Enable preview for create and update

[corymhall]

Currently if you update a resource, all outputs are shown as computed
during preview. This means that downstream resources might show a
replacement in the plan if they are using one of those output values.

There are some outputs that we know will not change unless the resource
is replaced (I'm referring to these as "stable" outputs). For stable
outputs we can copy the value from the state in order to show an
accurate preview.

The problem is that the CCAPI schema has no way of determining
programmatically which outputs are stable and which are not. Because of
this, this PR introduces a heuristic to determine if an output is a
stable output.

• Is the value a readOnlyProperty in the schema? This indicates that
  it is a computed output property
• Is the property the resource id, arn or name? If the id, arn, or
  name is a computed property then we can assume that it is a stable
  property. I don't know of any cases where these change outside of a
  resource replacement.

This is not 100% coverage of stable properties, but it should get us
most of the impactful properties. To get close to 100% coverage we will
probably need a schema overlay where we can contribute to mapping these
stable properties for each resource.

Note: as part of this I had to add readOnly properties to metadata.json

closes #1141, re #1892

[github-actions]

Does the PR have any schema changes?

Looking good! No breaking changes found.
No new resources/functions.

[codecov]

Codecov Report

Attention: Patch coverage is 87.63441% with 23 lines in your changes missing coverage. Please review.

Project coverage is 50.37%. Comparing base (7ca5a58) to head (784e3ad).
Report is 4 commits behind head on master.

Files with missing lines	Patch %	Lines
provider/pkg/provider/provider.go	71.42%	8 Missing and 4 partials ⚠️
provider/pkg/resources/cfn_custom_resource.go	0.00%	4 Missing ⚠️
provider/pkg/resources/extension_resource.go	0.00%	4 Missing ⚠️
provider/pkg/outputs/previewOutputs.go	97.61%	2 Missing and 1 partial ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##           master    #1891      +/-   ##
==========================================
+ Coverage   49.36%   50.37%   +1.00%     
==========================================
  Files          47       48       +1     
  Lines        6814     6998     +184     
==========================================
+ Hits         3364     3525     +161     
- Misses       3206     3224      +18     
- Partials      244      249       +5     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[flostadler]

Nice!

[flostadler]

Wouldn't CFN custom resources end up in the same if statement here?
They're also custom resources.

Could we make this more explicit?

[corymhall]

Yeah maybe I should just split it into separate functions.

[corymhall]

I moved these to be methods on the CustomResource type since that seems to be the only good way of telling them apart.

[t0yv0]

Id is omitted because it's unknown?

[corymhall]

Id isn't part of the UpdateResponse

[t0yv0]

Ah. Well I meant to comment on CreateResponse. I've checked the bridge code it's a little complicated, in CreateResponse it's returning plannedState.ID() and encoding unknowns as "". This makes me suspect sometimes it can predict the ID and send it out during preview. But perhaps omitting it works just as well.

[t0yv0]

This call here is no longer addressing a resource, but a nested object type, but the naming is confusing and it's hard to be sure this always does the right thing.

[corymhall]

I can rename it to something else, but why do you think it's hard to be sure this always does the right thing?

[t0yv0]

That's a good point, I had to look at it with fresh eyes this morning, I think it's good! It does the right thing. readOnly properties are specified using paths into conforming objects, and jumping into #ref properties does the right thing. You have it tested too. I noticed some wrinkle inconsistencies that I added some more comments about but I'm comfortable with this now, thank you!

[t0yv0]

Let's discuss briefly tomorrow, are recursive cases strictly necessary - perhaps worth shipping a smaller much simpler change first to test the waters (covering ARN properties) and then extend as needed with some additional testing? Or perhaps we'll decide to ship as-is. Thanks.

[t0yv0]

This made me curious to poke at codecov. Besides the map case which is certainly interesting, there is this bit that's potentially interesting to cover:

+ 	// we can't handle arrays because we don't know which item in the array
+ 	// the value corresponds to
+ 	if isArrayProperty(propName) {
+ 		return false
+ 	}
+ 

[t0yv0]

I think there's a consistency issue with capitalization of our metadata (pre-this PR).

In CF schema, we have Dns property of "#/definitions/DnsMap" type like this:

    "DnsMap" : {
      "description" : "A map of DNS names for the AppSync API.",
      "type" : "object",
      "additionalProperties" : false,
      "properties" : {
        "Realtime" : {
          "type" : "string"
        },
        "Http" : {
          "type" : "string"
        }
      }
    },

pulumi-aws-native/aws-cloudformation-schema/aws-appsync-api.json

Line 229 in 3288f39

"Dns" : {

But in the metadata we have:

#/types/aws-native:appsync:ApiDnsMap

            "readOnly": [
                "apiArn",
                "apiId",
                "dns",
                "dns/Http",
                "dns/Realtime"
            ],


        "aws-native:appsync:ApiDnsMap": {
            "type": "object",
            "properties": {
                "http": {
                    "type": "string",
                    "description": "The domain name of the Api's HTTP endpoint."
                },
                "realtime": {
                    "type": "string",
                    "description": "The domain name of the Api's real-time endpoint."
                }
            }
        },

These are not captialized consistently. "dns/Http" and "dns/Realtime".

[t0yv0]

Ah "Note: as part of this I had to add readOnly properties to metadata.json" - that's a separate piece. Let's maybe get that in as a separate quick PR and figure out the capitalization there? Thanks a ton!

[corymhall]

This change is part of the following stack:

• Enable preview for create and update #1891 ◀

_{Change managed by git-spice.}

[t0yv0]

This branch will not consider outpusFromInputs? Why?

[corymhall]

outputsFromInputs will have all possible outputs properties because of previewResourceOutputs, so if it's a stable property and it exists in outputsFromPriorState then copy it over.

[t0yv0]

This code would read much easier to me if the argument was called newInputs and the result of the function was a separate map:

outputsFromInputs := newInputs.Copy()

[t0yv0]

Like relying on modifying the first parameter is highly unexpected.

[t0yv0]

Will this only fire up when both inputs and prior state is present? Curious if this will exclude the case when an input is present but output not.. Ah ok that may be expected because this is only working with 'stable' info propagation.

How about when a state entry is present but the input entry is not? Why will it skip this?

[corymhall]

I think I've changed my mind about a previous comment you made about this being part of previewResourceOutputs. This function is meant to only be called with the output of previewResourceOutputs so outputsFromInputs contains all the possible output properties already.

If an entry is not present in the input, but is in the prior state then it will be marked as computed (as part of the previewResourceOutputs function.

[t0yv0]

👍

[t0yv0]

👍

[t0yv0]

👍

[t0yv0]

Nice.

[t0yv0]

🚢

[flostadler]

Love it!

[flostadler]

Doesn't pulumitest auto destroy by default?

[flostadler]

Meta: Kind of frustrating that many rather basic use cases require layering aws classic on top of aws native in order to make it usable
:(

[flostadler]

Couldn't we do that by using an AssetArchive?

[flostadler]

Nice!

[flostadler]

Small nit: this should be covered by a unit ideally

[flostadler]

Nice!