https://pulumi.com logo
Join Slack
Powered by
This message was deleted.
# general
s
This message was deleted.
l
Yes. The deployed resource is used with the provider it is deployed with. If you (really) changed the provider, Pulumi would have to destroy the old resource and create a new one in the new provider, so it needs to remember what old provider is associated with each resource. To resolve this, you need to update the state so that either the old provider has the new token, or all the resources used the new provider. I believe there are better / newer ways to do this, but I'm an old-timer: my solution would be to export-edit-import the state file. Hopefully someone who has been keeping up-to-date with changes in 
pulumi refresh
and 
pulumi import
will be able to furnish you with a better solution!
👍 1
h
@little-cartoon-10569 Thanks for your reply. The provider hasn't been changed aside from the token it's using to authenticate has. So yeah, I think you're right that I'll need to edit the state manually. Yeah, I had had a look at those commands but didn't see anything useful for my case.
Given that the preview operation shows no change, and based on a video I've just watched indicating pulumi will only attempt to apply a change if it thinks a resource needs to change, would it be viable to apply pulumi (without refresh), (presumably) have the token be updated in state and then be able to run operations with 
--refresh
?
l
Yes I think that would work, if you're using an explicit provider. Maybe not, if you're using the default provider? Worth a try!
h
My only concern is changes that have occurred outside of state being reverted/crushed, but by the sounds of it that shouldn't happen. 🤔
Yep, that seems to have worked. Thanks again @little-cartoon-10569 for your input 🚀 .
f
I see something extremely similar, by the way, with the DigitalOcean and Cloudflare providers; I joined the Slack today to ask about it! My own 
pulumi up
thinks it needs to destroy most of the stack, so I can't let that run, and 
pulumi refresh
is failing to auth (presumably due to the rotated creds). I don't suppose you know the difference between the "inputs" and "outputs" properties of the Pulumi provider? The output of 
pulumi stack export
, in the Cloudflare provider section, contains two different ciphertexts for the Cloudflare 
apiToken
in its 
inputs
and its `outputs`; can I just replace both those ciphertexts in the output of `pulumi stack export`" with the contents of the same key in 
Pulumi.<stack>.yaml
?
h
@fancy-pharmacist-39201 not personally, I really don't use pulumi much 😬 Hopefully someone else can help. You may be better off asking outside of this thread for visibility.
👍 1
3 Views
Open in Slack
PreviousNext
Powered by