maxmustermann/pulumi
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
pulumi/pkg/cmd/preview.go

258 lines
9 KiB
Go
Raw Normal View History

Add license headers
2018-05-22 21:43:36 +02:00
// Copyright 2016-2018, Pulumi Corporation.
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
Add a `plan` command; move `env destroy` to just `destroy` This change adds a `coco plan` command which is simply a shortcut to the more verbose `coco deploy --dry-run`. This will make demos flow nicer and elevates planning, an important activity, to a more prominent position. The `--dry-run` (aka `-n`) flag is still there. This change also renames `coco env destroy` to just `coco destroy`. This is consistent with deploy and plan being at the top-level. We now use `coco env` purely for evironment management commands (init, config, rm, etc).
2017-03-15 23:40:06 +01:00
Rename pulumi-fabric to pulumi This includes a few changes: * The repo name -- and hence the Go modules -- changes from pulumi-fabric to pulumi. * The Node.js SDK package changes from @pulumi/pulumi-fabric to just pulumi. * The CLI is renamed from lumi to pulumi.
2017-09-22 04:18:21 +02:00
package cmd
Add a `plan` command; move `env destroy` to just `destroy` This change adds a `coco plan` command which is simply a shortcut to the more verbose `coco deploy --dry-run`. This will make demos flow nicer and elevates planning, an important activity, to a more prominent position. The `--dry-run` (aka `-n`) flag is still there. This change also renames `coco env destroy` to just `coco destroy`. This is consistent with deploy and plan being at the top-level. We now use `coco env` purely for evironment management commands (init, config, rm, etc).
2017-03-15 23:40:06 +01:00
import (
Bring back preview, swizzle some flags This changes the CLI interface in a few ways: * `pulumi preview` is back! The alternative of saying `pulumi update --preview` just felt awkward, and it's a common operation to want to perform. Let's just make it work. * There are two flags consistent across all update commands, `update`, `refresh`, and `destroy`: - `--skip-preview` will skip the preview step. Note that this does *not* skip the prompt to confirm that you'd like to proceed. Indeed, it will still prompt, with a little warning text about the fact that the preview has been skipped. * `--yes` will auto-approve the updates. This lands us in a simpler and more intuitive spot for common scenarios.
2018-05-05 20:57:09 +02:00
"github.com/pkg/errors"
Add a `plan` command; move `env destroy` to just `destroy` This change adds a `coco plan` command which is simply a shortcut to the more verbose `coco deploy --dry-run`. This will make demos flow nicer and elevates planning, an important activity, to a more prominent position. The `--dry-run` (aka `-n`) flag is still there. This change also renames `coco env destroy` to just `coco destroy`. This is consistent with deploy and plan being at the top-level. We now use `coco env` purely for evironment management commands (init, config, rm, etc).
2017-03-15 23:40:06 +01:00
"github.com/spf13/cobra"
Make major commands more pleasant This change eliminates the need to constantly type in the environment name when performing major commands like configuration, planning, and deployment. It's probably due to my age, however, I keep fat-fingering simple commands in front of investors and I am embarrassed! In the new model, there is a notion of a "current environment", and I have modeled it kinda sorta just like Git's notion of "current branch." By default, the current environment is set when you `init` something. Otherwise, there is the `coco env select <env>` command to change it. (Running this command w/out a new <env> will show you the current one.) The major commands `config`, `plan`, `deploy`, and `destroy` will prefer to use the current environment, unless it is overridden by using the --env flag. All of the `coco env <cmd> <env>` commands still require the explicit passing of an environment which seems reasonable since they are, after all, about manipulating environments. As part of this, I've overhauled the aging workspace settings cruft, which had fallen into disrepair since the initial prototype.
2017-03-22 03:23:32 +01:00
Bring back preview, swizzle some flags This changes the CLI interface in a few ways: * `pulumi preview` is back! The alternative of saying `pulumi update --preview` just felt awkward, and it's a common operation to want to perform. Let's just make it work. * There are two flags consistent across all update commands, `update`, `refresh`, and `destroy`: - `--skip-preview` will skip the preview step. Note that this does *not* skip the prompt to confirm that you'd like to proceed. Indeed, it will still prompt, with a little warning text about the fact that the preview has been skipped. * `--yes` will auto-approve the updates. This lands us in a simpler and more intuitive spot for common scenarios.
2018-05-05 20:57:09 +02:00
"github.com/pulumi/pulumi/pkg/backend"
Refactor display logic out of pkg/backend/filestate This simply refactors all the display logic out of the pkg/backend/filestate package. This helps to gear us up to better unify this logic between the filestate and httpstate backends. Furthermore, this really ought to be in its own non-backend, CLI-specific package, but I'm taking one step at a time here.
2018-09-05 00:40:15 +02:00
"github.com/pulumi/pulumi/pkg/backend/display"
Bring back preview, swizzle some flags This changes the CLI interface in a few ways: * `pulumi preview` is back! The alternative of saying `pulumi update --preview` just felt awkward, and it's a common operation to want to perform. Let's just make it work. * There are two flags consistent across all update commands, `update`, `refresh`, and `destroy`: - `--skip-preview` will skip the preview step. Note that this does *not* skip the prompt to confirm that you'd like to proceed. Indeed, it will still prompt, with a little warning text about the fact that the preview has been skipped. * `--yes` will auto-approve the updates. This lands us in a simpler and more intuitive spot for common scenarios.
2018-05-05 20:57:09 +02:00
"github.com/pulumi/pulumi/pkg/engine"
move pkg/resource -> sdk/go/common/resource, but leave nested resource packages
2020-03-18 21:36:19 +01:00
"github.com/pulumi/pulumi/sdk/go/common/resource"
Rename pulumi-fabric to pulumi This includes a few changes: * The repo name -- and hence the Go modules -- changes from pulumi-fabric to pulumi. * The Node.js SDK package changes from @pulumi/pulumi-fabric to just pulumi. * The CLI is renamed from lumi to pulumi.
2017-09-22 04:18:21 +02:00
"github.com/pulumi/pulumi/pkg/util/cmdutil"
Add in some top-down usage of result.Result (#2556)
2019-03-14 02:00:49 +01:00
"github.com/pulumi/pulumi/pkg/util/result"
Add a `plan` command; move `env destroy` to just `destroy` This change adds a `coco plan` command which is simply a shortcut to the more verbose `coco deploy --dry-run`. This will make demos flow nicer and elevates planning, an important activity, to a more prominent position. The `--dry-run` (aka `-n`) flag is still there. This change also renames `coco env destroy` to just `coco destroy`. This is consistent with deploy and plan being at the top-level. We now use `coco env` purely for evironment management commands (init, config, rm, etc).
2017-03-15 23:40:06 +01:00
)
Renames: `plan` -> `preview`, `deploy` -> `push`. Part of #353. These changes also remove all command aliases from the `pulumi` command.
2017-09-23 00:15:42 +02:00
func newPreviewCmd() *cobra.Command {
Add a --debug option to plan, deploy, and destroy This change introduces a --debug option to the plan, deploy, and destroy commands. Unlike --logtostderr, which merely hooks into the copious Glogging that we perform (and is therefore meant for developers of the tools themselves and not end users), --debug hooks into the user-facing debug stream. This now includes any debug messages coming from the resource providers as they perform their tasks.
2017-07-14 02:09:46 +02:00
var debug bool
Add an `--expect-no-changes` flag to {preview, update}. When this flag is specified, the CLI will return an error if `preview` proposes changes or `update` performs changes.
