By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Resource Based policy statements for Lambda

0

I have 2 lambda functions.

  1. #1 - calling the #2
  2. #2 - with function url with IAM permission setup.
  3. Created policy statement with #1's execution role arn and action as lambda:InvokeFunctionUrl and attached to #2

But getting a forbidden request by the #2.

Do we need to add extra permissions?. Can someone guide me here?

  • kentrad EXPERT
    a year ago

    Can you post your policies?

Topics
ServerlessComputeSecurity, Identity, & ComplianceMicroservices
Tags
AWS LambdaAWS Identity and Access ManagementMicroservicesIAM Policies
Language
English
Aara Amuthan
asked a year ago328 views
1 Answer
0

If you are calling Lambda function #2 from Lambda function #1, there shouldn't be a reason why you would want to use a Function URL (which would require you to trigger the function via a Sigv4 signed HTTPS request).

Instead, I would suggest updating Lambda function #1 to make an SDK call to invoke the Lambda function #2 directly.

AWS
EXPERT
mhjwork
answered a year ago
  • Aara Amuthan
    a year ago

    Lambda functin #1 is more for orchestration purposes, and lambda function #2 has the actual service implementation.

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content