nest-47198
12/06/2019, 1:38 PMclean-engineer-75963
12/06/2019, 5:17 PMclean-engineer-75963
12/06/2019, 7:01 PMclean-engineer-75963
12/06/2019, 10:32 PMToken
, from this file: https://github.com/pulumi/pulumi-vault/blob/master/sdk/python/pulumi_vault/token.pyclean-engineer-75963
12/10/2019, 12:15 AMwith
block) and it doesn't seem to be respecting the context. Details to follow...clean-engineer-75963
12/13/2019, 11:33 PMclean-engineer-75963
12/16/2019, 10:13 PMPORT_FORWARD = None
def get_vault_port_forward_address(vault_deployment_metadata):
"""Wait for a Vault Pod to become leader, port-forward to it, and return its address."""
namespace = vault_deployment_metadata["namespace"]
vault_component = vault_deployment_metadata["labels"]["component"]
def get_ready_vault_pod():
kubernetes.config.load_kube_config()
client = kubernetes.client.CoreV1Api()
while True:
pods = client.list_namespaced_pod(
namespace,
label_selector=f"component={vault_component}",
)
for pod in pods.items:
for status in pod.status.conditions:
if status.type == "Ready" and status.status == "True":
return pod.metadata.name
time.sleep(2)
# TODO: This port-forward will run for the remainder of the Pulumi program.
# Find a way to tear it down as soon as we're done with it. The pulumi
# programming model makes this tough.
global PORT_FORWARD
PORT_FORWARD = pexpect.spawn(
"kubectl",
["-n", namespace, "port-forward", get_ready_vault_pod(), "8200:8200"],
ignore_sighup=True)
PORT_FORWARD.expect_exact("Forwarding from 127.0.0.1:8200 -> 8200\r\n")
PORT_FORWARD.expect_exact("Forwarding from [::1]:8200 -> 8200\r\n")
return "<https://127.0.0.1:8200>"
# Vault provider to be used via port-forward.
vault_provider = pulumi_vault.Provider(
"vault-provider",
address=vault_deployment.metadata.apply(
get_vault_port_forward_address),
skip_tls_verify=True,
token="my-token",
)
I'm using a function in an apply to start the port-forward during initialization of the vault provider. Unfortunately I'm closing over a global variable so the port-forward persists outside of the apply.better-actor-92669
12/17/2019, 12:41 PMfrom pulumi import Config, export, get_project, get_stack, Output,\
ResourceOptions
config = Config(None)
compute.Instance(...,
zone=config.get('gcp:region') + '-' +
zone_matcher.get(count + 1, 'a'),
)
But it doesn't work, however in my stack's yaml file it is set up
config:
gcp:project: some-project
gcp:region: europe-west3
When I do config.require()
it says that 'some-projectgcpregion' is not setup, and this is correct since I only set up secrets on some-projects level. Gcp region is under config key.
error: Missing required configuration variable 'some-project:gcp:region'
please set a value using the command `pulumi config set some-project:gcp:region <value>`
How can I get the value of the project's default gcp:region?limited-honey-31480
12/19/2019, 4:50 PMcolossal-plastic-46140
12/20/2019, 6:25 PMbright-orange-69401
12/22/2019, 9:09 PMpulumi preview
on the S3 example template I attached:
Diagnostics:
pulumipulumiStack (nuage-admin-dev):
error: preview failed
awss3Bucket (nuage-test):
error: Preview failed: importing arnawss3::nuage test Error importing AWS S3 bucket policy: InvalidARNError: invalid ARN
caused by: invalid Amazon S3 ARN, unknown resource type, arnawss3:::nuage-test
bumpy-restaurant-1466
12/24/2019, 4:09 AMorange-australia-91292
12/26/2019, 3:57 PMorange-australia-91292
12/26/2019, 3:59 PMorange-australia-91292
12/26/2019, 5:14 PMorange-australia-91292
12/28/2019, 6:56 AMimport pulumi
from pulumi_aws import s3
s3.Bucket.get("pm-images", "arn:aws:s3:::pm-images")
and I get back
error: Preview failed: importing arn:aws:s3:::pm-images: Error importing AWS S3 bucket policy: InvalidARNError: invalid ARN
caused by: invalid Amazon S3 ARN, unknown resource type, arn:aws:s3:::pm-images
orange-australia-91292
12/28/2019, 6:56 AMorange-australia-91292
12/28/2019, 6:57 AMorange-australia-91292
12/28/2019, 7:04 AMaws s3api get-bucket-policy --bucket pm-images
returns access denied, however the same thing on my own bucket says that the policy doesnāt exist. Which is correct, there is no policyorange-australia-91292
12/28/2019, 7:10 AMorange-australia-91292
12/28/2019, 11:59 AMs3.BucketPublicAccessBlock(
resource_name=f"{frontend_bucket_name}_block_public_access",
bucket=bucket.arn,
block_public_acls=True,
ignore_public_acls=True,
restrict_public_buckets=True,
block_public_policy=True,
)
where bucket
is a resource that was just created by Pulumi with s3.Bucket()