Managing Secrets with Pulumi

Posted by Matt Ellis on May 17, 2019 2:30:15 PM

We’ve had a 1st class concept of encrypted secrets configuration ever since first releasing Pulumi. Customers have told us they love having such a simple and easy way to ensure safe management of tokens, database passwords, and more. Since launching, however, we’ve also heard that you’d like more control over encryption and to see this protection expanded to cover not just configuration, but all of the secret data within their Pulumi deployments.

Read More

Topics: Features, Security

Pulumi and Docker: Development to Production

Posted by Sean Gillespie on May 15, 2019 1:53:19 PM
Here at Pulumi, we’re big fans of Docker: at this point there is little doubt that Docker has completely revolutionized the way that we think about deploying software. However, even in 2019, it’s quite difficult to get Docker containers to production. docker run is great, and we all love it, but unfortunately it’s quite a big leap from docker run to running your container in a production-ready environment. We recently wrote a blog post about using AWS Fargate to run your docker containers with our open source packages. In this blog post we’re going to focus on another interesting aspect of Pulumi: being able to re-use your infrastructure code for both development and production!
Read More

Topics: Containers, Kubernetes, Docker

Create AKS Clusters with monitoring and logging using Pulumi-Azure open source SDKs

Posted by Nishi Davidson on May 8, 2019 4:13:24 PM


Pulumi-Azure open source package can be used to create Azure Kubernetes Service (AKS) clusters with AD service principals tied to the cluster. Monitoring and logging can also be enabled by default in simple steps with Pulumi for core AKS components. This article will show you how to write this as a simple example using Pulumi SDKs.

Read More

Topics: Kubernetes, Azure

Serverless as Simple Callbacks with Pulumi and Azure Functions

Posted by Mikhail Shilkov on May 7, 2019 1:00:00 PM

Today's guest post is from Mikhail Shilkov, a Microsoft Azure MVP and early Pulumi user and contributor - enjoy!

Serverless compute services, like Azure Functions, offer an amazing power to application developers to leverage: highly available, automatically scaled, low-ceremony, pay-per-value functions created in several lines of code.

So, what’s the simplest way to take a Node.js function and deploy it to Azure cloud as an HTTP endpoint? How about this little tutorial:

Read More

Topics: Serverless, Azure

CI/CD Made Easy With Pulumi And Azure Pipelines

Posted by Praneet Loke on May 6, 2019 3:45:37 PM
Azure DevOps is very popular among teams that want a single place to manage their development pipelines, Git repositories, builds, releases, and test plans. Pulumi's open-source tools are a great choice for developers and operators deploying infrastructure as code on Azure. With these two tools at hand, adopting CI and CD for your Azure infrastructure is just a few steps away for you and your teams. 

To make it easy to use Pulumi with Azure, we are announcing an open-source task extension for Azure Pipelines! The task extension will manage the installation of the Pulumi CLI, and run the  Pulumi commands you specify against your stack.

You can install the task extension directly from the Visual Studio Marketplace. Click the  “Get It Free” button to install the extension into your Azure DevOps organization. If you do not have the permissions to add it to your organization, please contact your org admin to have the extension installed. The source code for the open source task extension can be found on GitHub.
Read More

Topics: Azure, CICD

Level up your Azure Platform as a Service applications with Pulumi

Posted by Mikhail Shilkov on May 6, 2019 9:50:20 AM

Today's guest post is from Mikhail Shilkov, a Microsoft Azure MVP and early Pulumi user and contributor - enjoy!

Today I want to guide you through the process of developing Pulumi programs to leverage Azure Platform-as-a-Service (PaaS) services. My language of choice is TypeScript—a powerful and expressive typed language, which is very familiar to many Azure users.

Read More

Topics: Infrastructure, Azure

Get Started with Docker on AWS Fargate using Pulumi

Posted by Joe Duffy on Apr 30, 2019 11:44:46 AM

The Docker Getting Started tutorial shows how to develop, build, and run a modern containerized application, from a single custom Docker container published to the Docker Hub, to a scaled out service with load balancing. But there are challenges: it requires you to program in YAML, run (or script) many CLI commands, and manage your own Swarm or Kubernetes cluster. There is an easier way. By using Pulumi’s infrastructure as code, we can build a custom Docker image, publish it to a private AWS container registry, and spin up an AWS Fargate load balanced service running that container, all in 28 lines of TypeScript code and a single pulumi up command. The result leverages the best of what AWS has to offer, with the entire platform at your fingertips, with a single approach. In this article, we’ll see how.

Read More

Topics: JavaScript, AWS, Containers, Infrastructure, TypeScript

Simplify Kubernetes RBAC in Amazon EKS with open source Pulumi packages

Posted by Nishi Davidson on Apr 25, 2019 2:15:00 PM
One of the most common areas Kubernetes operators struggle with in production involves creating and managing role-based access control (RBAC). This is so daunting that RBAC is often not implemented, or implemented halfway, or the configuration becomes impossible to maintain. In this post, we will contrast the traditional way of working with RBAC on EKS with using Pulumi — Pulumi makes RBAC on Kubernetes so easy that you’ll never create an insecure cluster again!
Read More

Topics: AWS, Kubernetes, TypeScript, EKS

Protecting Your APIs with Lambda Authorizers and Pulumi

Posted by Erin Krengel on Apr 24, 2019 3:20:39 PM
Creating serverless applications just got even easier! You can now protect your application APIs in just three easy steps. We’ve already talked a bit about how Pulumi allows you to effortlessly create serverless apps. Now, we’re helping you simplify protecting those apps with API Gateway and Lambda authorizers.

With Pulumi’s AWSX package, you can quickly define a Lambda and an AWS Lambda authorizer to protect it. We’re once again harnessing the power of Lambdas as Lambdas to allow developers to focus on writing code.

Read More

Topics: Serverless, AWS, Lambda, Auth, API Gateway

Announcing Per User Pricing and Unlimited Stacks for Teams

Posted by Joe Duffy on Apr 19, 2019 2:58:38 PM
Since launching last year, thousands of users and hundreds of companies, from startups to Fortune 500 Enterprises, have chosen Pulumi for cloud applications and infrastructure delivery across AWS, Azure, Google Cloud, and Kubernetes. Today we are announcing important changes to better align our product and pricing with how we’ve heard you want to use Pulumi in production. We’re optimistic that these changes will help companies of all sizes choose Pulumi, enabling their teams to deliver cloud applications and infrastructure faster and more reliably.

The net result is three paid editions:
  • Team Starter Edition: for teams just getting started with Pulumi
  • Team Pro Edition: for medium to large teams using Pulumi at scale
  • Enterprise Edition: for large organizations using Pulumi with advanced needs

Pulumi Community Edition remains unchanged, and is free for unlimited individual use.

Read More

Topics: Customer