Channels
pulumi-ai
package-authoring
pulumi-cdk
oracle-cloud-infrastructure
learn-pulumi-events
linen
registry
built-with-pulumi
pulumi-cloud
contribex
testingtesting321
hacktoberfest
cloudengineering
yaml
pulumi-crosscode
content-share
finops
multi-language-hackathon
office-hours
workshops
blog-posts
localstack
welcome
gitlab
pulumi-kubernetes-operator
jobs
aws
pulumi-deployments
dotnet
golang
announcements
java
pulumiverse
python
install
getting-started
cloudengineering-support
testingtesting123
hackathon-03-19-2020
typescript
google-cloud
contribute
azure
kubernetes
docs
automation-api
status
general
Title
q
quaint-river-59320
03/31/2022, 3:11 PMGood morning. Trying to generate a random password for an RDS database and then save the password as a secret to AWS Secret Manager. The secret gets created, but the password is always "{}". What am I doing wrong?
//Create RDS Secret
var config = new Pulumi.Config();
string dbUser = config.Get("rdsUser").ToString();
var password = new Random.RandomPassword("chpm-rds-password", new Random.RandomPasswordArgs
{
Length = 16,
Special = true
});
var rdsSecret = new AwsClassic.SecretsManager.Secret("CHPM-DB-Secret");
var secretObject = new
{
UserName = dbUser,
Password = password.Result,
Endpoint = "test"
};b
billowy-army-68599
03/31/2022, 3:21 PM@quaint-river-59320 you need to create a
SecretVersionSecretsManager.Secretq
quaint-river-59320
03/31/2022, 3:30 PMThank you, I hadn't actually put in all my code... What I was trying to do is create a JSON object and store that as the secret (since the AWS secrets key/values are stored as json). If I don't do the json serialization, it works.
//Create RDS Secret
var config = new Pulumi.Config();
string dbUser = config.Get("rdsUser").ToString();
var password = new Random.RandomPassword("chpm-rds-password", new Random.RandomPasswordArgs
{
Length = 16,
Special = true
});
var rdsSecret = new AwsClassic.SecretsManager.Secret("CHPM-DB-Secret");
var secretObject = new
{
UserName = dbUser,
Password = password.Result,
Endpoint = "test"
};
string jsonData = JsonConvert.SerializeObject(secretObject);
// Create secret version
var secretVersion = new AwsClassic.SecretsManager.SecretVersion("secretVersion", new AwsClassic.SecretsManager.SecretVersionArgs
{
SecretId = rdsSecret.Id,
SecretString = jsonData,
});b
billowy-army-68599
03/31/2022, 3:33 PM@quaint-river-59320 you'll need to use an
applyq
quaint-river-59320
03/31/2022, 3:37 PMSame result with the apply
//Create RDS Secret
var config = new Pulumi.Config();
string dbUser = config.Get("rdsUser").ToString();
var password = new Random.RandomPassword("chpm-rds-password", new Random.RandomPasswordArgs
{
Length = 16,
Special = true
});
var rdsSecret = new AwsClassic.SecretsManager.Secret("CHPM-DB-Secret");
var secretObject = new
{
UserName = dbUser,
Password = password.Result.Apply(p => $"{p}"),
Endpoint = "test"
};
string jsonData = JsonConvert.SerializeObject(secretObject);
// Create secret version
var secretVersion = new AwsClassic.SecretsManager.SecretVersion("secretVersion", new AwsClassic.SecretsManager.SecretVersionArgs
{
SecretId = rdsSecret.Id,
SecretString = jsonData,
});b
billowy-army-68599
03/31/2022, 3:40 PMsorry, you'll need to do:
var secretVersion = new AwsClassic.SecretsManager.SecretVersion("secretVersion", new AwsClassic.SecretsManager.SecretVersionArgs
{
SecretId = rdsSecret.Id,
SecretString = password.Result.Apply(JsonConvert.SerializeObject(secretObject))
});you need to take the output, use an
Applythe JSON object creation needs to happen inside the Apply
q
quaint-river-59320
03/31/2022, 3:44 PMAhh. I'll give that a go.
Got it. Thank you.
b
billowy-army-68599
03/31/2022, 5:40 PMthat worked?
q
quaint-river-59320
03/31/2022, 9:58 PMYes. That worked. I created a function that I called with Apply.
Thanks for your help.