How to ensure secretVersion execution after secretsSync completes?
TypeScriptAssuming you are using AWS Secrets Manager, you need to create and manage versions of your secret by using
aws.secretsmanager.Secretto create the secret andaws.secretsmanager.SecretVersionto manage its versions. The completion of the latter implies that a new secret version is available.Here is a example on how to create a secret and its version in TypeScript:
import * as pulumi from "@pulumi/pulumi"; import * as aws from "@pulumi/aws"; // Create a new secret const mySecret = new aws.secretsmanager.Secret("mySecret", {}); // Create a new version of the secret const secretVersion = new aws.secretsmanager.SecretVersion("secretVersion", { secretId: mySecret.id, secretString: "mySecretString", });In the code above:
- We first create an AWS Secrets Manager secret named
mySecretusingaws.secretsmanager.Secret. - Then, we create a new version of this secret using
aws.secretsmanager.SecretVersion, we passmySecret.idtosecretIdproperty which indicates the secret we want to add a new version to, and we also provide the secret stringmySecretStringthat represents the value of this version of the secret.
This will ensure that your
aws.secretsmanager.SecretVersionexecution (or creation in this context) happens after the creation of youraws.secretsmanager.Secretresource completes, hence implying that yoursecretsSync(which I assumed to be theaws.secretsmanager.Secretresource creation) has completed.You can refer to
aws.secretsmanager.Secretandaws.secretsmanager.SecretVersiondocumentation for more details.- We first create an AWS Secrets Manager secret named