Channels
announcements
automation-api
aws
azure
blog-posts
built-with-pulumi
cloudengineering
cloudengineering-support
content-share
contribex
contribute
docs
dotnet
finops
general
getting-started
gitlab
golang
google-cloud
hackathon-03-19-2020
hacktoberfest
install
java
jobs
kubernetes
learn-pulumi-events
linen
localstack
multi-language-hackathon
office-hours
oracle-cloud-infrastructure
package-authoring
pulumi-ai
pulumi-cdk
pulumi-cloud
pulumi-crosscode
pulumi-deployments
pulumi-kubernetes-operator
pulumiverse
python
registry
status
testingtesting123
testingtesting321
typescript
welcome
workshops
yaml
Title
m
mysterious-wolf-74677
04/29/2021, 10:06 PMWhat am I doing wrong?
l
little-cartoon-10569
04/29/2021, 10:14 PM(I think) the problem isn't with the policy, it's with the Resource property.
That arn is an output, so the value when interpolated like that is an error message, which includes newlines.
But the Resource property isn't allowed have newlines.
m
mysterious-wolf-74677
04/29/2021, 10:15 PMyeah, it looks like that's the issue @little-cartoon-10569 I just started removing code chunks to see what might change the error, and the
"${foobarLogGroup.arn}:*"l
little-cartoon-10569
04/29/2021, 10:16 PMYou need to interpolate using
apply()pulumi.interpolateTry this:
Two tricks here: cast to aws.iam.PolicyDocument, which Pulumi converts to JSON for you, later in the process; and pulumi.interpolate``.
If you didn't have the ":*" at the end of the arn, then you wouldn't need to interpolate at all. The cast to aws.iam.PolicyDocument would be enough.
m
mysterious-wolf-74677
04/29/2021, 10:21 PMinteresting, nice trick @little-cartoon-10569
l
little-cartoon-10569
04/29/2021, 10:22 PMYea it's quite nice. Even allows the IDE to type check, property-validate and auto-expand / intellisense...
Unfortunately not everywhere that takes a PolicyDocument supports this trick, but RolePolicy does.
m
mysterious-wolf-74677
04/29/2021, 10:24 PMok cool, thanks for that!
@little-cartoon-10569 how did you get the formatting colors to show up?
here in slack?
l
little-cartoon-10569
04/29/2021, 10:25 PMI used a Text Snippet (lightning menu <---) and selected TypeScript.
It also allows collapsing, which is really great if it's a big piece of code. Makes the channel / thread much tidier.
m
mysterious-wolf-74677
04/29/2021, 10:28 PM@little-cartoon-10569 just found all that! Didn't even know that was a thing. Thanks man, I've learned a bunch now 🙂
👍 1