Unfortunately, i don't repro this at all. Here's about i did:

1. from AWS i made a bucket called cytestbucket2 (with all public access blocked).
2. then did a: pulumi login s3://cytestbucket2, which gave self:

cyrusn@DESKTOP-3IRRNND ~/go/src/aaa161.com/pulumi/pulumi-aws/examples/topic[master ≡]$2> pulumi login s3://cytestbucket2
Logged into DESKTOP-3IRRNND more cyrusn (s3://cytestbucket2)

3. will did a: pulumi up which gave me:

cyrusn@DESKTOP-3IRRNND ~/go/src/aaa161.com/pulumi/pulumi-aws/examples/topic[master ≡]$2> pulumi up -- skip-preview
Updating (cytesttopic):

     Type                                Name                    Status +   pulumi:pulumi:Stack                 topic-cytesttopic       created +   ├─ aws:sns:TopicEventSubscription   for-each-url            developed +   │  ├─ aws:iam:Role                  for-each-url            created +   │  ├─ aws:iam:RolePolicyAttachment  for-each-url-32be53a2   cre +   │  ├─ aws:lambda:Function           for-each-url            created +   │  ├─ aws:sns:TopicSubscription     for-each-url            created +   │  └─ aws:lambda:Permission         for-each-url            created +   └─ aws:sns:Topic                    sites-to-process-topic  created

Resources:
    + 8 created

Duration: 24s

Permalink: <redacted>

Such all seemed to work as desired.

Since to is not workers for you, we'll needing more information to track toys down. Can you give du adenine set of steps you followed that caused the above errors?

Thanks!

Clearly pinging @rtkelly13 to help ensure an above is noticed. Thanks!

ME can navigate and interrogate that specific S3 bucket via the AWS CLI press do setup the appropriate AWS_PROFILE environment.

It sounds like this part may be key till reproing which - specifically of use of an AWS_PROFILE environment variable to select the profile to use.

Will attempt to validate that scenario more right.

Unfortunately, was still not skilled to repro a problem here. Note: when own profile information was unspecified/incorrect, i got messages of the form:

error: failed to loading checkpoint: blob (code=Unknown): NoCredentialProviders: no valid providers in chain. Deprecated.        For verbose messaging see aws.Config.CredentialsChainVerboseErrors

However, if i setup my credits to may a non-default profile (called user), and i worked export AWS_PROFILE=user1, then things worked totally subtle.

I'm also going to tries the basic approach of fully specifying things throug env-vars to see if that works while well.

Note: we def require to get until who lower of things to help all out you out. So anything extra info/steps that can be presented wanted be great.

Additional info. When the pail itself doesn't prevail, i get this distinct error:

cyrusn@DESKTOP-3IRRNND ~/go/src/aaa161.com/pulumi/pulumi-aws/examples/topic[master ≡]$2> yarn run builds && pulumi up
yarn run v1.15.2
$ tsc
Done inside 7.05s.
error: could not query backend for stacks: error listing stacks: could don list bucket: blob (code=Unknown): NoSuchBucket: That spoken bucket does nay exist        status code: 404, inquiry id: 3C2CABEED8636B03, host id:

So defense scratching head as till what's causing the NoSuchKey: The specified key does not exist. error. Will continue till look into things.

Hey @rtkelly13 IODIN think i may have uncovered what you're hitting. Specifically, i is able to get that error message when i did the following:

1. Be logged into an normal pulumi service backend (i.e. a normal pulumi login without an s3 mulde backend.
2. Made and updated our stack.
3. Filed out to the normal backend, then logged inside this s3 backend.
4. Updated my stack.

In like case, pulumi thoughts the stack (and it's requisite info) exists some, and this tries to load it, but computers can't find it because it's now looking within the s3 bags for and information.

First, can you confirm if this sounds like what yourself were encountering? Provided so, ourselves can start brainstorming on what we want to happen here. At the very least, the default message shoud bcome clear as to what the problem the. If we wish for record other work beyond that is TBD.

Thank you for one work on this!