2018-05-16 02:33:16 +02:00
var expectNop bool
Bring back preview, swizzle some flags This changes the CLI interface in a few ways: * `pulumi preview` is back! The alternative of saying `pulumi update --preview` just felt awkward, and it's a common operation to want to perform. Let's just make it work. * There are two flags consistent across all update commands, `update`, `refresh`, and `destroy`: - `--skip-preview` will skip the preview step. Note that this does *not* skip the prompt to confirm that you'd like to proceed. Indeed, it will still prompt, with a little warning text about the fact that the preview has been skipped. * `--yes` will auto-approve the updates. This lands us in a simpler and more intuitive spot for common scenarios.
2018-05-05 20:57:09 +02:00
var message string
Use `Stack` over `Environment` to describe a deployment target Previously we used the word "Environment" as the term for a deployment target, but since then we've started to use the term Stack. Adopt this across the CLI. From a user's point of view, there are a few changes: 1. The `env` verb has been renamed to `stack` 2. The `-e` and `--env` options to commands which operate on an environment now take `-s` or `--stack` instead. 3. Becase of (2), the commands that used `-s` to display a summary now only support passing the full option name (`--summary`). On the local file system, we still store checkpoint data in the `env` sub-folder under `.pulumi` (so we can reuse existing checkpoint files that were written to the old folder)
2017-10-16 21:04:35 +02:00
var stack string
Add the config array option to the preview command. (#3271) * Add the config array option to the preview command. * Update changelog
2019-09-26 02:45:36 +02:00
var configArray []string
Support lists and maps in config (#3342) This change adds support for lists and maps in config. We now allow lists/maps (and nested structures) in `Pulumi.<stack>.yaml` (or `Pulumi.<stack>.json`; yes, we currently support that). For example: ```yaml config: proj:blah: - a - b - c proj:hello: world proj:outer: inner: value proj:servers: - port: 80 ``` While such structures could be specified in the `.yaml` file manually, we support setting values in maps/lists from the command line. As always, you can specify single values with: ```shell $ pulumi config set hello world ``` Which results in the following YAML: ```yaml proj:hello world ``` And single value secrets via: ```shell $ pulumi config set --secret token shhh ``` Which results in the following YAML: ```yaml proj:token: secure: v1:VZAhuroR69FkEPTk:isKafsoZVMWA9pQayGzbWNynww== ``` Values in a list can be set from the command line using the new `--path` flag, which indicates the config key contains a path to a property in a map or list: ```shell $ pulumi config set --path names[0] a $ pulumi config set --path names[1] b $ pulumi config set --path names[2] c ``` Which results in: ```yaml proj:names - a - b - c ``` Values can be obtained similarly: ```shell $ pulumi config get --path names[1] b ``` Or setting values in a map: ```shell $ pulumi config set --path outer.inner value ``` Which results in: ```yaml proj:outer: inner: value ``` Of course, setting values in nested structures is supported: ```shell $ pulumi config set --path servers[0].port 80 ``` Which results in: ```yaml proj:servers: - port: 80 ``` If you want to include a period in the name of a property, it can be specified as: ``` $ pulumi config set --path 'nested["foo.bar"]' baz ``` Which results in: ```yaml proj:nested: foo.bar: baz ``` Examples of valid paths: - root - root.nested - 'root["nested"]' - root.double.nest - 'root["double"].nest' - 'root["double"]["nest"]' - root.array[0] - root.array[100] - root.array[0].nested - root.array[0][1].nested - root.nested.array[0].double[1] - 'root["key with \"escaped\" quotes"]' - 'root["key with a ."]' - '["root key with \"escaped\" quotes"].nested' - '["root key with a ."][100]' Note: paths that contain quotes can be surrounded by single quotes. When setting values with `--path`, if the value is `"false"` or `"true"`, it will be saved as the boolean value, and if it is convertible to an integer, it will be saved as an integer. Secure values are supported in lists/maps as well: ```shell $ pulumi config set --path --secret tokens[0] shh ``` Will result in: ```yaml proj:tokens: - secure: v1:wpZRCe36sFg1RxwG:WzPeQrCn4n+m4Ks8ps15MxvFXg== ``` Note: maps of length 1 with a key of “secure” and string value are reserved for storing secret values. Attempting to create such a value manually will result in an error: ```shell $ pulumi config set --path parent.secure foo error: "secure" key in maps of length 1 are reserved ``` **Accessing config values from the command line with JSON** ```shell $ pulumi config --json ``` Will output: ```json { "proj:hello": { "value": "world", "secret": false, "object": false }, "proj:names": { "value": "[\"a\",\"b\",\"c\"]", "secret": false, "object": true, "objectValue": [ "a", "b", "c" ] }, "proj:nested": { "value": "{\"foo.bar\":\"baz\"}", "secret": false, "object": true, "objectValue": { "foo.bar": "baz" } }, "proj:outer": { "value": "{\"inner\":\"value\"}", "secret": false, "object": true, "objectValue": { "inner": "value" } }, "proj:servers": { "value": "[{\"port\":80}]", "secret": false, "object": true, "objectValue": [ { "port": 80 } ] }, "proj:token": { "secret": true, "object": false }, "proj:tokens": { "secret": true, "object": true } } ``` If the value is a map or list, `"object"` will be `true`. `"value"` will contain the object as serialized JSON and a new `"objectValue"` property will be available containing the value of the object. If the object contains any secret values, `"secret"` will be `true`, and just like with scalar values, the value will not be outputted unless `--show-secrets` is specified. **Accessing config values from Pulumi programs** Map/list values are available to Pulumi programs as serialized JSON, so the existing `getObject`/`requireObject`/`getSecretObject`/`requireSecretObject` functions can be used to retrieve such values, e.g.: ```typescript import * as pulumi from "@pulumi/pulumi"; interface Server { port: number; } const config = new pulumi.Config(); const names = config.requireObject<string[]>("names"); for (const n of names) { console.log(n); } const servers = config.requireObject<Server[]>("servers"); for (const s of servers) { console.log(s.port); } ```
2019-11-01 21:41:27 +01:00
var configPath bool
Surface update options to the service (#806) This PR surfaces the configuration options available to updates, previews, and destroys to the Pulumi Service. As part of this I refactored the options to unify them into a single `engine.UpdateOptions`, since they were all overlapping to various degrees. With this PR we are adding several new flags to commands, e.g. `--summary` was not available on `pulumi destroy`. There are also a few minor breaking changes. - `pulumi destroy --preview` is now `pulumi destroy --dry-run` (to match the actual name of the field). - The default behavior for "--color" is now `Always`. Previously it was `Always` or `Never` based on the value of a `--debug` flag. (You can specify `--color always` or `--color never` to get the exact behavior.) Fixes #515, and cleans up the code making some other features slightly easier to add.
2018-01-18 20:10:15 +01:00
// Flags for engine.UpdateOptions.
Bring `pulumi preview` in-line with `pulumi up` (#3675) Adds support to `pulumi preview` to match `pulumi up` for: * `refresh` * `target` * `replace` * `target-replace` * `target-dependents` Fixes #3674.
2019-12-17 22:31:12 +01:00
var jsonDisplay bool
Implement `--policy-pack` flag on `up` and `preview` Fixes pulumi/pulumi-policy#43.
2019-08-11 09:39:03 +02:00
var policyPackPaths []string
Initial support for configuring policies (#4015)
2020-03-08 22:11:55 +01:00
var policyPackConfigPaths []string
Implement a refresh command This change implements a `pulumi refresh` command. It operates a bit like `pulumi update`, and friends, in that it supports `--preview` and `--diff`, along with the usual flags, and will update your checkpoint. It works through substitution of the deploy.Source abstraction, which generates a sequence of resource registration events. This new deploy.RefreshSource takes in a prior checkpoint and will walk it, refreshing the state via the associated resource providers by invoking Read for each resource encountered, and merging the resulting state with the prior checkpoint, to yield a new resource.Goal state. This state is then fed through the engine in the usual ways with a few minor caveats: namely, although the engine must generate steps for the logical operations (permitting us to get nice summaries, progress, and diffs), it mustn't actually carry them out because the state being imported already reflects reality (a deleted resource has *already* been deleted, so of course the engine need not perform the deletion). The diffing logic also needs to know how to treat the case of refresh slightly differently, because we are going to be diffing outputs and not inputs. Note that support for managed stacks is not yet complete, since that requires updates to the service to support a refresh endpoint. That will be coming soon ...
