No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

If you intend to pass the result to a Pulumi resource, you can wrap it to output `Output.Create(akvClient.ImportKeyAsync(…))`

If you need to use it for control flow, you can create an async helper method and use it while defining outputs in the constructor like here <https://github.com/pulumi/pulumi/blob/master/pkg/codegen/internal/test/testdata/aws-eks.pp.cs>

<@UB39JFCKC> I think you miss understood me. If I run pulumi up 10 times then I only want my code run once. So if my method run once, it should never ever run again. I don't want to import my key multiple times, but only when I first create my Azure Key Vault. So what I would need is a hook into the creation process of an Azure Key Vault. So the question would if I could use something like that:
localKeyVault.VaultUri.Apply(x =&gt; myCode ...) ? Shouldn't this delegate only run once?

Ah, I see, I missed “once”, sorry for that

The delegate in your last example will run every time

I guess you need to find some condition that would only be true if the certificate isn’t imported yet. E.g. try to read it and if not found - run your code.

It would be nice to hook into the handling of the Pulumi state, so that I could state myself that I already "added" the "resource".

In TypeScript, this would be solved with a dynamic provider, but that’s not supported in .NET due to complications with code serialization.

So it seems like I have to handle my scenario outside of Pulumi...

Hm... there is also no way in Pulumi to check if a resource already exist, isn't there?

I could check if the key already exist:
 Pulumi.Azure.KeyVault.Key.Get(.....). I maybe have to catch an exception if the key does not exist.

Could make it work.

`var importedKey = localKeyVault.VaultUri.Apply(vaultUrl =&gt; Output.Create(KeyImporter.ImportKey(`
                `"https://***.<http://vault.azure.net|vault.azure.net>", "TestCertSelf", vaultUrl, "ImportedKey")));`