- Newest
- Most votes
- Most comments
Hello,
Its possible that a different IAM entity is being made use of to perform the API call. When the SDK for JavaScript loads, it automatically searches the shared credentials file, which is named "credentials"[1]. Here is the precedence order for NodeJS applications[2]. To find out the identity of the caller, try a GetCallerIdentity call[3] to log the IAM identity making the call on your instance/application.
[1] https://docs.aws.amazon.com/sdk-for-javascript/v2/developer-guide/loading-node-credentials-shared.html [2] https://docs.aws.amazon.com/sdk-for-javascript/v2/developer-guide/setting-credentials-node.html [3] https://docs.aws.amazon.com/STS/latest/APIReference/API_GetCallerIdentity.html
Feel free to raise a support case with the IAM team to perform resource specific troubleshooting. Thanks!
Relevant content
- asked a year ago
- asked a year ago
- asked 6 months ago
- Accepted Answerasked 2 years ago
- AWS OFFICIALUpdated 3 years ago
- AWS OFFICIALUpdated 5 months ago