Channels
pulumi-ai
package-authoring
pulumi-cdk
oracle-cloud-infrastructure
learn-pulumi-events
linen
registry
built-with-pulumi
pulumi-cloud
contribex
testingtesting321
hacktoberfest
cloudengineering
yaml
pulumi-crosscode
content-share
finops
multi-language-hackathon
office-hours
workshops
blog-posts
localstack
welcome
gitlab
pulumi-kubernetes-operator
jobs
aws
pulumi-deployments
dotnet
golang
announcements
java
pulumiverse
python
install
getting-started
cloudengineering-support
testingtesting123
hackathon-03-19-2020
typescript
google-cloud
contribute
azure
kubernetes
docs
automation-api
status
general
Title
s
steep-raincoat-47738
01/05/2023, 7:40 AMHello Pulumians,
Is there a way we can host our own custom Resources or collection of Custom resources within Pulumi?
Example Use case: I want all developers within my org be default:
1. create S3 buckets which is encrypted with a KMS key
2. Create an EC2 with one of the Golden AMIs
a
acoustic-dress-83560
01/05/2023, 8:30 AMAre you talking about resource encapsulation? Pulumi components are similar to Terraform modules.
That, and/or you could make a stack containing those resources per dev?
Sorry if I've misunderstood!
e
echoing-dinner-19531
01/05/2023, 9:33 AMYeh component resources are the way to do this. You can either just make a library if you only need one language (Pulumi python code is just python for example)
We've also got some support for multi-language components where your write the component in Python for example but can use it from Go/TypeScript/etc. See https://github.com/pulumi/pulumi-component-provider-py-boilerplate for a starter example.
We've got plans to improve both the authoring and publishing of components over the coming year.
s
sparse-nail-47035
01/05/2023, 10:21 AMOk, so that means Component Resources are like libraries that I can write once and have my team use that? With this I can put all the best practices in there and have the team re-use it for their projects. Correct?
s
steep-raincoat-47738
01/05/2023, 10:30 AMIm not sure if Crosswalk supports us to host our custom well architected patterns
e
echoing-dinner-19531
01/05/2023, 10:31 AMCrossWalk is just a set of components that Pulumi wrote
s
steep-raincoat-47738
01/05/2023, 10:40 AMSo here's my use case:
As an Cloud-enablement team i would like to provide a framework to our developers so that they can provision their own infrastructure. Our developers are not be aware of all the best practices..
So I would like to create custom pre-baked secured libraries. An S3 bucket which is kms encrypted by default, Or an Ec2 which has securitygroup baked with certain restrictions and only allows certain AMIs.
The developers will import these custom libraries to provision infra . Which ensures secured and best practices from day 0
Will component resources allow combing multiple resources?
@echoing-dinner-19531 I hope I was able to explain my use-case
e
echoing-dinner-19531
01/05/2023, 10:48 AMYes component resources are nearly always multiple resources (although they don't have to be)
e.g. the crosswalk Vpc component sets up an aws vpc, but also an internetGateway and subnets: https://github.com/pulumi/pulumi-awsx/blob/master/awsx/ec2/vpc.ts