2018-04-10 20:22:39 +02:00
var diffDisplay bool
Expose update events to ExtraRuntimeValidation. (#3160) * Add the ability to log all engine events to a file. The path to the file can be specified using the `--event-log` flag to the CLI. The file will be truncated if it exists. Events are written as a list of JSON values using the schema described by `pkg/apitype`. * Expose update engine events to ExtraRuntimeValidation. Just what it says on the tin. Events from previews are not exposed.
2019-09-07 02:07:54 +02:00
var eventLogPath string
Switch to a --parallel=P flag This change flips the polarity on parallelism: rather than having a --serialize flag, we will have a --parallel=P flag, and by default we will shut off parallelism. We aren't benefiting from it at the moment (until we implement pulumi/pulumi-fabric#106), and there are more hidden dependencies in places like AWS Lambdas and Permissions than I had realized. We may revisit the default, but this allows us to bite off the messiness of dependsOn only when we benefit from it. And in any case, the --parallel=P capability will be useful.
2017-09-17 17:10:46 +02:00
var parallel int
Bring `pulumi preview` in-line with `pulumi up` (#3675) Adds support to `pulumi preview` to match `pulumi up` for: * `refresh` * `target` * `replace` * `target-replace` * `target-dependents` Fixes #3674.
2019-12-17 22:31:12 +01:00
var refresh bool
Add a `plan` command; move `env destroy` to just `destroy` This change adds a `coco plan` command which is simply a shortcut to the more verbose `coco deploy --dry-run`. This will make demos flow nicer and elevates planning, an important activity, to a more prominent position. The `--dry-run` (aka `-n`) flag is still there. This change also renames `coco env destroy` to just `coco destroy`. This is consistent with deploy and plan being at the top-level. We now use `coco env` purely for evironment management commands (init, config, rm, etc).
2017-03-15 23:40:06 +01:00
var showConfig bool
Prettify the CLI in a few places This changes a few things in the CLI, mostly just prettying it up: * Label all steps more clearly with the kind of step. Also unify the way we present this during planning and deployment. * Summarize the changes that *did not* get made just as clearly as those that did. In other words, stuff like this: info: 2 resources changed: +1 resource created -1 resource deleted 5 resources unchanged and info: no resources required 5 resources unchanged * Always print output properties when they are pertinent. This includes creates, replacements, and updates. * Show replacement creates and deletes very distinctly. The create parts show up minty green and the delete parts show up rosey red. These are the "physical" steps, compared to the "logical" step of replacement (which remains marigold). I still don't love where we are here. The asymmetry between planning and deployment bugs me, and could be surprising. ("Hey, my deploy doesn't look like my plan!") I don't know what developers will want to see here and I feel like in general we are spewing far too much into the CLI to make it even useful for anything but diagnosing failures afterwards. I propose that we should do a deep dive on this during the CLI epic, pulumi/pulumi-service#2. This resolves pulumi/pulumi-fabric#305.
2017-08-06 19:05:51 +02:00
var showReplacementSteps bool
Introduce an OpSame planning step This change introduces an OpSame planning step. The reason we need this is so that we can apply the necessary output properties, including the ID, even as we are simply walking the plan (i.e., when we aren't actually performing a deployment). This ensures that the object state evolves as required to let reads of output properties propagate in the ways necessary to reproduce past executions of the program.
2017-06-11 17:09:20 +02:00
var showSames bool
Color 'reads' as cyan so they don't look like 'creates'. (#3236)
2019-09-18 18:49:13 +02:00
var showReads bool
Add an option to suppress displaying stack outputs (#2029) This adds an option, --suppress-outputs, to many commands, to avoid printing stack outputs for stacks that might contain sensitive information in their outputs (like key material, and whatnot). Fixes pulumi/pulumi#2028.
2018-10-06 23:13:02 +02:00
var suppressOutputs bool
Bring `pulumi preview` in-line with `pulumi up` (#3675) Adds support to `pulumi preview` to match `pulumi up` for: * `refresh` * `target` * `replace` * `target-replace` * `target-dependents` Fixes #3674.
2019-12-17 22:31:12 +01:00
var targets []string
var replaces []string
var targetReplaces []string
var targetDependents bool
Surface update options to the service (#806) This PR surfaces the configuration options available to updates, previews, and destroys to the Pulumi Service. As part of this I refactored the options to unify them into a single `engine.UpdateOptions`, since they were all overlapping to various degrees. With this PR we are adding several new flags to commands, e.g. `--summary` was not available on `pulumi destroy`. There are also a few minor breaking changes. - `pulumi destroy --preview` is now `pulumi destroy --dry-run` (to match the actual name of the field). - The default behavior for "--color" is now `Always`. Previously it was `Always` or `Never` based on the value of a `--debug` flag. (You can specify `--color always` or `--color never` to get the exact behavior.) Fixes #515, and cleans up the code making some other features slightly easier to add.
2018-01-18 20:10:15 +01:00
Add a `plan` command; move `env destroy` to just `destroy` This change adds a `coco plan` command which is simply a shortcut to the more verbose `coco deploy --dry-run`. This will make demos flow nicer and elevates planning, an important activity, to a more prominent position. The `--dry-run` (aka `-n`) flag is still there. This change also renames `coco env destroy` to just `coco destroy`. This is consistent with deploy and plan being at the top-level. We now use `coco env` purely for evironment management commands (init, config, rm, etc).
2017-03-15 23:40:06 +01:00
var cmd = &cobra.Command{
Add some command hints I sometimes revert back to some ancient version of the system, and I figure with so many other tools using different verbs here, it's worth at least improving our help text with the SuggestFors.
2017-10-21 02:36:47 +02:00
Use: "preview",
Add a handful of aliases/suggestions (#557)
2017-11-13 23:59:11 +01:00
Aliases: []string{"pre"},
SuggestFor: []string{"build", "plan"},
Bring back preview, swizzle some flags This changes the CLI interface in a few ways: * `pulumi preview` is back! The alternative of saying `pulumi update --preview` just felt awkward, and it's a common operation to want to perform. Let's just make it work. * There are two flags consistent across all update commands, `update`, `refresh`, and `destroy`: - `--skip-preview` will skip the preview step. Note that this does *not* skip the prompt to confirm that you'd like to proceed. Indeed, it will still prompt, with a little warning text about the fact that the preview has been skipped. * `--yes` will auto-approve the updates. This lands us in a simpler and more intuitive spot for common scenarios.
2018-05-05 20:57:09 +02:00
Short: "Show a preview of updates to a stack's resources",
Long: "Show a preview of updates a stack's resources.\n" +
"\n" +
"This command displays a preview of the updates to an existing stack whose state is\n" +
Doc edits to cmd (#2505)
2019-03-02 20:04:09 +01:00
"represented by an existing state file. The new desired state is computed by running\n" +
Bring back preview, swizzle some flags This changes the CLI interface in a few ways: * `pulumi preview` is back! The alternative of saying `pulumi update --preview` just felt awkward, and it's a common operation to want to perform. Let's just make it work. * There are two flags consistent across all update commands, `update`, `refresh`, and `destroy`: - `--skip-preview` will skip the preview step. Note that this does *not* skip the prompt to confirm that you'd like to proceed. Indeed, it will still prompt, with a little warning text about the fact that the preview has been skipped. * `--yes` will auto-approve the updates. This lands us in a simpler and more intuitive spot for common scenarios.
