https://pulumi.com logo
Join Slack
Powered by
This message was deleted.
# azure
s
This message was deleted.
b
Using typescript btw!
g
Can you provide the output of 
pulumi preview --diff
?
b
b
@better-rainbow-14549 Yep, my issue is similar to yours. Also almost the same versions of the 
npm
packages.
b
i tried going all the way back to azure 3.1.0 and couldnt fix that issue
are you using Standard load balancer?
👍 1
i have a feeling its never worked with a Standard
b
Affirmative. Using Standart Load Balancer.
Yep, I also tried doing that, even downgrading to 2.X didn’t help.
b
ah
might be worth filing a new issue that's more specific about that being the cause
or add to mine
b
My temporary workarround for this is to add the 
option
ignoreChanges: ["addonProfile"]
to my AKS resource.
b
i've tried that - does it work for you if you do a 
pulumi refresh
it doesnt for me - the invalid inputs always come back
and i get the diagnostic errors about invalid state, rather than a plan to replace/update the cluster
b
Another thing that i saw on another colleague’s maintained repo was 
kubeDashboard:  { enabled: false }
and this apparently solved the issue without the 
ignoreChanges
property.
(which feels really weird to me, but it worked)
I’m currently tearing down my testing cluster, and will try once I provision it again.
👍 1
b
ah i've not tried that - my issues initially seemed to start when i added a logAnalyticsWorkspaceId which is part of the addonProfiles block and it was at that point that i noticed a refresh caused it regardless of whether there was a log analytics configured or not
b
@better-rainbow-14549 Just tested. With the above settings the issue is gone:
Untitled
@better-rainbow-14549 also without the 
ignoreChanges
block.
Have you tried it on your side?
b
hmm that doesnt work for me - no difference
Copy code
azure:containerservice:KubernetesCluster (deveu3):
    error: azure:containerservice/kubernetesCluster:KubernetesCluster resource 'deveu3' has a problem: "addon_profile.0.http_application_routing.0.http_application
_zone_name": this field cannot be set
    error: azure:containerservice/kubernetesCluster:KubernetesCluster resource 'deveu3' has a problem: "addon_profile.0.http_application_routing.0.http_application
_zone_name": this field cannot be set
    error: azure:containerservice/kubernetesCluster:KubernetesCluster resource 'deveu3' has a problem: "addon_profile.0.http_application_routing.0.http_application_routing_zone_name": this field cannot be set
    error: azure:containerservice/kubernetesCluster:KubernetesCluster resource 'deveu3' has a problem: Can not parse "addon_profile.0.oms_agent.0.log_analytics_workspace_id" as a resource id: Cannot parse Azure ID: parse "": empty url   
    error: azure:containerservice/kubernetesCluster:KubernetesCluster resource 'deveu3' has a problem: "addon_profile.0.oms_agent.0.oms_agent_identity": this field cannot be set
    error: azure:containerservice/kubernetesCluster:KubernetesCluster resource 'deveu3' has a problem: expected "addon_profile.0.aci_connector_linux.0.subnet_name" to not be an empty string, got
thats the first update after doing a refresh
b
What are your settings for the AKS resource?
b
Copy code
name: args.Name,
        resourceGroupName: args.ResourceGroup.name,
        location: args.Location,
        dnsPrefix: args.Name,
        servicePrincipal: {
            clientId: app.application.applicationId,
            clientSecret: app.servicePrincipalPassword.value
        },
        defaultNodePool: {
            name: args.AgentPoolProfileName,
            nodeCount: args.NodeCount,
            maxPods: args.MaxPods,
            type: "VirtualMachineScaleSets",
            enableAutoScaling: false,
            enableNodePublicIp: false,
            osDiskSizeGb: args.OsDiskSizeGb,
            vmSize: args.NodeSize,
            vnetSubnetId: subnet.id
        },
        networkProfile: {
            networkPlugin: "azure",
            loadBalancerSku: "Standard",
            serviceCidr: "192.168.200.0/22",
            dnsServiceIp: "192.168.200.2",
            dockerBridgeCidr: "172.17.0.1/16"
        },
        apiServerAuthorizedIpRanges: undefined,
        addonProfile: {
            kubeDashboard: {
                enabled: false
            },
            httpApplicationRouting: {
                enabled: false
            }
        },
just been looking through the terraform but can't see anything obvious causing it
b
This seems to be provider related. But is the Kubernetes provider bridged from terraform or it’s Pulumi native? I think it’s bridged, right?
b
yeah
cant see any bug reports about this specifically, closed or open
any chance you could post your stack state for the kubernetesCluster resource
or just confirm if it looks anything like the example in my pulumi issue
b
Sure thing
b
ie. like that with the "invalid" addons state block
b
b
is AksCluster a custom resource / component you've made?
my full state looks like that:
i have to go - thanks for your help, will try and do more investigating tomorrow
cheers
b
I’ve created a 
componentResource
that encompasses my AKS among other things, like 
vnets
`acrPull`assignments and so on.
But my AKS declaration is pretty standart, so this might be the reason why my state looks so small compared to yours.
b
i think you've copied the state only for your componentResource - there should be another state entry for a kubernetesCluster
if everything was defaults a refresh would still pull in state from azure itself, and would be a Basic load balancer
👍 1
3 Views
Open in Slack
PreviousNext
Powered by