fast-arm-6315001/11/2022, 6:04 PM
great-queen-3969701/12/2022, 3:35 PM
call drops the version of the secret, not the value. I think what you want is https://www.pulumi.com/registry/packages/gcp/api-docs/secretmanager/getsecret/, which will wait until the value is available if you use the direct call.
fast-arm-6315001/12/2022, 5:13 PM
prehistoric-activity-6102301/12/2022, 5:19 PM
fast-arm-6315001/12/2022, 5:30 PM
prehistoric-activity-6102301/12/2022, 5:31 PM
fast-arm-6315001/12/2022, 5:32 PM
prehistoric-activity-6102301/12/2022, 5:34 PM
to all resources that rely on this as this dependency cannot be autodetected by pulumi.
twice (first it’s gonna enable the service and fail with “API is disabled”, on the second run it should be fine)
already exists in secretmanager?
great-queen-3969701/12/2022, 5:41 PM
). It might be easier to use
to get the ID to pass to
prehistoric-activity-6102301/12/2022, 5:44 PM
fast-arm-6315001/12/2022, 5:48 PM
prehistoric-activity-6102301/12/2022, 5:49 PM
here and that part probably works. I assume it complains when it first executes
and I think there’s no way to include
in InvokeOptions. That’s the main reason why I have 2 separated projects for GCP (
where I enable all APIs and configure things such as top-level IAM rules and
where I actually create resources such as cloud sql, gke, memory store etc.). Additionally, I think
functions are only used when you need to get resources managed outside of your pulumi stack (or to get resources not managed by any IaC at all). In your case, you’re creating the secret and CloudSQL user in the same stack so there’s no need for that and you can pass these values directly.
fast-arm-6315001/12/2022, 6:25 PM
prehistoric-activity-6102301/12/2022, 6:26 PM