Pulumi
Pulumi Provider
Install and configure the DevZero Pulumi provider for TypeScript, Python, and Go.
Pulumi Provider
DevZero has a native Pulumi provider for managing clusters, workload policies, and node policies as infrastructure-as-code. The provider is available for TypeScript, Python, and Go.
| Package | Language | Registry |
|---|---|---|
@devzero/pulumi-devzero | TypeScript | npm |
pulumi-devzero | Python | PyPI |
github.com/devzero-inc/pulumi-provider-devzero/sdk/go/devzero | Go | Go modules |
Installation
npm install @devzero/pulumi-devzeropip install pulumi-devzerogo get github.com/devzero-inc/pulumi-provider-devzero/sdk/go/devzeroConfiguration
Set the following configuration values in your Pulumi stack:
pulumi config set devzero:url https://dakr.devzero.io
pulumi config set devzero:token <your-pat-token> --secret
pulumi config set devzero:teamId <your-team-id>| Config Key | Description | Where to Find |
|---|---|---|
devzero:url | DevZero API url | Default: https://dakr.devzero.io |
devzero:token | Personal access token | User Settings |
devzero:teamId | Your team ID | Organization Settings |
Always use the --secret flag when setting your token to ensure it is encrypted in the stack state.
Quick Example
This program creates a cluster, attaches a workload policy to it, and exports the cluster ID:
import * as pulumi from "@pulumi/pulumi";
import { resources, types } from "@devzero/pulumi-devzero";
// Register a cluster
const cluster = new resources.Cluster("my-cluster", {
name: "production-cluster",
});
// Create a workload policy
const policy = new resources.WorkloadPolicy("default-policy", {
name: "default-policy",
description: "Standard rightsizing policy",
cpuVerticalScaling: {
enabled: true,
targetPercentile: 0.95,
minRequest: 100,
maxRequest: 4000,
overheadMultiplier: 1.1,
limitsAdjustmentEnabled: true,
limitMultiplier: 2.0,
},
actionTriggers: ["on_detection"],
detectionTriggers: ["pod_creation", "pod_update"],
});
// Attach the policy to the cluster
const target = new resources.WorkloadPolicyTarget("default-target", {
name: "default-target",
policyId: policy.id,
clusterIds: [cluster.id],
enabled: true,
});
export const clusterId = cluster.id;
export const clusterToken = pulumi.secret(cluster.token);import pulumi
from pulumi_devzero.resources import (
Cluster, ClusterArgs,
WorkloadPolicy, WorkloadPolicyArgs,
WorkloadPolicyTarget, WorkloadPolicyTargetArgs,
)
from pulumi_devzero.resources.types import VerticalScalingArgs
# Register a cluster
cluster = Cluster("my-cluster", args=ClusterArgs(
name="production-cluster",
))
# Create a workload policy
policy = WorkloadPolicy("default-policy", args=WorkloadPolicyArgs(
name="default-policy",
description="Standard rightsizing policy",
cpu_vertical_scaling=VerticalScalingArgs(
enabled=True,
target_percentile=0.95,
min_request=100,
max_request=4000,
overhead_multiplier=1.1,
limits_adjustment_enabled=True,
limit_multiplier=2.0,
),
action_triggers=["on_detection"],
detection_triggers=["pod_creation", "pod_update"],
))
# Attach the policy to the cluster
target = WorkloadPolicyTarget("default-target", args=WorkloadPolicyTargetArgs(
name="default-target",
policy_id=policy.id,
cluster_ids=[cluster.id],
enabled=True,
))
pulumi.export("cluster_id", cluster.id)
pulumi.export("cluster_token", pulumi.Output.secret(cluster.token))package main
import (
"github.com/devzero-inc/pulumi-provider-devzero/sdk/go/devzero/resources"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
// Register a cluster
cluster, err := resources.NewCluster(ctx, "my-cluster", &resources.ClusterArgs{
Name: pulumi.String("production-cluster"),
})
if err != nil {
return err
}
// Create a workload policy
policy, err := resources.NewWorkloadPolicy(ctx, "default-policy", &resources.WorkloadPolicyArgs{
Name: pulumi.String("default-policy"),
Description: pulumi.StringPtr("Standard rightsizing policy"),
CpuVerticalScaling: resources.VerticalScalingArgsArgs{
Enabled: pulumi.BoolPtr(true),
TargetPercentile: pulumi.Float64Ptr(0.95),
MinRequest: pulumi.IntPtr(100),
MaxRequest: pulumi.IntPtr(4000),
OverheadMultiplier: pulumi.Float64Ptr(1.1),
LimitsAdjustmentEnabled: pulumi.BoolPtr(true),
LimitMultiplier: pulumi.Float64Ptr(2.0),
}.ToVerticalScalingArgsPtrOutput(),
})
if err != nil {
return err
}
// Attach the policy to the cluster
_, err = resources.NewWorkloadPolicyTarget(ctx, "default-target", &resources.WorkloadPolicyTargetArgs{
Name: pulumi.String("default-target"),
PolicyId: policy.ID(),
ClusterIds: pulumi.StringArray{cluster.ID()},
Enabled: pulumi.BoolPtr(true),
})
if err != nil {
return err
}
ctx.Export("clusterId", cluster.ID())
ctx.Export("clusterToken", cluster.Token)
return nil
})
}Resources
The provider manages the following resources:
- Clusters -- register Kubernetes clusters with DevZero
- Workload Policies -- configure workload rightsizing rules and attach them to clusters
- Node Policies -- configure Karpenter-based node provisioning
For Go or other languages without native provider support, you can also use the Terraform Bridge to generate SDK bindings from the DevZero Terraform provider.