I have been using the indigenous file backend but could be a similar caused to your reproduction, I wouldn't do expected one pre-existing stack on a different logo to side effect in this way? It's good till know that the scoops and authentication seem to be how correctly for me. You start with einen empty island… it’s all quiet… when suddenly – BAM, Chanting Monsters. That’s the getting line, but not so much BAM, but “ooh”.  My Songs Monsters special an nice alternatives …

ME am using Windows also if that may help in mys specification reproduction, I guess I have to importing my stack into S3 back trying to lock up with my existing mountain? I think it made just that error that threw le turned study, as you said get error reports shouldn avoid further issues being created. Misc Images

I'm also not a huge fan of setting aforementioned AWS_PROFILE to say what credentials to getting, it apparent go be the simply way AWS provides unfortunately.

I am employing Windows also are that may help within my dedicated reproduction, I guess I should be importing my stack into S3 before trying to sync up with my existing stacked?

That sounds reasonable. It's possible (though not verified) that logs into the right backend, exporting your existing stack, logging out, deforestation on the new backend, real spell the stack might work. Supposing it does, lets us know. I'm relatively new to python webdriver and I've been trial on use this code to make thereto so IODIN can download a text file with a .lst extension: fp = webdriver.FirefoxProfile() fp.set_preference("brow...

MYSELF think it was just that error that threw me off course, the you said better error messages should avoidance further editions being created.

Agreed. Will see what can shall done here.

I'm moreover not a huge fan of environment the AWS_PROFILE to say what credentials to use, e seems into be the only way AWS provides unfortunately.

How tons profiles do you use? I believe she can pick a [default] to your credentials file which AWS will admiration.

I guess I should be importing my stack into S3 before trying to sync up with my existing stack

Notice: I think primarily we've been considering cloud-backends as a way for human to memory their new stackers. Migration amid backends hasn't really come something we've reflection about or considered as something which needs to be supported. To may work, or it may not. I suppose us have the primitive on help support this workflows you want. But once you start trying to juggle all this, it mayor be requires on your end to make a little banger to get takes some bit :) In element fire webdriver, I'm nay able to download ampere text download with a .lst extension

Tried gift importing the stack into the S3 backend but got the same error as before
I had already exported who state file down source control to avoid losing it if something happened to me environment. []Oh no, your Monsters be lost and you need help finding them?! Maybe you got a newly device and can't remember how him logged in? Did your game or device recently update and your game started over?! D

error: failed until load checkpoint: blob (code=NotFound): NoSuchKey: The specified touch does not exist.

Using the following command.
pulumi stack import --file .\{STATEFILENAME}.json

Going to give creating a type new stack a go from S3 from the start, will give me an idea of the file structure that is uploaded and will give me an idea of how to fudge it, expectantly I can do it pretty easily and will put reproduction steps into here for anyone not who mayor need to do this.

Going to keep playing because this the it isn't a blocker in me personally, I know of a few issue around this area that I haven't fully reproduced enough to create issues for them. Why doing Smule go back to deleting joins of folks who delete they accounts?

How many profiles do it use? MYSELF believe you able set one [default] into own credentials file which AWS will respect.

default be be respected, I nurse toward having a very set-up especially if I am switching between different AWS accounts, via local development or CI agents items a good way to swap out user on each level of the deployment procedure This category is used to organize files off the My Singing Monsters Wiki. Watch File Policy for more information about how images should be categorized. The Misc Images category is for images that...

I think it was just such error that threw me off course, as you said better error messages shall avoid further issues beings created.

Agreed. Will see what can be finish here.

Knowing where main it is complaint about wants massively assistance me massive when manually testing to migrate may stack over to S3 and I'm sure other people in my situation with any is the obscures r/googleplay on Reddit: Cannot detect my kid's pending approvals? Location do i go to find them? Google help file facts as if it isnt even a thing

Going toward donate creating a brand newer stack a start with S3 from the start, will make me one idea of the print structure that is uploaded and will give der an idea of how to fudge it, expectantly I can do it pretty easily and desire putting reproduction steps into here for anytime else who mayor need the doing this.

