No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

With TypeScript, you should be able to use `pulumi.interpolate` for this — have you tried it? <https://www.pulumi.com/docs/intro/concepts/inputs-outputs/#outputs-and-strings>

(Apologies if there’s something in there that prevents it, but from the looks of things, that should work.)

Hm I haven't been able to figure out how to make that work

So since `policy` is typed as `Input&lt;string | aws.iam.PolicyDocument&gt;` , you can give it an object that conforms to the latter and use `pulumi.interpolate` to interpolate the outputs — here’s an example: <https://gist.github.com/cnunciato/47acb7f701fb89d0d362d56440344a2b>

In the example, the interpolated values are all `Output&lt;string&gt;` s

another example:
<https://github.com/jaxxstorm/pulumi-examples/blob/ce559f43b3aaea370669295459d7ab7298175bfe/typescript/aws/s3-cloudfront/index.ts#L50-L66>

<@UCWG26BH7> I have another instance where I need to interpolate some Outputs for an `aws.kms.Key` policy, but it doesn't accept an `aws.iam.PolicyDocument`. It only accepts `Input&lt;string&gt;` .

```  commonClusterExecKey = new aws.kms.Key("cfx-common-cluster-ecs-exec-key", {
    description: "",
    deletionWindowInDays: 30,
    policy: Input&lt;string&gt; | undefined,
  });```
It seems to me that an `aws.iam.PolicyDocument` has the exact same structure as a KMS policy document, and the documentation even says I can use `aws.iam.getPolicyDocument` . Why can't I simply pass an `aws.iam.PolicyDocument` object?

When I try to replicate my policy document using `aws.iam.getPolicyDocument`, I lose the ability to interpolate

we probably need to allow the input type on that, can you file an issue?

You allow the `Input&lt;string&gt;` type, but not `Input&lt;aws.iam.PolicyDocument&gt;`

This is untested, but maybe you could use `aws.iam.getPolicyDocumentOutput().json`  — something like this maybe?
```const key = new aws.kms.Key("some-key", {
    policy: aws.iam.getPolicyDocumentOutput({
        statements: [
            {
                sid: pulumi.interpolate`Some string containing ${someOutput.value}`,
                //...
            },
        ],
    }).json,
});```

(As a potential unblocker; an issue would indeed be great)

Since `policy` is an `Input&lt;string&gt;` and not a plain `string`, something like that _should_ be doable.

The problem with this is that we are passing around `aws.iam.PolicyDocument`'s everywhere else, and this would be a one-off thing. I can look into it though

<https://github.com/pulumi/pulumi-aws/issues/2170>