[英]cycle error when creating terraform code for sqs and its access policy
我嘗試創建 sqs 隊列並將訪問策略附加到它,策略是“數據”類型 - 沒有創建實際資源,它只是附加到新創建的 sqs 隊列。
╷
│ Error: Cycle: data.aws_iam_policy_document.sqs_vote_policy, aws_sqs_queue.sqs_vote
│
tf 代碼:
resource "aws_sqs_queue" "sqs_vote" {
name = "sqs-erjan"
delay_seconds = 0
message_retention_seconds = 86400
receive_wait_time_seconds = 0
policy = data.aws_iam_policy_document.sqs_vote_policy.json
}
data "aws_iam_policy_document" "sqs_vote_policy" {
policy_id = "__default_policy_ID"
statement {
sid = "__console_sub_0"
actions = ["SQS:SendMessage"]
resources = [aws_sqs_queue.sqs_vote.arn]
principals {
type = "AWS"
identifiers = ["*"]
}
effect = "Allow"
condition {
test = "ArnLike"
variable = "AWS:SourceArn"
values = [
aws_sns_topic.vote_sns.arn
]
}
}
statement {
sid = "__owner_statement"
actions = ["SQS:*"]
resources = [aws_sqs_queue.sqs_vote.arn]
principals {
type = "arn:aws:iam::025416187662:root"
identifiers = ["*"]
}
effect = "Allow"
}
# i put depends on to make sure it runs first - but it still gives cycle error
depends_on = [
aws_sqs_queue.sqs_vote,aws_sns_topic.vote_sns
]
}
如何解決?
aws_sqs_queue更改為:
resource "aws_sqs_queue" "sqs_vote" {
name = "sqs-erjan"
delay_seconds = 0
message_retention_seconds = 86400
receive_wait_time_seconds = 0
}
並使用aws_sqs_queue_policy將策略附加到隊列:
resource "aws_sqs_queue_policy" "test" {
queue_url = aws_sqs_queue.sqs_vote.id
policy = data.aws_iam_policy_document.sqs_vote_policy.json
}
使用 terraform 在 GCP 中創建雲功能錯誤警報策略
[英]Creating a cloud-function error alerting policy in GCP with terraform
如何修復 MalformedPolicyDocument:使用 terraform 時生成的策略中的語法錯誤
[英]How to fix MalformedPolicyDocument: syntax error in policy generated when use terraform
使用 boto3 創建 S3 生命周期策略時出現格式錯誤的 XML 錯誤
[英]Malformed XML error while creating the S3 life cycle policy using boto3
使用 Eventarc 創建一個目標為雲函數的 terraform
[英]Creating a terraform with Eventarc with its destination to cloud function
使用 terraform 創建多個實例和一個網絡接口時出錯
[英]Error when creating multiple instances and one network interface using terraform
Terraform 錯誤:錯誤:創建 Su.net:原始錯誤:代碼 =“NetcfgInvalidSu.net”消息 =“Su.net'內部'在 virtual.network 中無效
[英]Terraform error: Error: creating Subnet: Original Error: Code="NetcfgInvalidSubnet" Message="Subnet 'internal' is not valid in virtual network
terraform 錯誤:周期:data.azurerm_key_vault_secret
[英]terraform Error: Cycle: data.azurerm_key_vault_secret
Terraform 使用專用端點創建 function 應用程序和存儲帳戶時出現 403 錯誤
[英]Terraform 403 error when creating function app and storage account with private endpoint
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.