An error occurred (UnrecognizedClientException) when calling the GetSecretValue operation: The security token included in the request is invalid
Question
Please check below is the screenshot it is having problem. Aws credentials are configured correctly and its working fine when we use separately in boto3 but in SAM lambda function trigger it getting this error. enter image description here
tried with all solutions like checking "aws configure" & unset AWS_SECURITY_TOKEN & other solutions mentioned in other sources also tried but didn't work.
and In code am trying to do
session = boto3.session.Session()
secretsmanager = session.client('secretsmanager')
try:
get_secret_value_response = secretsmanager.get_secret_value(
SecretId=secret_name
)
secret = json.loads(get_secret_value_response['SecretString'])
except ClientError as e:
print(e)
# print(sys.exc_info(),traceback.print_exc(file=sys.stdout))
except Exception as e:
print(sys.exc_info(),traceback.print_exc(file=sys.stdout))
print(e)
3 answers
solution1
5 2020-08-20 06:40:32
Remove AWS credentials by deleting this file ~/.aws/credentials . Then re-run aws configure and pass valid security credentials. This should fix the issue that you are encountering.
If you have multiple profiles configured then edit ~/.aws/credentials and remove the profile that was used with this code.For example if you have used user1 while configuring the credentials then your file will have contents similar to below:
[default]
aws_access_key_id=AKIAIOSFODNN7EXAMPLE
aws_secret_access_key=wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY
[user1]
aws_access_key_id=AKIAI44QH8DHBEXAMPLE
aws_secret_access_key=je7MtGbClwBF/2Zp9Utk/h3yCo8nvbEXAMPLEKEY
To solve this issue simply delete [user1] section from ~/.aws/credentials then re-run aws configure .
solution2
1 2021-06-16 15:58:34
Maybe is a little different problem but I got the exactly same error locally because I set the default profile before getting the session.
So, if I run the script with:
boto3.setup_default_session(profile_name='myprofile')
session = boto3.session.Session()
secretsmanager = session.client('secretsmanager')
I got the same error as the question, probably because they didn't works well when used together.
To solve, you can just remove the session part:
boto3.setup_default_session(profile_name='myprofile')
secretsmanager = boto3.client('secretsmanager')
solution3
0 2023-02-03 15:20:12
In my case, it wasn't working because I was missing the session token. I added the token in the boto3 Session and it worked:
session = boto3.session.Session(
aws_access_key_id=AWS_ACCESS_KEY_ID,
aws_secret_access_key=AWS_SECRET_ACCESS_KEY,
aws_session_token=AWS_SESSION_TOKEN,
)
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.