How to ensure secretVersion execution after secretsSync completes?
TypeScriptAssuming you are using AWS Secrets Manager, you need to create and manage versions of your secret by using
aws.secretsmanager.Secret
to create the secret andaws.secretsmanager.SecretVersion
to manage its versions. The completion of the latter implies that a new secret version is available.Here is a example on how to create a secret and its version in TypeScript:
import * as pulumi from "@pulumi/pulumi"; import * as aws from "@pulumi/aws"; // Create a new secret const mySecret = new aws.secretsmanager.Secret("mySecret", {}); // Create a new version of the secret const secretVersion = new aws.secretsmanager.SecretVersion("secretVersion", { secretId: mySecret.id, secretString: "mySecretString", });
In the code above:
- We first create an AWS Secrets Manager secret named
mySecret
usingaws.secretsmanager.Secret
. - Then, we create a new version of this secret using
aws.secretsmanager.SecretVersion
, we passmySecret.id
tosecretId
property which indicates the secret we want to add a new version to, and we also provide the secret stringmySecretString
that represents the value of this version of the secret.
This will ensure that your
aws.secretsmanager.SecretVersion
execution (or creation in this context) happens after the creation of youraws.secretsmanager.Secret
resource completes, hence implying that yoursecretsSync
(which I assumed to be theaws.secretsmanager.Secret
resource creation) has completed.You can refer to
aws.secretsmanager.Secret
andaws.secretsmanager.SecretVersion
documentation for more details.- We first create an AWS Secrets Manager secret named