freezing-umbrella-548311/30/2021, 6:34 PM
billowy-army-6859911/30/2021, 7:12 PM
freezing-umbrella-548311/30/2021, 7:14 PM
Troposphere and CDK compile down to YAML and are therefore limited in what they can express. The Pulumi engine understands general-purpose language patterns, dependencies between objects, and therefore delivers a better overall experience. Pulumi also supports going beyond what you can express in YAML, such as building and publishing a Docker container image, authoring serverless functions in code, automating packaging and versioning of code, and so on.Only someone who has never used CDK could have honestly written this. CDK can do all of this, it's not limited to YAML. Custom resources and docker bundling are a thing.
Pulumi integrates with a number of CI/CD providers and source control systems (SCMs) out of the box, for easy continuous delivery with systems you might already be using.
Although CloudFormation can be used in this manner, it requires manual configuration, and is designed to work best with AWS’s own CodeBuild/Pipeline products.It doesn't require any manual configuration.
Pulumi integrates with your identity provider—including GitHub, GitLab, Atlassian, or any SAML/SSO 2.0 provider (such as Azure Active Directory, Google G Suite, or Okta)—for auditing and access controls using your existing enterprise systems of record. AWS CloudFormation can be manually integrated with those systems with greater effort.How does it integrate? I can set up SSO on AWS completely as code with Pulumi?
billowy-army-6859911/30/2021, 7:30 PM
it's not limited to YAMLI don't think it's phrased in a way that claims cdk is limited to yaml, the point is made that CDK "compile down" to a cloudformation template (ie the cdk synthesize command) which limits the possibilites
How does it integrate? I can set up SSO on AWS completely as code with Pulumi?this is referring to authentication on the state storage: https://www.pulumi.com/docs/guides/saml/
freezing-umbrella-548311/30/2021, 7:32 PM
I don't think it's phrased in a way that claims cdk is limited to yaml, the point is made that CDK "compile down" to a cloudformation template (ie the cdk synthesize command) which limits the possibilitesThis is not true. Besides compiling down to YAML, it also builds docker images, uploads them to image registries, uploads assets to S3, etc.
billowy-army-6859911/30/2021, 7:33 PM
Troposphere and CDK compile down to YAML to create resources in AWSif that's a more accurate sentence, we're happy to update it
freezing-umbrella-548311/30/2021, 7:34 PM
billowy-army-6859911/30/2021, 7:35 PM
freezing-umbrella-548311/30/2021, 7:36 PM
If you'd like to see anything in particular addedI'd just like to see an in-depth comparison with real-world examples, made by someone who's used both. The biggest appeal of CDK is the L2 constructs that take care of the all the boilerplate and infers all the necessary dependencies, least privilege policies, etc. I'm wondering what Pulumi offers in this regard, if anything. Or is it just an equivalent of CDK's bare L1 constructs.
this is referring to authentication on the state storage:...which also requires manual integration, just like CDK.
gorgeous-egg-7005812/03/2021, 9:47 PM
freezing-umbrella-548312/05/2021, 8:32 AM
gorgeous-egg-7005812/05/2021, 3:02 PM
freezing-umbrella-548312/15/2021, 4:27 PM
billowy-army-6859912/15/2021, 4:53 PM
freezing-umbrella-548312/15/2021, 4:54 PM