[英]Accessing AWS Elasticsearch from Lambda Function
我正在尝试从 Lambda function 访问我的 AWS Elasticsearch。
使用无服务器框架和基于 IP 的访问策略,我已经能够在本地实现这一点。
For the deployed lambda function I tried using the ARN of the Lambda Function Role and the ARN of the Lambda function (the one on the top right when viewing the function in the console) in my access policy.
可悲的是我仍然收到以下错误: User: anonymous is not authorized to perform: es:ESHttpPost
这是我的 AWS 访问策略:
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Principal": {
"AWS": "arn-of-lambda-function-role"
},
"Action": "es:*",
"Resource": "my-resource-arn"
},
{
"Effect": "Allow",
"Principal": {
"AWS": "*"
},
"Action": "es:*",
"Resource": "my-resource-arn",
"Condition": {
"IpAddress": {
"aws:SourceIp": "my-ip"
}
}
}
]
}
您是否正在签署对 ES 实例的请求? 根据https://docs.aws.amazon.com/elasticsearch-service/latest/developerguide/es-ac.html#es-managedomains-signing-service-requests
要调用 Elasticsearch API,您必须签署自己的请求。
使用无服务器框架时从 AWS Lambda 函数连接 AWS ElasticSearch 实例时出错
[英]Error connecting AWS ElasticSearch Instance from AWS Lambda function while using Serverless Framework
使用 aws lambda nodejs 从 SFTP 服务器访问和复制文件
[英]Accessing and Copying Files from SFTP server using aws lambda nodejs
从 lambda 使用 VPC 对等访问时出现 AWS DAX ConnectionException
[英]AWS DAX ConnectionException when accessing with VPC peering from lambda
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.