2018-05-05 20:57:09 +02:00
"a Pulumi program, and extracting all resource allocations from its resulting object graph.\n" +
"These allocations are then compared against the existing state to determine what\n" +
"operations must take place to achieve the desired state. No changes to the stack will\n" +
"actually take place.\n" +
"\n" +
"The program to run is loaded from the project in the current directory. Use the `-C` or\n" +
"`--cwd` flag to use a different directory.",
Args: cmdutil.NoArgs,
Use interface for 'result.Result' (#2569)
2019-03-19 20:40:10 +01:00
Run: cmdutil.RunResultFunc(func(cmd *cobra.Command, args []string) result.Result {
Add display mode for `pulumi query` The Pulumi CLI currently has two "display modes" -- one for rendering diffs and one for rendering program updates. Neither of these is particularly well-suited to `pulumi query`, which essentially needs to render stdout from the query program verbatim. This commit will add a separate display mode for this purpose: * In interactive mode, `pulumi query` will use the display spinner to say "running query". In non-interactive mode, this will be omitted. * Query mode will print stdout from the query program verbatim, but ignore `diag.Infoerr` so that they're not double-printed when they're emitted again as error events. * Query mode also does not double-print newlines at the end of diag events.
2019-04-30 19:31:53 +02:00
var displayType = display.DisplayProgress
if diffDisplay {
displayType = display.DisplayDiff
}
Bring `pulumi preview` in-line with `pulumi up` (#3675) Adds support to `pulumi preview` to match `pulumi up` for: * `refresh` * `target` * `replace` * `target-replace` * `target-dependents` Fixes #3674.
2019-12-17 22:31:12 +01:00
displayOpts := display.Options{
Color: cmdutil.GetGlobalColorization(),
ShowConfig: showConfig,
ShowReplacementSteps: showReplacementSteps,
ShowSameResources: showSames,
ShowReads: showReads,
SuppressOutputs: suppressOutputs,
IsInteractive: cmdutil.Interactive(),
Type: displayType,
JSONDisplay: jsonDisplay,
EventLogPath: eventLogPath,
Debug: debug,
Bring back preview, swizzle some flags This changes the CLI interface in a few ways: * `pulumi preview` is back! The alternative of saying `pulumi update --preview` just felt awkward, and it's a common operation to want to perform. Let's just make it work. * There are two flags consistent across all update commands, `update`, `refresh`, and `destroy`: - `--skip-preview` will skip the preview step. Note that this does *not* skip the prompt to confirm that you'd like to proceed. Indeed, it will still prompt, with a little warning text about the fact that the preview has been skipped. * `--yes` will auto-approve the updates. This lands us in a simpler and more intuitive spot for common scenarios.
2018-05-05 20:57:09 +02:00
}
Support the NO_COLOR env variable to suppres any colored output. (#1594) Also, make --color a viable command option for any pulumi command.
2018-07-07 06:30:00 +02:00
Initial support for configuring policies (#4015)
2020-03-08 22:11:55 +01:00
if err := validatePolicyPackConfig(policyPackPaths, policyPackConfigPaths); err != nil {
return result.FromError(err)
}
Bring `pulumi preview` in-line with `pulumi up` (#3675) Adds support to `pulumi preview` to match `pulumi up` for: * `refresh` * `target` * `replace` * `target-replace` * `target-dependents` Fixes #3674.
2019-12-17 22:31:12 +01:00
s, err := requireStack(stack, true, displayOpts, true /*setCurrent*/)
Support the NO_COLOR env variable to suppres any colored output. (#1594) Also, make --color a viable command option for any pulumi command.
2018-07-07 06:30:00 +02:00
if err != nil {
Add in some top-down usage of result.Result (#2556)
2019-03-14 02:00:49 +01:00
return result.FromError(err)
Support the NO_COLOR env variable to suppres any colored output. (#1594) Also, make --color a viable command option for any pulumi command.
2018-07-07 06:30:00 +02:00
}
Add the config array option to the preview command. (#3271) * Add the config array option to the preview command. * Update changelog
2019-09-26 02:45:36 +02:00
// Save any config values passed via flags.
Initial support for configuring policies (#4015)
2020-03-08 22:11:55 +01:00
if err = parseAndSaveConfigArray(s, configArray, configPath); err != nil {
Add the config array option to the preview command. (#3271) * Add the config array option to the preview command. * Update changelog
2019-09-26 02:45:36 +02:00
return result.FromError(err)
}
Use PulumiPolicy.yaml instead of Pulumi.yaml for PolicyPacks
2019-10-10 00:33:35 +02:00
proj, root, err := readProject()
Support the NO_COLOR env variable to suppres any colored output. (#1594) Also, make --color a viable command option for any pulumi command.
2018-07-07 06:30:00 +02:00
if err != nil {
Add in some top-down usage of result.Result (#2556)
2019-03-14 02:00:49 +01:00
return result.FromError(err)
Support the NO_COLOR env variable to suppres any colored output. (#1594) Also, make --color a viable command option for any pulumi command.
2018-07-07 06:30:00 +02:00
}
Bring `pulumi preview` in-line with `pulumi up` (#3675) Adds support to `pulumi preview` to match `pulumi up` for: * `refresh` * `target` * `replace` * `target-replace` * `target-dependents` Fixes #3674.
2019-12-17 22:31:12 +01:00
m, err := getUpdateMetadata(message, root)
Support the NO_COLOR env variable to suppres any colored output. (#1594) Also, make --color a viable command option for any pulumi command.
2018-07-07 06:30:00 +02:00
if err != nil {
Add in some top-down usage of result.Result (#2556)
2019-03-14 02:00:49 +01:00
return result.FromError(errors.Wrap(err, "gathering environment metadata"))
Support the NO_COLOR env variable to suppres any colored output. (#1594) Also, make --color a viable command option for any pulumi command.
2018-07-07 06:30:00 +02:00
}
Do not prompt for passphrase multiple times The change does two things: - Reorders some calls in the CLI to prevent trying to create a secrets manager twice (which would end up prompting twice). - Adds a cache inside the passphrase secrets manager such that when decrypting a deployment, we can re-use the one created earlier in the update. This is sort of a hack, but is needed because otherwise we would fail to decrypt the deployment, meaning that if you had a secret value in your deployment *and* you were using local passphrase encryption *and* you had not set PULUMI_CONFIG_PASSPHRASE you would get an error asking you to do so. Fixes #2729
2019-05-15 08:23:03 +02:00
sm, err := getStackSecretsManager(s)
Refactor config loading out of the backend We require configuration to preform updates (as well as previews, destroys and refreshes). Because of how everything evolved, loading this configuration (and finding the coresponding decrypter) was implemented in both the file and http backends, which wasn't great. Refactor things such that the CLI itself builds out this information and passes it along to the backend to preform operations. This means less code duplicated between backends and less places the backend assume things about the existence of `Pulumi.yaml` files and in general makes the interface more plesent to use for others uses.