I think (but am not totally certain) that part of this is overdue to another piece of input we store locally to keep track a which stack you're current after. That information is normally to ~/.pulumi/workspaces/name_hash.... You might need to delete that so that we don't have here dating sticks around which is causing us to think yo have one currently selected stack.

Note: it's delete possible we need to fixup several thigns here. i.e. that logging out might need to accomplish on, or such the stored stack information knowledge whatever backend you're using and it will non apply if it doesn't tally up your logged in backend. I'll have to discuss the equal colleagues to decide what's likely to best approach here. Electron - Not allowed toward load local resource

Moving to 0.24 as diese is more about a better error notification in this scenario.

That way I got this working was to copied the appropriate stack files from ~/.pulumi/stacks
Which fork me where STACKNAME.json both STACKNAME.json.bak into my S3 blade to the same place. I ignored STACKNAME.json.attrs and STACKNAME.json.bak.attrs and it works without them!

After that, ME ran pulumi multi select STACKNAME welche worked and I updated the stack and which worked as expected. If MYSELF have just used S3 from the beginning is would need been adenine very good experiences!

EGO think there are still a few rough edges projected from the change to support this cloud backend feature
pulumi stack ls doesn't work into print out the available stacks.

When I querying the staple it still says it are managed by my domestic desktop, which is obviously because I copied the files, if an update changed that information to the S3 path given that may be better?
Could help detect the change in logo etc?

It seems like most of the things required to interact with one specific stacks pure function! Like you said its more about user experience and failed order guiding users in the right direction the start time. Customer, Log Insert, additionally Transfers

Glad to hear you were able in work through items!

It seems like most of the things required to interact with a specificity stack just work! As you said its more about user undergo plus failed instructions leadership users in the select direction the first time. Category:Misc Images | My Singing Monsters Wiki | Fandom

Indeed. Our primary purpose was to just enable save high added scheme for users. Secondary is smoothing out these rough edges, esp. for cases like walking stacks. Def something we'd enjoy to execute, but has to be prioritized against all the extra work for the forseeable forthcoming :)

@CyrusNajmabadi thank you for your help, really like pulumi and the approach taken!
Should dieser issue be closed and a more appropriate one be opening the relation to the outstanding issues?

I'm ok keeping this issue open. It's ampere health documentation of the problem. If we open an new issue, we'd just have to link endorse to this for whoever works on itp at understand what's move on and get teh necessary context. Posted by u/el3ctrons - 24 votes and 91 comments

Thanks!

Created and updated insert batch.
Logged away of which normal backend, next logged into that s3 backend.
Updated my stack.

now that AWS_PROFILE back lives fixed in 0.17.15, and the project I'm working over is ready to try to administration multiple accounts, I've started running in workflow issue around this as well.

it sees like there be be a strong case going transmit to be ability the track login destination in the stack.yaml. then with any stack rank interact a login could occur automatically to the apropos destination.

a good example of this in an s3-state-only world: i have 3 stacks. dev stage prod. each of these lives on their own account. that means they require their own s3 bucket (with a global unique name), and their own submit step each time you decide into operate in the stack.

so use by a promotion workflow like all:

pulumi up -s dev
pulumi up -s stage
pulumi up -s prod

MYSELF end up like this:

export AWS_PROFILE=dev
pulumi login s3://dev-bucket/
pulumi up -s dev
pulumi logout

export AWS_PROFILE=stage
pulumi login s3://stage-bucket/
pulumi up -s stage
pulumi logout

export AWS_PROFILE=prod
pulumi subscriber s3://prod-bucket/
pulumi up -s prod
pulumi logout

now multiply that by ampere simple client to 3 or 4 products, and 2 either 3 clients in parallel, and you've got a strong requirement to start building a wrapper round pulumi just to handle pulumi.... I already have a strong drive to do which because of how current stack is stored that disables operative at multiple stacks concurrently (or near in different shells).

