Attempting to use a ManagedIdentity principalID as the strin

Question

Attempting to use a ManagedIdentity principalID as the string input for a KeyVault access policy but getting the error ` lt pulumi output Output object gt has type Output but expected one of bytes unicode` I ve tried with and without apply lambda s `self principal id = self identity principal id apply lambda v v or lt preview gt ` but it aways errors

sparse-park-68967 · Answer

what field in the access policy are you setting AccessPolicy constructor will take inputs so the direct assignment should work If the destination needs a string then assigning it an apply won t work You will have to enclose the assignment inside the apply i e ```self identity principal id apply lambda v AccessPolicy v ```

little-orange-65618 · Answer

The line where I m setting it is part of creating a list of policies it s not the only one ```access policies = azure keyvault AccessPolicyEntryArgs object id=storage account id tenant id=tenant id permissions=azure keyvault PermissionsArgs keys=DEFAULT SA KEY PERMISSIONS self akv = azure keyvault Vault resource name=name resource group name=resource group name location=location properties=azure keyvault VaultPropertiesArgs access policies=access policies ``` The variable in question is storage account id which is ultimately created and then passed on here ``` self identity = azure managedidentity UserAssignedIdentity resource name=id name resource name =id name location=location resource group name=rg name opts=opts tags=tags self principal id = self identity principal id apply lambda v v or lt preview gt ```

little-orange-65618 · Answer

< sparse park 68967> can you explain how I d use the apply inside the definition line for a access policy definition