This message was deleted Pulumi Community #general

Join Slack

This message was deleted.

# general

sparse-intern-71089

08/27/2021, 8:30 AM

This message was deleted.

acoustic-alarm-43219

08/27/2021, 8:40 AM

Maybe the service principle doesn't have correct permissions?

white-cat-90296

08/27/2021, 8:43 AM

That was my first thought as well, but it seems like it has contributor access across the board.

acoustic-alarm-43219

08/27/2021, 8:52 AM

HHmmm...i would double check that the SP has "register/action" rights on the sub. I mean yes, i believe the Contributor role should have that, but worth checking. I had some simliar issue with Contributor & Storage Account Contributor roles a few weeks back as MSFT had made some changes.

white-cat-90296

08/27/2021, 8:57 AM

Thanks for the input John, I actually found a solution - I'll detail it below for anybody who bumps into this issue in the future 🆘

👍 1

white-cat-90296

08/27/2021, 9:02 AM

The solution is pretty simple: Instead of using the

@pulumi/azure

npm package, make sure you're using the

@pulumi/azure_native

package. So a simple change to the code.

Copy code

// Instead of something like this
import * as azure from '@pulumi/azure';

const registry = azure.containerservice.getRegistry({
  name: "myregistryname",
  resourceGroupName: "myresourcegroupname",
});

//====================================================

// Use something like THIS instead (Notice: different package)
import * as containerregistry from '@pulumi/azure-native/containerregistry';

const registry = containerregistry.getRegistry({
    registryName: "myregistryname",
    resourceGroupName "myresourcegroupname"
});

🙌 1

white-cat-90296

08/27/2021, 9:03 AM

Can't explain the underlying issue, but this is a solution that worked for me 👍

boundless-car-60268

08/27/2021, 9:35 AM

The other solution is to set the

SkipProviderRegistration

flag to true in the Azure config. This can be done by adding the following to the

config

section in the yaml:

azure:skip_provider_registration: "true"

👍 1

boundless-car-60268

08/27/2021, 9:36 AM

For various reasons we've found some things that the azure_native package doesn't support as well as the azure package, and vice versa, so we're currently using a mixture of the two.

👍 1

boundless-car-60268

08/27/2021, 9:38 AM

It's Terraform's fault that you need to skip provider registration if you don't have the sufficient permissions. I think it tries to register the providers for anything you're trying to use, even if they're already registered. I had the same issue when using Terraform directly, and the

azure

provider uses Terraform under the covers.

white-cat-90296

08/27/2021, 9:41 AM

My sense was that Terraform actually tries to register providers for everything that it supports, not just what you're trying to use. I've seen some errors for services completely unrelated to what I'm working with e.g. machine learning.

white-cat-90296

08/27/2021, 9:41 AM

Either way thanks for the heads up, the config tip is very useful

20 Views

Open in Slack

Previous Next