堆栈内存溢出
  简体   繁体   English

CloudFormation Lambda S3存储桶访问被拒绝

[英]CloudFormation Lambda S3 bucket access denied

 原文  2018-06-06 08:54:29       amazon-web-services/ amazon-s3/ aws-lambda/ amazon-cloudformation

问题描述

In my CloudFormation template I have a lambda whose code lives on S3: 在我的CloudFormation模板中,我有一个lambda,其代码位于S3上: 

MyLambda:
  Properties:
    Code:
      S3Bucket: bucket-name
      S3Key: filename.zip
  Handler: handler
  MemorySize: !Ref 'LambdaMemorySize'
  Role: arn:aws:iam::XXXXXXXXXXX:role/my-role
  Runtime: python3.6
  Timeout: !Ref 'LambdaTimeout'
Type: AWS::Lambda::Function

If I run this from the AWS console, then it works fine. 如果我从AWS控制台运行此程序,则它可以正常工作。 However, when I run this from the AWS CLI (or boto) then it doesn't work, so I guess there must be something missing from my user's credentials that's stopping this working. 但是,当我从AWS CLI(或boto)运行此程序时,它不起作用,因此我猜我的用户凭证中肯定缺少某些东西,这阻止了此工作。 However my IAM user has administrator access: 但是,我的IAM用户具有管理员访问权限: 

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": "*",
            "Resource": "*"
        }
    ]
}

Error message: 错误信息: 

Your access has been denied by S3, please make sure your request credentials have permission to GetObject for bucket-name/filename.zip. 
S3 Error Code: AccessDenied. S3 Error Message: Access Denied (Service: AWSLambda; Status Code: 403; Error Code: AccessDeniedException; Request ID: xxxxx)

1 个解决方案

解决方案1
 0  2018-06-06 13:32:57

事实证明,这是由于参加IP白名单的小组的一部分-删除该问题即可解决。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 CloudFormation,Lambda,S3-s3拒绝访问 - CloudFormation, Lambda, S3 - Access denied by s3 S3存储桶中的访问被拒绝 - Access Denied in S3 Bucket Cloudformation:API:s3:CreateBucket 访问被拒绝 - Cloudformation: API: s3:CreateBucket Access Denied 在cloudformation中的s3存储桶ObjectCreated事件上执行lambda - executing lambda on s3 bucket ObjectCreated event in cloudformation Cloudformation - S3 事件上的 Lambda 触发器? (桶已经存在) - Cloudformation - Lambda Trigger on S3 Event? (Bucket Already Exists) 通过CloudFormation的AWS Lambda S3存储桶通知 - AWS Lambda S3 Bucket Notification via CloudFormation Cloud Formation:S3 bucket和Lambda的单独cloudformation模板 - Cloud Formation: separate cloudformation template of S3 bucket and Lambda 使用 cloudformation 为 S3 存储桶启用 Lambda 函数 - Enable Lambda function to an S3 bucket using cloudformation 为什么我的 lambda function 在尝试访问 S3 存储桶时访问被拒绝? - Why does my lambda function get Access Denied trying to access an S3 bucket? Terraform InvalidConfigurationRequest:S3 存储桶的访问被拒绝 - Terraform InvalidConfigurationRequest: Access denied for S3 bucket
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM