By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Step Function Task stuck "In Progress" if no permission to read CodeBuild status

0

Hello,

I am using Step Functions with the arn:aws:states:::codebuild:startBuild.sync task. The necessary permissions are documented here.

I noticed that there is no error and the task will remain "In Progress" when one forgets to add the codebuild:BatchGetBuilds and codebuild:BatchGetReports permissions to the step function's role. I think it would be a good idea to check if these permissions are given and to throw an error if they aren't.

Best regards, Moritz

Topics
Developer ToolsServerlessApplication IntegrationSecurity, Identity, & Compliance
Tags
AWS CodeBuildAWS Step FunctionsIAM Policies
Language
English
puchm
asked 3 months ago159 views
1 Answer
1

Hi Moritz, it is always recommended to set a timeout for your tasks in Step Functions to avoid such cases, check this link for your reference : https://docs.aws.amazon.com/step-functions/latest/dg/sfn-stuck-execution.html And here is the list of all other best practices for your reference : https://docs.aws.amazon.com/step-functions/latest/dg/sfn-best-practices.html

AWS
Hossam Ebrahim
answered 2 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content