This message was deleted Pulumi Community #general

Join Slack

This message was deleted.

# general

sparse-intern-71089

06/23/2021, 1:06 AM

This message was deleted.

prehistoric-london-9917

06/23/2021, 1:07 AM

FWIW, I did a cursory search of the

@pulumi/pulumi

github issues for something like this, but didn’t find anything that quite matched my issue.

little-cartoon-10569

06/23/2021, 1:43 AM

The usual (and Pulumi-supported) way of doing this would be to assume a role that does allow deleting everything, and adding the protect opt to all resources.

little-cartoon-10569

06/23/2021, 1:44 AM

Then to destroy a stack, you need to remove all protect opts,

pulumi up

pulumi destroy

. The protection is there almost all the time, and "easily" removed when needed.

little-cartoon-10569

06/23/2021, 1:47 AM

If you change the provider (which is what changing the assumeRole propery does, kinda), then you have to expect things like removing all resources with the 1st (version of the) provider, and adding them all again with the 2nd (version of the) provider, in order to destroy the stack. Which is absolutely not what you want.

gentle-diamond-70147

06/23/2021, 5:15 AM

Paul's suggestion is a good one, but we should have a github issue tracking this too. @prehistoric-london-9917 would you mind opening one?

prehistoric-london-9917

06/23/2021, 10:29 PM

Sure @gentle-diamond-70147: I’ll open one.

prehistoric-london-9917

06/23/2021, 10:30 PM

pulumi/pulumi

the right repo? Or should it be

pulumi/aws

since this (afaik) is provider specific?

little-cartoon-10569

06/23/2021, 10:43 PM

I'd go with pulumi/aws.

👍 1

prehistoric-london-9917

06/24/2021, 1:31 AM

Thanks everyone! https://github.com/pulumi/pulumi-aws/issues/1543

21 Views

Open in Slack

Previous Next