No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

Hey everyone,
I'm working on a usecase where I need to deploy an AWS stack using Pulumi with Java. I need to create an S3 bucket and an IAM user who has programmatic access to this bucket (with an access key and secret access key).
How can I get the access key and secret access key for this IAM user?
Also, is there a way to directly store these secrets in a secure vault, like Hashicorp Vault, using Pulumi?

I am not very familiar with the java bindings; but if you are creating the IAM user, then you are very likely creating the "auth tokens" resource as well, which should include those secrets as outputs. From there, you can do whatever you want with them, including shipping to Vault or ESC as desired. Long story short, the programmatic access is a resource that you create