search

An error occurred (accessdenied) when calling the createbucket operation: access denied

1 Jahrs vor
Kommentare: 0
Ansichten: 143

I am trying to deploy my Django project on anycodings_zappa AWS lambda using Zappa. Here is my anycodings_zappa zappa_settings.json:

{ "dev": { "aws_region": "us-west-2", "django_settings": "<project_name>.settings", "profile_name": "zappa", "project_name": "<project_name>", "runtime": "python3.6", "s3_bucket": "<s3_bucket_name>", "timeout_seconds": 900, // defaults is 30 seconds "manage_roles": false, "role_name": "ZappaDjangoRole", "role_arn": "arn:aws:iam::<account_id>:role/ZappaDjangoRole", "slim_handler": true } }

I get the error

"botocore.exceptions.ClientError: An error occurred (AccessDenied) when calling the CreateBucket operation: Access Denied"

Any idea what is causing it and how to fix anycodings_zappa this? My understanding is that Zappa zips anycodings_zappa the entire project and wants to upload it to anycodings_zappa AWS S3 bucket, but it is missing a anycodings_zappa permission when calling the CreateBucket anycodings_zappa operation. I do not understand where this anycodings_zappa permission should go.

Inside the IAM, I have created ZappaGroup anycodings_zappa which has permissions using anycodings_zappa ZappaUserGeneralPolicy and anycodings_zappa ZappaUserS3Policy:

my ZappaUserGeneralPolicy:

{ "Version": "2012-10-17", "Statement": [ { "Sid": "VisualEditor0", "Effect": "Allow", "Action": [ "lambda:CreateFunction", "s3:ListAccessPointsForObjectLambda", "s3:GetAccessPoint", "lambda:ListVersionsByFunction", "logs:DescribeLogStreams", "route53:GetHostedZone", "events:PutRule", "s3:PutStorageLensConfiguration", "cloudformation:DescribeStackResource", "lambda:GetFunctionConfiguration", "iam:PutRolePolicy", "apigateway:DELETE", "events:ListRuleNamesByTarget", "apigateway:PATCH", "cloudformation:UpdateStack", "events:ListRules", "lambda:DeleteFunction", "events:RemoveTargets", "logs:FilterLogEvents", "apigateway:GET", "events:ListTargetsByRule", "cloudformation:ListStackResources", "iam:GetRole", "events:DescribeRule", "s3:PutAccountPublicAccessBlock", "s3:ListAccessPoints", "apigateway:PUT", "lambda:GetFunction", "s3:ListJobs", "route53:ListHostedZones", "route53:ChangeResourceRecordSets", "cloudformation:DescribeStacks", "s3:ListStorageLensConfigurations", "lambda:UpdateFunctionCode", "events:DeleteRule", "events:PutTargets", "s3:GetAccountPublicAccessBlock", "lambda:AddPermission", "s3:ListAllMyBuckets", "cloudformation:CreateStack", "cloudformation:DeleteStack", "lambda:*", "s3:CreateJob", "apigateway:POST" ], "Resource": "*" }, { "Sid": "VisualEditor1", "Effect": "Allow", "Action": [ "iam:PassRole", "s3:*" ], "Resource": [ "arn:aws:s3:::<s3_bucket from zappa_settings.json>", "arn:aws:iam::<account_id>:role/ZappaDjangoRole" ]z } ] }

Also, my ZappaUserS3Policy

{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": [ "s3:ListBucket" ], "Resource": [ "arn:aws:s3:::<s3_bucket from zappa_settings.json>" ] }, { "Effect": "Allow", "Action": [ "s3:DeleteObject", "s3:GetObject", "s3:PutObject", "s3:AbortMultipartUpload", "s3:ListMultipartUploadParts", "s3:ListBucketMultipartUploads" ], "Resource": [ "arn:aws:s3:::<s3_bucket from zappa_settings.json>/*" ] } ] }

And, my ZappaDjangoRole's Trust anycodings_zappa relationships:

{ "Version": "2012-10-17", "Statement": [ { "Sid": "", "Effect": "Allow", "Principal": { "Service": [ "events.amazonaws.com", "apigateway.amazonaws.com", "lambda.amazonaws.com" ] }, "Action": "sts:AssumeRole" } ] }

And, finally, here is my ZappaRolePolicy:

{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": [ "logs:*" ], "Resource": "arn:aws:logs:*:*:*" }, { "Effect": "Allow", "Action": [ "lambda:GetFunctionConfiguration", "lambda:UpdateFunctionConfiguration", "lambda:InvokeFunction" ], "Resource": [ "*" ] }, { "Effect": "Allow", "Action": [ "xray:PutTraceSegments", "xray:PutTelemetryRecords" ], "Resource": [ "*" ] }, { "Effect": "Allow", "Action": [ "ec2:AttachNetworkInterface", "ec2:CreateNetworkInterface", "ec2:DeleteNetworkInterface", "ec2:DescribeInstances", "ec2:DescribeSecurityGroups", "ec2:DescribeNetworkInterfaces", "ec2:DetachNetworkInterface", "ec2:ModifyNetworkInterfaceAttribute", "ec2:ResetNetworkInterfaceAttribute" ], "Resource": "*" }, { "Effect": "Allow", "Action": [ "s3:*" ], "Resource": "arn:aws:s3:::*" }, { "Effect": "Allow", "Action": [ "kinesis:*" ], "Resource": "arn:aws:kinesis:*:*:*" }, { "Effect": "Allow", "Action": [ "sns:*" ], "Resource": "arn:aws:sns:*:*:*" }, { "Effect": "Allow", "Action": [ "sqs:*" ], "Resource": "arn:aws:sqs:*:*:*" }, { "Effect": "Allow", "Action": [ "dynamodb:*" ], "Resource": "arn:aws:dynamodb:*:*:*" }, { "Effect": "Allow", "Action": [ "route53:*" ], "Resource": "*" } ] }

error occurred accessdenied calling createbucket operation access denied AWS Credential_source = Ec2InstanceMetadata

zusammenhängende Posts

An error occurred (AccessDenied) when calling the CopyObject operation: Access Denied Lambda
An error occurred (AccessDenied) when calling the CopyObject operation: Access Denied Lambda

An error occurred (AccessDenied) when calling the PutObject operation: Access Denied lambda
An error occurred (AccessDenied) when calling the PutObject operation: Access Denied lambda

An error occurred (AccessDenied) when calling the GetBucketLocation operation: Access Denied
An error occurred (AccessDenied) when calling the GetBucketLocation operation: Access Denied

Mac error 2002 hy000 : cant connect to local mysql server through socket /tmp/mysql.sock 2
Mac error 2002 hy000 : cant connect to local mysql server through socket /tmp/mysql.sock 2

Error 2002 hy000 : cant connect to local mysql server through socket /tmp/mysql.sock 2
Error 2002 hy000 : cant connect to local mysql server through socket /tmp/mysql.sock 2

Yarn.ps1 cannot be loaded because running scripts is disabled on this system.
Yarn.ps1 cannot be loaded because running scripts is disabled on this system.

How do you fix a JNI error has occurred Please check your installation and try again?
How do you fix a JNI error has occurred Please check your installation and try again?

How do you resolve a JNI error has occurred Please check your installation and try again?
How do you resolve a JNI error has occurred Please check your installation and try again?

Linux error A JNI error has occurred, please check your installation and try again
Linux error A JNI error has occurred, please check your installation and try again

How do I fix the error the security database on the server does not have a computer account for this workstation trust relationship?
How do I fix the error the security database on the server does not have a computer account for this workstation trust relationship?

Werbung

NEUESTEN NACHRICHTEN

Which list below contains only information systems development project risk factors?
1 Jahrs vor . durch MaleAllocation
Controlling measures the of actual performance from the standard performance
1 Jahrs vor . durch BrokenDeficiency
Welche Elemente kommen im menschlichen Körper vor?
1 Jahrs vor . durch LeveragedAvarice
Mit anzusehen wenn der mann anbaut
1 Jahrs vor . durch GubernatorialFreestyle
Second Hand Kinder in der Nähe
1 Jahrs vor . durch Tax-freeChemotherapy
Which of the following statements is true regarding surface-level diversity?
1 Jahrs vor . durch CracklingLordship
Wie wird man im Solarium am besten braun?
1 Jahrs vor . durch FlushedDemeanor
When giving a speech of presentation you should usually explain why the recipient is being given his or her award?
1 Jahrs vor . durch DentalSnail
Wie lange ist 3 tage fieber ansteckend
1 Jahrs vor . durch ObsessiveRedemption
Was sagt man wenn jemand in rente geht
1 Jahrs vor . durch SubjectiveCriminality

Werbung

Populer

Werbung

Um

Legal

Hilfe

Sozial

homeendefrjakoptzhhi
Urheberrechte © © 2024 decemle Inc.