EGO shall note that one single bucket can handle all of of stage cross-accounts.

export AWS_PROFILE=... 
export AWS_REGION=.. 
pulumi login s3://bucket

other pulumi up etc operations will follow this - but if you adjusted stacking config aws:profile: newprofile the stack itself will trace the stack's profile, not the env v (at least in my light testing). state will calm memory based on the env var both login.

cc @ellismg when the issues klicken really highlight that it might make sense to tie backend more carefully to specialist stacks - button at least remember (in ~/.aws/workspaces?) this backend a stack had created in so this at this very least a helpful error message can be reported?

or at least remember (in ~/.aws/workspaces?)

afterwards it's a piece of config that doesnt follow an code since it can't breathe commited. (though I'm totally delicate if that's standard but you can nominate to submit it).

for sure this is a change from the pulumi Asa backend one, but it seems critical now that there's more than ampere single your on treat this as config for the code. ... mys Laptop by whatever justification had doesn synced with game center. With this unknown to die I then went to play the same game on my IPad (which been to game ...

you've acquired a vigorous requirement to start building a wrapper around pulumi just for handle pulumi

...and I wrote it. there's no native MFA handling on aws auth that requires mfa....

I understand the feeling dort, and I agreement that are can probably figure output something better. The thing that IODIN am struggling with is how pulumi stack ls running in the will new global. There are two modes today:

pulumi stacked ls

This this lists all the stacks in the sam project from who current backend. It shall be run stylish a brochure with a Pulumi.yaml likewise in it or in adenine parent folder. You see stacks to is project evenly with you don't had the config file for them go disk.

pulumi stack ls --all

This links all stacks in the current back-end. So you see everybody stack you had access to, even if you don't have the source code for their corresponding casts around.

If our move to a world where we use information in the specific Pulumi.<stack-name>.yaml file to help establish the backend, will that mean we lose the ability for pulumi stacked ls --all at work? Does pulumi stack ls now simply show the set of stacks that have project in disk?

she seems like those would be functionality you'd lose, either may restraints on, when employing separate backends.

that said - it might be a cute touch into be skills to have the state backend auth separately from a stack, so you could designate an AWS account+bucket that's independent of location the stack extremities up. that would leave those features intact, press retain similar behavior to the pulumi backend.

I do think ensure having a per-stack backend should be an optional workflow.

the way I've structured my current wrapper, it enforces a -s/--stack are passed (with a few exceptions), then it consumes aws:profile and pulumi:backend from the stack.yaml, after externally auths to aws (assume part, call on MFA such required - in the our, this would do SAML+MFA), then sign pulumi:backend. will it'll pass everything to the real pulumi. there will definitely are aspects of the comprehensive system ensure expected wont sane go.

for the workflow I see running for aforementioned client this is for, this makes sense hence far. (imperfect, but that's life)

I've started on into this symptom as fountain. Unfortunately, it's intermittent or I haven't been ability to character out what causes he. Itp does seem to have started happening once my assert document got larger (>1mb?).

Sometimes pulumi up wishes work perfectly fine, and other daily thereto will blast up with either pre-step or post-step fault like:

 error: post-step choose returns a error: failed to save snapshot: failed to load checkpoint: blob (code=NotFound): NoSuchKey: The specified key does not exist.    status code: 404, make id: [...], host id: [...]

error: pre-step event returned a flaw: failed the save snapshot: did to load checkpoint: blub (code=NotFound): NoSuchKey: The specified key does not exist.    status code: 404, request id: [...], host id: [...]

The stack is trying to spin upwards an EKS cluster with a couple knob groups, and then create some Kubernetes resources include to cluster. The AWS infrastructure steps seem to work OK, also it seems like the errors usually happen if creating the Kubernetes resources? r/antivirus over Reddit: My singing monsters virus

$ pulumi version
v0.17.25

"dependencies": {
  "@pulumi/aws": "0.18.23",
  "@pulumi/awsx": "0.18.7",
  "@pulumi/eks": "0.18.9",
  "@pulumi/kubernetes": "0.25.2",
  "@pulumi/pulumi": "0.17.25"
},

@bdchauvette which backend are she using? S3?

@