2019-04-19 00:57:54 +02:00
if err != nil {
Do not prompt for passphrase multiple times The change does two things: - Reorders some calls in the CLI to prevent trying to create a secrets manager twice (which would end up prompting twice). - Adds a cache inside the passphrase secrets manager such that when decrypting a deployment, we can re-use the one created earlier in the update. This is sort of a hack, but is needed because otherwise we would fail to decrypt the deployment, meaning that if you had a secret value in your deployment *and* you were using local passphrase encryption *and* you had not set PULUMI_CONFIG_PASSPHRASE you would get an error asking you to do so. Fixes #2729
2019-05-15 08:23:03 +02:00
return result.FromError(errors.Wrap(err, "getting secrets manager"))
Refactor config loading out of the backend We require configuration to preform updates (as well as previews, destroys and refreshes). Because of how everything evolved, loading this configuration (and finding the coresponding decrypter) was implemented in both the file and http backends, which wasn't great. Refactor things such that the CLI itself builds out this information and passes it along to the backend to preform operations. This means less code duplicated between backends and less places the backend assume things about the existence of `Pulumi.yaml` files and in general makes the interface more plesent to use for others uses.
2019-04-19 00:57:54 +02:00
}
Do not prompt for passphrase multiple times The change does two things: - Reorders some calls in the CLI to prevent trying to create a secrets manager twice (which would end up prompting twice). - Adds a cache inside the passphrase secrets manager such that when decrypting a deployment, we can re-use the one created earlier in the update. This is sort of a hack, but is needed because otherwise we would fail to decrypt the deployment, meaning that if you had a secret value in your deployment *and* you were using local passphrase encryption *and* you had not set PULUMI_CONFIG_PASSPHRASE you would get an error asking you to do so. Fixes #2729
2019-05-15 08:23:03 +02:00
cfg, err := getStackConfiguration(s, sm)
Stop using the Base64SecretsManager in `cmd` We have now done all the work needed such that we can start passing the passphrase and service secrets managers into the engine to be used when storing values. With this change `pulumi up` will now correctly encrypt secrets instead of just base64 encoding them.
2019-04-26 23:49:50 +02:00
if err != nil {
Do not prompt for passphrase multiple times The change does two things: - Reorders some calls in the CLI to prevent trying to create a secrets manager twice (which would end up prompting twice). - Adds a cache inside the passphrase secrets manager such that when decrypting a deployment, we can re-use the one created earlier in the update. This is sort of a hack, but is needed because otherwise we would fail to decrypt the deployment, meaning that if you had a secret value in your deployment *and* you were using local passphrase encryption *and* you had not set PULUMI_CONFIG_PASSPHRASE you would get an error asking you to do so. Fixes #2729
2019-05-15 08:23:03 +02:00
return result.FromError(errors.Wrap(err, "getting stack configuration"))
Stop using the Base64SecretsManager in `cmd` We have now done all the work needed such that we can start passing the passphrase and service secrets managers into the engine to be used when storing values. With this change `pulumi up` will now correctly encrypt secrets instead of just base64 encoding them.
2019-04-26 23:49:50 +02:00
}
Bring `pulumi preview` in-line with `pulumi up` (#3675) Adds support to `pulumi preview` to match `pulumi up` for: * `refresh` * `target` * `replace` * `target-replace` * `target-dependents` Fixes #3674.
2019-12-17 22:31:12 +01:00
targetURNs := []resource.URN{}
for _, t := range targets {
targetURNs = append(targetURNs, resource.URN(t))
}
replaceURNs := []resource.URN{}
for _, r := range replaces {
replaceURNs = append(replaceURNs, resource.URN(r))
}
for _, tr := range targetReplaces {
targetURNs = append(targetURNs, resource.URN(tr))
replaceURNs = append(replaceURNs, resource.URN(tr))
}
opts := backend.UpdateOptions{
Engine: engine.UpdateOptions{
Initial support for configuring policies (#4015)
2020-03-08 22:11:55 +01:00
LocalPolicyPacks: engine.MakeLocalPolicyPacks(policyPackPaths, policyPackConfigPaths),
Improve PP naming for local PPs (#3839)
2020-01-30 22:31:41 +01:00
Parallel: parallel,
Debug: debug,
Refresh: refresh,
ReplaceTargets: replaceURNs,
UseLegacyDiff: useLegacyDiff(),
UpdateTargets: targetURNs,
TargetDependents: targetDependents,
Bring `pulumi preview` in-line with `pulumi up` (#3675) Adds support to `pulumi preview` to match `pulumi up` for: * `refresh` * `target` * `replace` * `target-replace` * `target-dependents` Fixes #3674.
2019-12-17 22:31:12 +01:00
},
Display: displayOpts,
}
Use result.Result in more places. (#2568)
2019-03-20 00:21:50 +01:00
changes, res := s.Preview(commandContext(), backend.UpdateOperation{
Refactor config loading out of the backend We require configuration to preform updates (as well as previews, destroys and refreshes). Because of how everything evolved, loading this configuration (and finding the coresponding decrypter) was implemented in both the file and http backends, which wasn't great. Refactor things such that the CLI itself builds out this information and passes it along to the backend to preform operations. This means less code duplicated between backends and less places the backend assume things about the existence of `Pulumi.yaml` files and in general makes the interface more plesent to use for others uses.
2019-04-19 00:57:54 +02:00
Proj: proj,
Root: root,
M: m,
Opts: opts,
StackConfiguration: cfg,
Stop using the Base64SecretsManager in `cmd` We have now done all the work needed such that we can start passing the passphrase and service secrets managers into the engine to be used when storing values. With this change `pulumi up` will now correctly encrypt secrets instead of just base64 encoding them.
2019-04-26 23:49:50 +02:00
SecretsManager: sm,
Refactor config loading out of the backend We require configuration to preform updates (as well as previews, destroys and refreshes). Because of how everything evolved, loading this configuration (and finding the coresponding decrypter) was implemented in both the file and http backends, which wasn't great. Refactor things such that the CLI itself builds out this information and passes it along to the backend to preform operations. This means less code duplicated between backends and less places the backend assume things about the existence of `Pulumi.yaml` files and in general makes the interface more plesent to use for others uses.
2019-04-19 00:57:54 +02:00
Scopes: cancellationScopes,
Implement preview-then-update for local stacks This change implements the same preview behavior we have for cloud stacks, in pkg/backend/httpbe, for local stacks, in pkg/backend/filebe. This mostly required just refactoring bits and pieces so that we can share more of the code, although it does still entail quite a bit of redundancy. In particular, the apply functions for both backends are now so close to being unified, but still require enough custom logic that it warrants keeping them separate (for now...)
2018-09-05 16:20:25 +02:00
})
Use result.Result in more places. (#2568)
2019-03-20 00:21:50 +01:00
Add an `--expect-no-changes` flag to {preview, update}. When this flag is specified, the CLI will return an error if `preview` proposes changes or `update` performs changes.
2018-05-16 02:33:16 +02:00
switch {
Use result.Result in more places. (#2568)
2019-03-20 00:21:50 +01:00
case res != nil:
return PrintEngineResult(res)
PR feedback.
2018-05-16 19:22:09 +02:00
case expectNop && changes != nil && changes.HasChanges():
Add in some top-down usage of result.Result (#2556)
2019-03-14 02:00:49 +01:00
return result.FromError(errors.New("error: no changes were expected but changes were proposed"))
Add an `--expect-no-changes` flag to {preview, update}. When this flag is specified, the CLI will return an error if `preview` proposes changes or `update` performs changes.
2018-05-16 02:33:16 +02:00
default:
return nil
}
Add a `plan` command; move `env destroy` to just `destroy` This change adds a `coco plan` command which is simply a shortcut to the more verbose `coco deploy --dry-run`. This will make demos flow nicer and elevates planning, an important activity, to a more prominent position. The `--dry-run` (aka `-n`) flag is still there. This change also renames `coco env destroy` to just `coco destroy`. This is consistent with deploy and plan being at the top-level. We now use `coco env` purely for evironment management commands (init, config, rm, etc).
