rich-motorcycle-98689
03/10/2023, 9:43 PM@pulumi/kubernetes/helm
) and I want to detach 2 components from pulumi’s tracking after the initial deployment (specifically a Secret
and a MutatingWebhookConfiguration
).
The problem that I’m running into is that the helm chart deploys an empty Secret
and an empty value in the MutatingWebhookConfiguration
and then the deployment goes into both resources and generates a TLS cert and key pair to use post deployment. The issue is that now, every time I do pulumi up
after the initial deploy, pulumi tries to revert these changes which then breaks the webhook and I have to restart the deployment manually. Is there a good way to handle this behavior?billions-xylophone-85957
03/10/2023, 11:06 PMrich-motorcycle-98689
03/10/2023, 11:24 PMhelm.v3.Chart
in @pulumi/helm
to using k8s.helm.v3.Release
in @pulumi/kubernetes
and it fixed my problem.k8s.helm.v3.Release
is a bit more developed than helm.v3.Chart
, considering the latter doesn’t have hook support.great-sunset-355
03/13/2023, 10:27 PMv3.Release
resolves the most problems. I guess it would be good to have some information in the docs.limited-rainbow-51650
03/14/2023, 7:13 AMRelease
resource solved it for you. In case you want to use Chart
again in the future, @billions-xylophone-85957 was on the right track to propose the ignoreChanges
resource property. You can apply this to a Chart
resource using a resource transformation. See the Chart with Transformations
example here:
https://www.pulumi.com/registry/packages/kubernetes/api-docs/helm/v3/chart/#chart-with-transformationsrich-motorcycle-98689
03/17/2023, 2:21 PMignoreChanges
to a resource transformation in order to apply it to a specific resource. I guess in my case it would be as simple as applying it to all Secret
and MutatingWebhookConfiguration
resources (since I only had those resources that were causing a problem).Release
and the Chart
as the Release
being an OOTB helm solution, while the Chart
allows for extremely fine-grained configuration control? Because it seems like the Transformations
tool could be extremely powerful, esp for performing chart manipulation beyond what is configurable in the chart’s values.yaml
, and I don’t see an option for transformations in the Release
resource.