codygreen
commented
4 years ago @yossi-r, do you have an example of a correct IAM role I can reference for service discovery? The current IAM role is only for access to the secrets manager.
Open yossi-r opened 4 years ago
codygreen
commented
4 years ago @yossi-r, do you have an example of a correct IAM role I can reference for service discovery? The current IAM role is only for access to the secrets manager.
yossi-r
commented
4 years ago I'm using the following IAM which works (it's copied from our CFT's) https://gitlab.com/f5-examples/f5-examples-aws/-/blob/master/terraform_modules/aws-bigip/iam.tf
sending an AS3 declaration with service discovery fails (the declaration is accepted but service discovery fails), i'm getting an error on credentials. process._tickDomainCallback (internal/process/next_tick.js:218:9) Thu, 16 Jan 2020 07:21:25 GMT - severe: [f5-service-discovery: getNodes.js] error code: CredentialsError message: Missing credentials in config Thu, 16 Jan 2020 07:21:25 GMT - info: [f5-service-discovery: Task.js] Task ~juiceshop~6upfFvfNuuPkICupewgkoCsam586w~9Ojpn~QgVXsZU3D failed: Missing credentials in config Thu, 16 Jan 2020 07:21:25 GMT - fine: [f5-service-discovery: Task.js] CredentialsError: Missing credentials in config at IncomingMessage. (/var/config/rest/iapps/f5-service-discovery/nodejs/node_modules/aws-sdk/lib/util.js:895:34)
might be related to the IAM setting which i think are different than in the CFT templates. haven't investigated more than that.