Open skorfmann opened 8 months ago
the check has a lifted value (an SSM parameter). Looks like only the first invocation - pretty much immediately after creation - is failing. Subsequent calls via console or terraform apply are succeeding.
2023-12-13T11:37:58.005+01:00
2023-12-13T10:37:58.005Z 1af87741-175a-4212-8317-99e5e5db5b98 INFO check failed: User: arn:aws:sts::207534322588:assumed-role/terraform-20231213103740649300000003/Function-c80746ea is not authorized to perform: ssm:GetParameter on resource: arn:aws:ssm:us-east-1:207534322588:parameter/wing-cloud/apps/config/api-url because no identity-based policy allows the ssm:GetParameter action
Copying @Chriscbr - is this an issue with OnDeploy?
Hi,
This issue hasn't seen activity in 60 days. Therefore, we are marking this issue as stale for now. It will be closed after 7 days. Feel free to re-open this issue when there's an update or relevant information to be added. Thanks!
I tried this:
add a check to the application and run
wing test -t tf-aws
This happened:
it fails in the
terraform apply
phase, the used AWS role has admin accessI expected this:
it works without access errors
Is there a workaround?
No response
Anything else?
No response
Wing Version
0.51.21
Node.js Version
18.7
Platform(s)
MacOS
Community Notes