https://pulumi.com logo
Title
c

clean-traffic-57578

03/01/2023, 5:30 PM
Hi Team, We are trying to run pulumi program inside azure K8 pod. We are configurating pulumi state in Azure blob. We are using azure native provider to provision resources. To authenticate azure blob from K8 pod, we are planning to use workload identity. Can we know if there is any support for workload identity in Pulumi? If not, is there any way where we can pass the credentials to Pulumi program?
b

billowy-army-68599

03/01/2023, 5:39 PM
HI Aniket, we got your support ticket. if you’re using the self managed backend, no - the self managed backends currently don’t support workload identity due to a limitation in the upstream library we use to write to state
c

clean-traffic-57578

03/01/2023, 5:43 PM
Thank you @billowy-army-68599. Is there any way where we can pass the credentials to pulumi program?
b

billowy-army-68599

03/01/2023, 6:22 PM
yes there are multiple ways, could you elaborate?
c

clean-traffic-57578

03/02/2023, 5:27 AM
can we have quick quick call to discuss this further?
for example, if we call azure API to get the credentials (using workload identity) and we want to pass that to pulumi so that it will use that credentials for resource creation. We are using "create_or_select_stack" function to create stack. However, we are not able to find way where we can pass the credentials to this function.