2017-03-15 23:40:06 +01:00
}),
}
Add a --debug option to plan, deploy, and destroy This change introduces a --debug option to the plan, deploy, and destroy commands. Unlike --logtostderr, which merely hooks into the copious Glogging that we perform (and is therefore meant for developers of the tools themselves and not end users), --debug hooks into the user-facing debug stream. This now includes any debug messages coming from the resource providers as they perform their tasks.
2017-07-14 02:09:46 +02:00
cmd.PersistentFlags().BoolVarP(
&debug, "debug", "d", false,
"Print detailed debugging output during resource operations")
Add an `--expect-no-changes` flag to {preview, update}. When this flag is specified, the CLI will return an error if `preview` proposes changes or `update` performs changes.
2018-05-16 02:33:16 +02:00
cmd.PersistentFlags().BoolVar(
&expectNop, "expect-no-changes", false,
"Return an error if any changes are proposed by this preview")
Make major commands more pleasant This change eliminates the need to constantly type in the environment name when performing major commands like configuration, planning, and deployment. It's probably due to my age, however, I keep fat-fingering simple commands in front of investors and I am embarrassed! In the new model, there is a notion of a "current environment", and I have modeled it kinda sorta just like Git's notion of "current branch." By default, the current environment is set when you `init` something. Otherwise, there is the `coco env select <env>` command to change it. (Running this command w/out a new <env> will show you the current one.) The major commands `config`, `plan`, `deploy`, and `destroy` will prefer to use the current environment, unless it is overridden by using the --env flag. All of the `coco env <cmd> <env>` commands still require the explicit passing of an environment which seems reasonable since they are, after all, about manipulating environments. As part of this, I've overhauled the aging workspace settings cruft, which had fallen into disrepair since the initial prototype.
2017-03-22 03:23:32 +01:00
cmd.PersistentFlags().StringVarP(
Use `Stack` over `Environment` to describe a deployment target Previously we used the word "Environment" as the term for a deployment target, but since then we've started to use the term Stack. Adopt this across the CLI. From a user's point of view, there are a few changes: 1. The `env` verb has been renamed to `stack` 2. The `-e` and `--env` options to commands which operate on an environment now take `-s` or `--stack` instead. 3. Becase of (2), the commands that used `-s` to display a summary now only support passing the full option name (`--summary`). On the local file system, we still store checkpoint data in the `env` sub-folder under `.pulumi` (so we can reuse existing checkpoint files that were written to the old folder)
2017-10-16 21:04:35 +02:00
&stack, "stack", "s", "",
Support -s in stack {export, graph, import, output} Instead of needing you to first select the current stack to use any of these commands, allow passing `-s <stack-name>` or `--stack <stack-name>` to say what stack you want to operate on. These commands still require a `Pulumi.yaml` file to be present, which is not ideal, but would require a larger refactoring to fix. That refactoring will happen as part of #1556. Fixes #1370
2018-06-26 02:24:53 +02:00
"The name of the stack to operate on. Defaults to the current stack")
Add a --config-file option for stack ops (#2258) This option allows the user to override the file used to fetch and store configuration information for a stack. It is available for the config, destroy, logs, preview, refresh, and up commands. Note that this option is not persistent: if it is not specified, the stack's default configuration will be used. If an alternate config file is used exclusively for a stack, it must be specified to all commands that interact with that stack. This option can be used to share plaintext configuration across multiple stacks. It cannot be used to share secret configuration, as secrets are associated with a particular stack and cannot be decryptex by other stacks.
2018-12-01 00:11:05 +01:00
cmd.PersistentFlags().StringVar(
&stackConfigFile, "config-file", "",
"Use the configuration values in the specified file rather than detecting the file name")
Add the config array option to the preview command. (#3271) * Add the config array option to the preview command. * Update changelog
2019-09-26 02:45:36 +02:00
cmd.PersistentFlags().StringArrayVarP(
&configArray, "config", "c", []string{},
"Config to use during the preview")
Support lists and maps in config (#3342) This change adds support for lists and maps in config. We now allow lists/maps (and nested structures) in `Pulumi.<stack>.yaml` (or `Pulumi.<stack>.json`; yes, we currently support that). For example: ```yaml config: proj:blah: - a - b - c proj:hello: world proj:outer: inner: value proj:servers: - port: 80 ``` While such structures could be specified in the `.yaml` file manually, we support setting values in maps/lists from the command line. As always, you can specify single values with: ```shell $ pulumi config set hello world ``` Which results in the following YAML: ```yaml proj:hello world ``` And single value secrets via: ```shell $ pulumi config set --secret token shhh ``` Which results in the following YAML: ```yaml proj:token: secure: v1:VZAhuroR69FkEPTk:isKafsoZVMWA9pQayGzbWNynww== ``` Values in a list can be set from the command line using the new `--path` flag, which indicates the config key contains a path to a property in a map or list: ```shell $ pulumi config set --path names[0] a $ pulumi config set --path names[1] b $ pulumi config set --path names[2] c ``` Which results in: ```yaml proj:names - a - b - c ``` Values can be obtained similarly: ```shell $ pulumi config get --path names[1] b ``` Or setting values in a map: ```shell $ pulumi config set --path outer.inner value ``` Which results in: ```yaml proj:outer: inner: value ``` Of course, setting values in nested structures is supported: ```shell $ pulumi config set --path servers[0].port 80 ``` Which results in: ```yaml proj:servers: - port: 80 ``` If you want to include a period in the name of a property, it can be specified as: ``` $ pulumi config set --path 'nested["foo.bar"]' baz ``` Which results in: ```yaml proj:nested: foo.bar: baz ``` Examples of valid paths: - root - root.nested - 'root["nested"]' - root.double.nest - 'root["double"].nest' - 'root["double"]["nest"]' - root.array[0] - root.array[100] - root.array[0].nested - root.array[0][1].nested - root.nested.array[0].double[1] - 'root["key with \"escaped\" quotes"]' - 'root["key with a ."]' - '["root key with \"escaped\" quotes"].nested' - '["root key with a ."][100]' Note: paths that contain quotes can be surrounded by single quotes. When setting values with `--path`, if the value is `"false"` or `"true"`, it will be saved as the boolean value, and if it is convertible to an integer, it will be saved as an integer. Secure values are supported in lists/maps as well: ```shell $ pulumi config set --path --secret tokens[0] shh ``` Will result in: ```yaml proj:tokens: - secure: v1:wpZRCe36sFg1RxwG:WzPeQrCn4n+m4Ks8ps15MxvFXg== ``` Note: maps of length 1 with a key of “secure” and string value are reserved for storing secret values. Attempting to create such a value manually will result in an error: ```shell $ pulumi config set --path parent.secure foo error: "secure" key in maps of length 1 are reserved ``` **Accessing config values from the command line with JSON** ```shell $ pulumi config --json ``` Will output: ```json { "proj:hello": { "value": "world", "secret": false, "object": false }, "proj:names": { "value": "[\"a\",\"b\",\"c\"]", "secret": false, "object": true, "objectValue": [ "a", "b", "c" ] }, "proj:nested": { "value": "{\"foo.bar\":\"baz\"}", "secret": false, "object": true, "objectValue": { "foo.bar": "baz" } }, "proj:outer": { "value": "{\"inner\":\"value\"}", "secret": false, "object": true, "objectValue": { "inner": "value" } }, "proj:servers": { "value": "[{\"port\":80}]", "secret": false, "object": true, "objectValue": [ { "port": 80 } ] }, "proj:token": { "secret": true, "object": false }, "proj:tokens": { "secret": true, "object": true } } ``` If the value is a map or list, `"object"` will be `true`. `"value"` will contain the object as serialized JSON and a new `"objectValue"` property will be available containing the value of the object. If the object contains any secret values, `"secret"` will be `true`, and just like with scalar values, the value will not be outputted unless `--show-secrets` is specified. **Accessing config values from Pulumi programs** Map/list values are available to Pulumi programs as serialized JSON, so the existing `getObject`/`requireObject`/`getSecretObject`/`requireSecretObject` functions can be used to retrieve such values, e.g.: ```typescript import * as pulumi from "@pulumi/pulumi"; interface Server { port: number; } const config = new pulumi.Config(); const names = config.requireObject<string[]>("names"); for (const n of names) { console.log(n); } const servers = config.requireObject<Server[]>("servers"); for (const s of servers) { console.log(s.port); } ```
2019-11-01 21:41:27 +01:00
cmd.PersistentFlags().BoolVar(
&configPath, "config-path", false,
"Config keys contain a path to a property in a map or list to set")
Surface update options to the service (#806) This PR surfaces the configuration options available to updates, previews, and destroys to the Pulumi Service. As part of this I refactored the options to unify them into a single `engine.UpdateOptions`, since they were all overlapping to various degrees. With this PR we are adding several new flags to commands, e.g. `--summary` was not available on `pulumi destroy`. There are also a few minor breaking changes. - `pulumi destroy --preview` is now `pulumi destroy --dry-run` (to match the actual name of the field). - The default behavior for "--color" is now `Always`. Previously it was `Always` or `Never` based on the value of a `--debug` flag. (You can specify `--color always` or `--color never` to get the exact behavior.) Fixes #515, and cleans up the code making some other features slightly easier to add.
