clever-byte-21551
03/20/2021, 8:08 PMpulumi:pulumi:Stack wiz-diskanalyzer-dev_aws_7b976757-b010-44f5-be1b-aa4153b86dbe_global_bootstrap running
~ pulumi:providers:azure-native wiz-azure updating [diff: ~clientSecret]
~ pulumi:providers:azure-native wiz-azure updated
+ azure-native:containerregistry/v20201101preview:Token acr-token creating
+ azure-native:containerregistry/v20201101preview:Token acr-token creating error: Code="PasswordCannotBeAdded" Message="New passwords can be added only through 'generateCredentials'. For more information on repository permissions, please visit <https://aka.ms/acr/repo-permissions>."
+ azure-native:containerregistry/v20201101preview:Token acr-token **creating failed** error: Code="PasswordCannotBeAdded" Message="New passwords can be added only through 'generateCredentials'. For more information on repository permissions, please visit <https://aka.ms/acr/repo-permissions>."
pulumi:pulumi:Stack wiz-diskanalyzer-dev_aws_7b976757-b010-44f5-be1b-aa4153b86dbe_global_bootstrap running error: update failed
pulumi:pulumi:Stack wiz-diskanalyzer-dev_aws_7b976757-b010-44f5-be1b-aa4153b86dbe_global_bootstrap **failed** 1 error
Diagnostics:
pulumi:pulumi:Stack (wiz-diskanalyzer-dev_aws_7b976757-b010-44f5-be1b-aa4153b86dbe_global_bootstrap):
error: update failed
azure-native:containerregistry/v20201101preview:Token (acr-token):
error: Code="PasswordCannotBeAdded" Message="New passwords can be added only through 'generateCredentials'. For more information on repository permissions, please visit <https://aka.ms/acr/repo-permissions>."
My creation code looks like this:
token, err := acr.NewToken(ctx, "acr-token", &acr.TokenArgs{
Credentials: &acr.TokenCredentialsPropertiesArgs{
Passwords: acr.TokenPasswordArray{
acr.TokenPasswordArgs{
Name: pulumi.String("password1"),
},
acr.TokenPasswordArgs{
Name: pulumi.String("password2"),
},
}},
RegistryName: pulumi.String(parsedID.ResourceName),
ResourceGroupName: pulumi.String(parsedID.ResourceGroup),
ScopeMapId: pulumi.String(
fmt.Sprintf(
"/subscriptions/%s/resourceGroups/%s/providers/Microsoft.ContainerRegistry/registries/%s/scopeMaps/_repositories_push",
parsedID.SubscriptionID,
parsedID.ResourceGroup,
parsedID.ResourceName,
)),
TokenName: pulumi.String(fmt.Sprintf("wiz-%s", s.Outpost.GetId())), // must start with a letter
}, pulumi.Provider(azureProvider))
I’m also not sure how pulumi will manage the passwords - they are returned only once when generatedtall-librarian-49374
03/20/2021, 8:14 PMclever-byte-21551
03/20/2021, 8:15 PMtall-librarian-49374
03/20/2021, 9:41 PMclever-byte-21551
03/21/2021, 6:34 AMtall-librarian-49374
03/21/2021, 8:54 AMclever-byte-21551
03/21/2021, 9:52 AMtall-librarian-49374
03/21/2021, 10:28 AM