Provision python dictionary as Azure KeyVault secret value

gsmiljanic · May 13, 2024, 1:48pm

Hi.
I want to provision AzureKeyVault resource where value is python dictionary with information about Kafka access. I have prepared some default values e.g. kafka url, user, etc. and I need to add specific value from another data resource (in this case DataConfluentIdentityPool).

Here is a pseudocode I’ve tried to play with

value_data = {"kafka_url": "http://fake.com:9090", "user": "fake_user"}

for name, kv_id in names.items():
    KeyVaultSecret(scope=scope,
                   provider=provider,
                   id_=f"{name}-connections",
                   key_vault_id=kv_id,
                   name=f"{name}-connections",
                   value=Fn.merge([
                       value_data,
                       f"${{kafka-identity-pool: {identity_objects.fqn}[\"{name}\"].id}}"
                   ]))

When try to run this code, I’m getting error message

You're using escape sequences (${...}) with CDKTF Built-in functions. This is not supported yet, and the output may be incorrect.

Does anyone have idea how to update map (dictionary) with custom data and provision it in python and cdktf?

Thank you

gsmiljanic · May 14, 2024, 9:31am

Actually,

I’ve found workaround. I managed to get it working with the TF code:

...
value=f"merge({json.dumps(value_data)}, {{\"kafka-pool-id\":\"${{{identity_objects.fqn}[\"{client_name}\"].id}}\"}})"
...

This solution should work for now.

Topic		Replies	Views
Importing resources? CDK for Terraform	2	818	August 11, 2020
Terraform import CDK for Terraform	2	950	August 11, 2020
Read manually created Azure KeyVault Secret CDK for Terraform	2	541	October 28, 2022
Get current user object ID in CDKTF CDK for Terraform azure	0	10	October 29, 2024
How to create and use ServiceAccounts in python code CDK for Terraform	2	339	February 23, 2023

Provision python dictionary as Azure KeyVault secret value

Related topics