EronWright
commented
1 month ago Note also that the CSA-to-SSA migration logic doesn't take effect during a preview, and this may lead to spurious "conflict" messages during preview.
Open rquitales opened 5 months ago
EronWright
commented
1 month ago Note also that the CSA-to-SSA migration logic doesn't take effect during a preview, and this may lead to spurious "conflict" messages during preview.
What happened?
https://www.pulumi.com/registry/packages/kubernetes/how-to-guides/managing-resources-with-server-side-apply/#prerequisites
The above documentation implies that a provider with SSA enabled will always perform an input diff (which is what's done for a provider configured to use CSA). This is incorrect as a SSA enabled provider will always perform a server-side dry-run for preview. The following are scenarios of when client-side or server-side dry-run is used:
Server-side dry-run:
enableServerSideApplyset totrueClient-side dry-run (ie. input diff);
enableServerSideApplyset tofalseenableServerSideApplyset totrueAND server-side dry-run fails due to lack ofPATCHpermissionsExample
-
Output of
pulumi about-
Additional context
No response
Contributing
Vote on this issue by adding a 👍 reaction. To contribute a fix for this issue, leave a comment (and link to your pull request, if you've opened one already).