What is the Pulumi equivalent of `kubectl n $NAMESPACE patch

Question

What is the Pulumi equivalent of `kubectl n $NAMESPACE patch serviceaccount default p imagePullSecrets name regcred ` azure natice python pulumi kubernetes

better-shampoo-48884 · Answer

Not sure if there s a patch command but would be surprised if there was one Since both pulumi and kubernetes both operate declaratively it would make more sense to have the the whole resource under pulumi management and then just modify that aspect and apply it again <https www pulumi com docs reference pkg kubernetes core v1 serviceaccount > handles serviceAccounts and allows you to set the imagePullSecrets

white-balloon-205 · Answer

That said this comes up a lot and we d love to offer a way to opt in to patch behaviour see <https github com pulumi pulumi kubernetes issues 264|https github com pulumi pulumi kubernetes issues 264>

handsome-state-59775 · Answer

Is it possible to get sample code for this <https github com pulumi pulumi kubernetes issues 264 issuecomment 819522599>

handsome-state-59775 · Answer

so here s how i ended up doing it ```def patch service account default kubeconfig p Output namespace k8s core v1 Namespace image pull secret name str gt None Patches default serviceaccount of namespace with image pull secret serviceaccount patch = p Output all kubeconfig=kubeconfig namespace metadata=namespace metadata apply lambda args subprocess run f kubectl kubeconfig= lt echo args kubeconfig f n args namespace metadata name patch serviceaccount default p imagePullSecrets f name image pull secret name executable= bin bash shell=True check=True capture output=True serviceaccount patch apply lambda results p info msg=results stdout decode resource=namespace if results stdout else None serviceaccount patch apply lambda results p error msg=results stderr decode resource=namespace if results stderr else None ```