rhythmic-hair-33677
12/08/2019, 10:52 PMk8s.apiextensions.CustomResource
or k8s.yaml.ConfigFile
to succeed? I see there is an issue tracking to make it type safe. Pulumi applies the resource fine, but I need to then check to make sure it didn’t fail. I see pulumi query, but that doesn’t appear to work with pulumi up.gorgeous-egg-16927
12/09/2019, 4:24 PMConfigFile
often do (Deployments, Services, etc). https://github.com/pulumi/pulumi-kubernetes/issues/861 is still open, but in the meantime, you can use dependsOn
with getResource
as shown here: https://github.com/pulumi/pulumi-kubernetes/blob/0162c7f3ff223c70eb5f29d70cec77d8dbaf52a7/tests/integration/istio/step1/istio.ts#L43-L69rhythmic-hair-33677
12/09/2019, 5:36 PMgetResource
but it appears to be ignored.
// Create TLS secret from sealed secret
const tlsCert = new k8s.yaml.ConfigFile('dev-local-tls', {
file: '../01-identity/dex/sealed-dev-local-tls.yaml',
})
// SealedSecrets controller will decrypt the above and generate a
// dev-local-tls-ss-test secret in the identity namespace
// In this example this should fail as the sealed-secret will fail to decrypt...
const secret = tlsCert.getResource(
'v1/Secret',
'identity',
'dev-local-tls-ss-test'
)
const next = new k8s.core.v1.Secret('should-wait', {}, { dependsOn: secret })
gorgeous-egg-16927
12/09/2019, 7:51 PMget
operations to make this easier? @white-balloon-205rhythmic-hair-33677
12/09/2019, 10:57 PMgorgeous-egg-16927
12/09/2019, 11:06 PMrhythmic-hair-33677
12/09/2019, 11:07 PMconst secret = tlsCert.getResource()
seems to be a no-op. I know the resource doesn’t exist. So I would expect anything else that dependsOn it would fail.gorgeous-egg-16927
12/09/2019, 11:08 PMundefined
, and therefore doesn’t actually change the dependsOn
.rhythmic-hair-33677
12/09/2019, 11:08 PMgorgeous-egg-16927
12/09/2019, 11:11 PMrhythmic-hair-33677
12/09/2019, 11:12 PMgorgeous-egg-16927
12/10/2019, 1:53 AM