Hi I have an issue with the basics and would appreciate any

Question

Hi I have an issue with the basics and would appreciate any help I have a project running on python on a docker image which runs a shell script using `subprocess Popen` This shell script does `gcloud auth` `pulumi login` and `pulumi new` back in the python application I am trying to use pulumi auto and its complaining about missing google credentials Note I am using google storage as my managed backend Am I doing anything fundamentally wrong how to address this I want my python application using Flask to create and destroy stacks using pulumi auto using my gs backend url

clever-sunset-76585 · Answer

`subprocess Popen` essentially runs your shell script in its own shell process I don t know much about `gcloud auth`If `gcloud auth` is simply setting env vars that won t work with triggering Pulumi commands via automation SDK in Python since Pulumi won t see those environment vars You will have to find a way to set authentication context that persists beyond just the shell script s environment and is available accessible in the Python `venv` when Pulumi runs as well

straight-tailor-56799 · Answer

Hi < clever sunset 76585> thanks for the reply What I am unable to find anywhere in the documents is what should be the value of the PULUMI ACCESS TOKEN if I use my own managed backend I am not sure what values I should even set for this and if I set the BACKEND URL env var alone its throwing an error wrt to authentication

straight-tailor-56799 · Answer

after setting the backend url i get this error which am not sure if its an error from pulumi or google and how to resolve it `code 255 stdout stderr error missing google credentials`

clever-sunset-76585 · Answer

gt What I am unable to find anywhere in the documents is what should be the value of the `PULUMI ACCESS TOKEN` if I use my own managed backend I am not sure what values I should even set for this That should be your Pulumi account s Is your `BACKEND URL` self managed or are you using our service `` You can access the Access Tokens page for your Pulumi account by going to

straight-tailor-56799 · Answer

my backend url is self managed its a gcp bucket

straight-tailor-56799 · Answer

what would be the access token for self managed backend

clever-sunset-76585 · Answer

gt my backend url is self managed its a gcp bucket gt what would be the access token for self managed backend Ah yes I see that you mentioned that in your original message There is no need for a Pulumi access token for self managed backends The issue here is that your Pulumi does not see the Google credentials you are setting via `subprocess Popen` as I mentioned here <https pulumi community slack com archives C01PF3E1B8V p1621988033086700 thread ts=1621983858 086600 amp cid=C01PF3E1B8V>

clever-sunset-76585 · Answer

You can verify if your gcloud credentials are accessible by adding a debug message in your Python that prints out an env var that you set via the shell script That ll show you whether or not any of the env vars you are setting via the script are persisting in the environment

straight-tailor-56799 · Answer

Thanks I will try that Praneet