2018-01-18 20:10:15 +01:00
Bring back preview, swizzle some flags This changes the CLI interface in a few ways: * `pulumi preview` is back! The alternative of saying `pulumi update --preview` just felt awkward, and it's a common operation to want to perform. Let's just make it work. * There are two flags consistent across all update commands, `update`, `refresh`, and `destroy`: - `--skip-preview` will skip the preview step. Note that this does *not* skip the prompt to confirm that you'd like to proceed. Indeed, it will still prompt, with a little warning text about the fact that the preview has been skipped. * `--yes` will auto-approve the updates. This lands us in a simpler and more intuitive spot for common scenarios.
2018-05-05 20:57:09 +02:00
cmd.PersistentFlags().StringVarP(
&message, "message", "m", "",
"Optional message to associate with the preview operation")
Bring `pulumi preview` in-line with `pulumi up` (#3675) Adds support to `pulumi preview` to match `pulumi up` for: * `refresh` * `target` * `replace` * `target-replace` * `target-dependents` Fixes #3674.
2019-12-17 22:31:12 +01:00
cmd.PersistentFlags().StringArrayVarP(
&targets, "target", "t", []string{},
"Specify a single resource URN to update. Other resources will not be updated."+
" Multiple resources can be specified using --target urn1 --target urn2")
cmd.PersistentFlags().StringArrayVar(
&replaces, "replace", []string{},
"Specify resources to replace. Multiple resources can be specified using --replace run1 --replace urn2")
cmd.PersistentFlags().StringArrayVar(
&targetReplaces, "target-replace", []string{},
"Specify a single resource URN to replace. Other resources will not be updated."+
" Shorthand for --target urn --replace urn.")
cmd.PersistentFlags().BoolVar(
&targetDependents, "target-dependents", false,
"Allows updating of dependent targets discovered but not specified in --target list")
Surface update options to the service (#806) This PR surfaces the configuration options available to updates, previews, and destroys to the Pulumi Service. As part of this I refactored the options to unify them into a single `engine.UpdateOptions`, since they were all overlapping to various degrees. With this PR we are adding several new flags to commands, e.g. `--summary` was not available on `pulumi destroy`. There are also a few minor breaking changes. - `pulumi destroy --preview` is now `pulumi destroy --dry-run` (to match the actual name of the field). - The default behavior for "--color" is now `Always`. Previously it was `Always` or `Never` based on the value of a `--debug` flag. (You can specify `--color always` or `--color never` to get the exact behavior.) Fixes #515, and cleans up the code making some other features slightly easier to add.
2018-01-18 20:10:15 +01:00
// Flags for engine.UpdateOptions.
Don't mark policy and watch commands as experimental (#4001)
2020-03-02 23:23:40 +01:00
cmd.PersistentFlags().StringSliceVar(
&policyPackPaths, "policy-pack", []string{},
"[PREVIEW] Run one or more policy packs as part of this update")
Initial support for configuring policies (#4015)
2020-03-08 22:11:55 +01:00
cmd.PersistentFlags().StringSliceVar(
&policyPackConfigPaths, "policy-pack-config", []string{},
`[PREVIEW] Path to JSON file containing the config for the policy pack of the corresponding "--policy-pack" flag`)
Implement a refresh command This change implements a `pulumi refresh` command. It operates a bit like `pulumi update`, and friends, in that it supports `--preview` and `--diff`, along with the usual flags, and will update your checkpoint. It works through substitution of the deploy.Source abstraction, which generates a sequence of resource registration events. This new deploy.RefreshSource takes in a prior checkpoint and will walk it, refreshing the state via the associated resource providers by invoking Read for each resource encountered, and merging the resulting state with the prior checkpoint, to yield a new resource.Goal state. This state is then fed through the engine in the usual ways with a few minor caveats: namely, although the engine must generate steps for the logical operations (permitting us to get nice summaries, progress, and diffs), it mustn't actually carry them out because the state being imported already reflects reality (a deleted resource has *already* been deleted, so of course the engine need not perform the deletion). The diffing logic also needs to know how to treat the case of refresh slightly differently, because we are going to be diffing outputs and not inputs. Note that support for managed stacks is not yet complete, since that requires updates to the service to support a refresh endpoint. That will be coming soon ...
2018-04-10 20:22:39 +02:00
cmd.PersistentFlags().BoolVar(
&diffDisplay, "diff", false,
"Display operation as a rich diff showing the overall change")
Add a --json flag to the preview command This change adds a --json flag to the preview command, enabling basic JSON serialization of preview plans. This effectively flattens the engine event stream into a preview structure that contains a list of steps, diagnostics, and summary information. Each step contains the deep serialization of resource state, in addition to metadata about the step, such as what kind of operation it entails. This is a partial implementation of pulumi/pulumi#2390. In particular, we only support --json on the `preview` command itself, and not `up`, meaning that it isn't possible to serialize the result of an actual deployment yet (thereby limiting what you can do with outputs, etc).
2019-04-20 22:34:58 +02:00
cmd.Flags().BoolVarP(
&jsonDisplay, "json", "j", false,
"Serialize the preview diffs, operations, and overall output as JSON")
Switch to a --parallel=P flag This change flips the polarity on parallelism: rather than having a --serialize flag, we will have a --parallel=P flag, and by default we will shut off parallelism. We aren't benefiting from it at the moment (until we implement pulumi/pulumi-fabric#106), and there are more hidden dependencies in places like AWS Lambdas and Permissions than I had realized. We may revisit the default, but this allows us to bite off the messiness of dependsOn only when we benefit from it. And in any case, the --parallel=P capability will be useful.
2017-09-17 17:10:46 +02:00
cmd.PersistentFlags().IntVarP(
Run `up` automatically at the end of `new` (#1808) We already walk through creating a stack and prompting for required config, and then tell the user to run `pulumi up` to do an initial deployment. Instead, just proceed with the `up` automatically.
2018-08-28 01:41:20 +02:00
&parallel, "parallel", "p", defaultParallel,
Use math.MaxInt32 to signal unbounded parallelism Downlevel versions of the Pulumi Node SDK assumed that a parallelism level of zero implied serial execution, which current CLIs use to signal unbounded parallelism. This commit works around the downlevel issue by using math.MaxInt32 to signal unbounded parallelism.
