Hi Team,
We are trying to run pulumi program insid...
# generalc
clean-traffic-57578
03/01/2023, 5:30 PMHi Team,
We are trying to run pulumi program inside azure K8 pod. We are configurating pulumi state in Azure blob. We are using azure native provider to provision resources. To authenticate azure blob from K8 pod, we are planning to use workload identity.
Can we know if there is any support for workload identity in Pulumi?
If not, is there any way where we can pass the credentials to Pulumi program?
b
billowy-army-68599
03/01/2023, 5:39 PM
HI Aniket, we got your support ticket.
if you’re using the self managed backend, no - the self managed backends currently don’t support workload identity due to a limitation in the upstream library we use to write to state
c
clean-traffic-57578
03/01/2023, 5:43 PMThank you @billowy-army-68599. Is there any way where we can pass the credentials to pulumi program?
b
billowy-army-68599
03/01/2023, 6:22 PM
yes there are multiple ways, could you elaborate?
c
clean-traffic-57578
03/02/2023, 5:27 AMcan we have quick quick call to discuss this further?
clean-traffic-57578
03/02/2023, 5:40 AMfor example, if we call azure API to get the credentials (using workload identity) and we want to pass that to pulumi so that it will use that credentials for resource creation.
We are using "create_or_select_stack" function to create stack. However, we are not able to find way where we can pass the credentials to this function.
4 Views