1 Risposta
- Più recenti
- Maggior numero di voti
- Maggior numero di commenti
1
Hi,
According to the following AWS Github repository issue, you should use Resources: "*"
for this policy.
According to https://docs.aws.amazon.com/step-functions/latest/dg/concept-create-iam-advanced.html, Step Function API calls to update task status require "the ARN of the activity or the token of the instance as part of the request". Since the token is provided as an input to the worker Lambda function, I think it's safe to use Resources: "*" for this policy.
Contenuto pertinente
- AWS UFFICIALEAggiornata 2 anni fa
- AWS UFFICIALEAggiornata un anno fa