2018-10-29 18:24:04 +01:00
"Allow P resource operations to run in parallel at once (1 for no parallelism). Defaults to unbounded.")
Bring `pulumi preview` in-line with `pulumi up` (#3675) Adds support to `pulumi preview` to match `pulumi up` for: * `refresh` * `target` * `replace` * `target-replace` * `target-dependents` Fixes #3674.
2019-12-17 22:31:12 +01:00
cmd.PersistentFlags().BoolVarP(
&refresh, "refresh", "r", false,
"Refresh the state of the stack's resources before this update")
Add a `plan` command; move `env destroy` to just `destroy` This change adds a `coco plan` command which is simply a shortcut to the more verbose `coco deploy --dry-run`. This will make demos flow nicer and elevates planning, an important activity, to a more prominent position. The `--dry-run` (aka `-n`) flag is still there. This change also renames `coco env destroy` to just `coco destroy`. This is consistent with deploy and plan being at the top-level. We now use `coco env` purely for evironment management commands (init, config, rm, etc).
2017-03-15 23:40:06 +01:00
cmd.PersistentFlags().BoolVar(
&showConfig, "show-config", false,
"Show configuration keys and variables")
Implement `get` functions on all resources This change implements the `get` function for resources. Per pulumi/lumi#83, this allows Lumi scripts to actually read from the target environment. For example, we can now look up a SecurityGroup from its ARN: let group = aws.ec2.SecurityGroup.get( "arn:aws:ec2:us-west-2:153052954103:security-group:sg-02150d79"); The returned object is a fully functional resource object. So, we can then link it up with an EC2 instance, for example, in the usual ways: let instance = new aws.ec2.Instance(..., { securityGroups: [ group ], }); This didn't require any changes to the RPC or provider model, since we already implement the Get function. There are a few loose ends; two are short term: 1) URNs are not rehydrated. 2) Query is not yet implemented. One is mid-term: 3) We probably want a URN-based lookup function. But we will likely wait until we tackle pulumi/lumi#109 before adding this. And one is long term (and subtle): 4) These amount to I/O and are not repeatable! A change in the target environment may cause a script to generate a different plan intermittently. Most likely we want to apply a different kind of deployment "policy" for such scripts. These are inching towards the scripting model of pulumi/lumi#121, which is an entirely different beast than the repeatable immutable infrastructure deployments. Finally, it is worth noting that with this, we have some of the fundamental underpinnings required to finally tackle "inference" (pulumi/lumi#142).
2017-06-20 02:24:00 +02:00
cmd.PersistentFlags().BoolVar(
Prettify the CLI in a few places This changes a few things in the CLI, mostly just prettying it up: * Label all steps more clearly with the kind of step. Also unify the way we present this during planning and deployment. * Summarize the changes that *did not* get made just as clearly as those that did. In other words, stuff like this: info: 2 resources changed: +1 resource created -1 resource deleted 5 resources unchanged and info: no resources required 5 resources unchanged * Always print output properties when they are pertinent. This includes creates, replacements, and updates. * Show replacement creates and deletes very distinctly. The create parts show up minty green and the delete parts show up rosey red. These are the "physical" steps, compared to the "logical" step of replacement (which remains marigold). I still don't love where we are here. The asymmetry between planning and deployment bugs me, and could be surprising. ("Hey, my deploy doesn't look like my plan!") I don't know what developers will want to see here and I feel like in general we are spewing far too much into the CLI to make it even useful for anything but diagnosing failures afterwards. I propose that we should do a deep dive on this during the CLI epic, pulumi/pulumi-service#2. This resolves pulumi/pulumi-fabric#305.
2017-08-06 19:05:51 +02:00
&showReplacementSteps, "show-replacement-steps", false,
"Show detailed resource replacement creates and deletes instead of a single step")
Color 'reads' as cyan so they don't look like 'creates'. (#3236)
2019-09-18 18:49:13 +02:00
Add a `plan` command; move `env destroy` to just `destroy` This change adds a `coco plan` command which is simply a shortcut to the more verbose `coco deploy --dry-run`. This will make demos flow nicer and elevates planning, an important activity, to a more prominent position. The `--dry-run` (aka `-n`) flag is still there. This change also renames `coco env destroy` to just `coco destroy`. This is consistent with deploy and plan being at the top-level. We now use `coco env` purely for evironment management commands (init, config, rm, etc).
2017-03-15 23:40:06 +01:00
cmd.PersistentFlags().BoolVar(
Introduce an OpSame planning step This change introduces an OpSame planning step. The reason we need this is so that we can apply the necessary output properties, including the ID, even as we are simply walking the plan (i.e., when we aren't actually performing a deployment). This ensures that the object state evolves as required to let reads of output properties propagate in the ways necessary to reproduce past executions of the program.
2017-06-11 17:09:20 +02:00
&showSames, "show-sames", false,
Add a `plan` command; move `env destroy` to just `destroy` This change adds a `coco plan` command which is simply a shortcut to the more verbose `coco deploy --dry-run`. This will make demos flow nicer and elevates planning, an important activity, to a more prominent position. The `--dry-run` (aka `-n`) flag is still there. This change also renames `coco env destroy` to just `coco destroy`. This is consistent with deploy and plan being at the top-level. We now use `coco env` purely for evironment management commands (init, config, rm, etc).
2017-03-15 23:40:06 +01:00
"Show resources that needn't be updated because they haven't changed, alongside those that do")
Color 'reads' as cyan so they don't look like 'creates'. (#3236)
2019-09-18 18:49:13 +02:00
cmd.PersistentFlags().BoolVar(
&showReads, "show-reads", false,
"Show resources that are being read in, alongside those being managed directly in the stack")
Add an option to suppress displaying stack outputs (#2029) This adds an option, --suppress-outputs, to many commands, to avoid printing stack outputs for stacks that might contain sensitive information in their outputs (like key material, and whatnot). Fixes pulumi/pulumi#2028.
2018-10-06 23:13:02 +02:00
cmd.PersistentFlags().BoolVar(
&suppressOutputs, "suppress-outputs", false,
"Suppress display of stack outputs (in case they contain sensitive values)")
Add a `plan` command; move `env destroy` to just `destroy` This change adds a `coco plan` command which is simply a shortcut to the more verbose `coco deploy --dry-run`. This will make demos flow nicer and elevates planning, an important activity, to a more prominent position. The `--dry-run` (aka `-n`) flag is still there. This change also renames `coco env destroy` to just `coco destroy`. This is consistent with deploy and plan being at the top-level. We now use `coco env` purely for evironment management commands (init, config, rm, etc).
2017-03-15 23:40:06 +01:00
Expose update events to ExtraRuntimeValidation. (#3160) * Add the ability to log all engine events to a file. The path to the file can be specified using the `--event-log` flag to the CLI. The file will be truncated if it exists. Events are written as a list of JSON values using the schema described by `pkg/apitype`. * Expose update engine events to ExtraRuntimeValidation. Just what it says on the tin. Events from previews are not exposed.
2019-09-07 02:07:54 +02:00
if hasDebugCommands() {
cmd.PersistentFlags().StringVar(
&eventLogPath, "event-log", "",
"Log events to a file at this path")
}
Add a `plan` command; move `env destroy` to just `destroy` This change adds a `coco plan` command which is simply a shortcut to the more verbose `coco deploy --dry-run`. This will make demos flow nicer and elevates planning, an important activity, to a more prominent position. The `--dry-run` (aka `-n`) flag is still there. This change also renames `coco env destroy` to just `coco destroy`. This is consistent with deploy and plan being at the top-level. We now use `coco env` purely for evironment management commands (init, config, rm, etc).
2017-03-15 23:40:06 +01:00
return cmd
}
Reference in a new issue Copy permalink