Channels
announcements
automation-api
aws
azure
blog-posts
built-with-pulumi
cloudengineering
cloudengineering-support
content-share
contribex
contribute
docs
dotnet
finops
general
getting-started
gitlab
golang
google-cloud
hackathon-03-19-2020
hacktoberfest
install
java
jobs
kubernetes
learn-pulumi-events
linen
localstack
multi-language-hackathon
office-hours
oracle-cloud-infrastructure
package-authoring
pulumi-ai
pulumi-cdk
pulumi-cloud
pulumi-crosscode
pulumi-deployments
pulumi-kubernetes-operator
pulumiverse
python
registry
status
testingtesting123
testingtesting321
typescript
welcome
workshops
yaml
Title
w
worried-city-86458
09/03/2021, 4:13 AMNot sure why I'm getting an error trying to create a couple of security group rules. Something like:
new SecurityGroupRule($"{awsEksPrefix}-1",
new SecurityGroupRuleArgs
{
Type = "ingress",
Protocol = "tcp",
FromPort = 0,
ToPort = 65535,
SourceSecurityGroupId = internalSgId,
SecurityGroupId = clusterSgId
},
new CustomResourceOptions { Provider = awsProvider });
new SecurityGroupRule($"{awsEksPrefix}-2",
new SecurityGroupRuleArgs
{
Type = "ingress",
Protocol = "tcp",
FromPort = 0,
ToPort = 65535,
SourceSecurityGroupId = internetSgId,
SecurityGroupId = clusterSgId
},
new CustomResourceOptions { Provider = awsProvider });Duplicate resource URN 'urn:pulumi:alpha::aws-eks::aws:ec2/securityGroupRule:SecurityGroupRule::alpha-aws-eks-2'; try giving it a unique nameb
bored-table-20691
09/03/2021, 4:22 AMDoes your state already have that name used elsewhere from a prior run or something?
w
worried-city-86458
09/03/2021, 4:35 AMNope. I just added them now.
Comment them both out => no change.
Uncomment just one of them => unique name error 😖
(I also checked the state and definitely not there)
b
bored-table-20691
09/03/2021, 4:56 AMInteresting - that is frustrating.
w
worried-city-86458
09/04/2021, 5:54 AMYeah, feels like a bug.
b
bored-table-20691
09/04/2021, 5:56 AMDo you have a repro that isn’t your full program?
or if not, willingness to show your full program?
w
worried-city-86458
09/08/2021, 10:39 PMThis is just bizarre. I tried a workaround with a cloudformation stack and get a similar error:
Duplicate resource URN 'urn:pulumi:alpha::aws-eks::aws:cloudformation/stack:Stack::alpha-aws-eks-sg-rules'; try giving it a unique name@billowy-army-68599 any ideas?
// cluster security group rules for legacy ingress; work around duplicate resource urn issue
Logger.LogDebug("Creating eks cluster security group rules");
var clusterSgrTemplate = Output.Tuple(clusterSgId, eksNodeInternalElbSgId, eksNodePublicElbSgId)
.Apply(((string ClusterSgId, string InternalSgId, string InternetSgId) tuple) =>
RenderTemplate("EksSecurityGroupRules.yaml", ReadResource, new { tuple.ClusterSgId, tuple.InternalSgId, tuple.InternetSgId }));
new Pulumi.Aws.CloudFormation.Stack($"{awsEksPrefix}-sg-rules",
new StackArgs { TemplateBody = clusterSgrTemplate },
new CustomResourceOptions { Provider = awsProvider });AWSTemplateFormatVersion: 2010-09-09
Resources:
InternalIngress:
Type: AWS::EC2::SecurityGroupIngress
Properties:
GroupId: {{ clusterSgId }}
IpProtocol: tcp
FromPort: 0
ToPort: 65535
SourceSecurityGroupId: {{ internalSgId }}
InternetIngress:
Type: AWS::EC2::SecurityGroupIngress
Properties:
GroupId: {{ clusterSgId }}
IpProtocol: tcp
FromPort: 0
ToPort: 65535
SourceSecurityGroupId: {{ internetSgId }}It doesn't matter what's in the cf template as it fails with the cf template resource urn, which is definitely unique.
b
billowy-army-68599
09/08/2021, 11:43 PM@worried-city-86458 are you creating the resources inside an apply?
w
worried-city-86458
09/08/2021, 11:44 PMNo
b
billowy-army-68599
09/08/2021, 11:45 PMwould you mind doing a
pulumi stack export