bored-vr-79323
12/07/2023, 1:18 PMDiagnostics:
vault:appRole:AuthBackendRoleSecretId (new-auth-backend-role-secret-id):
error: unrecognized resource type (Check): vault:appRole/authBackendRoleSecretId:AuthBackendRoleSecretId
Our code following the Pulumi Vault docs, and the offending line is at the bottom using `approle.NewAuthBackendRoleSecretId`:
import (
mount "github.com/pulumi/pulumi-vault/sdk/v5/go/vault"
approle "github.com/pulumi/pulumi-vault/sdk/v5/go/vault/approle"
"github.com/pulumi/pulumi-vault/sdk/v5/go/vault/pkisecret"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
...
caRole, _ := pkisecret.NewSecretBackendRole(pulumiContext, "ca-role", &pkisecret.SecretBackendRoleArgs{
Backend: pulumi.String(enginePath),
Name: pulumi.String(caRoleName),
AllowedDomains: pulumi.StringArray{
pulumi.String("example.com"),
},
AllowSubdomains: pulumi.Bool(true),
MaxTtl: pulumi.String("2592000"),
}, pulumi.Provider(vaultprovider))
appRole, _ := mount.NewAuthBackend(pulumiContext, "approle", &mount.AuthBackendArgs{
Type: pulumi.String("approle"),
}, pulumi.Provider(vaultprovider))
backendRole, _ := approle.NewAuthBackendRole(pulumiContext, "pkiapprole", &approle.AuthBackendRoleArgs{
Backend: appRole.Path,
RoleName: pulumi.String("test-role"),
TokenPolicies: pulumi.StringArray{
pulumi.String("default"),
pulumi.String("dev"),
pulumi.String("prod"),
},
}, pulumi.Provider(vaultprovider), pulumi.DependsOn([]pulumi.Resource{
appRole,
}))
policy, _ := mount.NewPolicy(pulumiContext, "my-policy", &mount.PolicyArgs{
Name: pulumi.String("cert-issuer-policy"),
Policy: pulumi.String(`path "intermediate-ca/sign/cert-issuer-role" {
capabilities = ["read", "list", "create", "update"]
}`),
}, pulumi.Provider(vaultprovider), pulumi.DependsOn([]pulumi.Resource{
caRole, appRole,
}))
secretId, _ := approle.NewAuthBackendRoleSecretId(pulumiContext, "new-auth-backend-role-secret-id", &approle.AuthBackendRoleSecretIdArgs{
Backend: appRole.Path,
RoleName: backendRole.RoleName,
}, pulumi.Provider(vaultprovider), pulumi.DependsOn([]pulumi.Resource{
caRole, appRole, backendRole, policy,
}))
What does this mean? Seems like some people experience this by passing in the wrong provider but in our case we pass in the same Vault provider throughout. Thoughts? Thanks!steep-toddler-94095
12/08/2023, 5:50 AM"<http://github.com/pulumi/pulumi-vault/sdk/v5/go/vault/approle|github.com/pulumi/pulumi-vault/sdk/v5/go/vault/approle>"
should instead be
"<http://github.com/pulumi/pulumi-vault/sdk/v5/go/vault/appRole|github.com/pulumi/pulumi-vault/sdk/v5/go/vault/appRole>"
bored-vr-79323
12/08/2023, 8:47 AMcould not import <http://github.com/pulumi/pulumi-vault/sdk/v5/go/vault/appRole|github.com/pulumi/pulumi-vault/sdk/v5/go/vault/appRole> (no required module provides package "<http://github.com/pulumi/pulumi-vault/sdk/v5/go/vault/appRole|github.com/pulumi/pulumi-vault/sdk/v5/go/vault/appRole>")
mammoth-alligator-18983
12/08/2023, 9:11 AMsteep-toddler-94095
12/15/2023, 5:06 AMbored-vr-79323
12/15/2023, 9:05 AM