使用 AWS re:Post 即表示您同意 AWS re:Post 使用條款

Getting error in adding role policy to service linked role

0

resource "aws_iam_service_linked_role" "AWSServiceRoleForLexV2" { aws_service_name = "lexv2.amazonaws.com" tags = local.common_tags }

resource "aws_iam_role_policy" "lex2_policy" { name = "backend_bot_lex2_policy" role = aws_iam_service_linked_role.AWSServiceRoleForLexV2.id policy = jsonencode({ "Version" : "2012-10-17", "Statement" : [ { "Effect" : "Allow", "Action" : "logs:CreateLogGroup", "Resource" : "arn:aws:logs:eu-west-2:${var.aws_accountId}:" }, { "Effect" : "Allow", "Action" : [ "logs:CreateLogStream", "logs:PutLogEvents" ], "Resource" : [ "arn:aws:logs:eu-west-2:${var.aws_accountId}:log-group:" ] } ] }) }

Error Error putting IAM role policy backend_bot_lex2_policy: ValidationError: The specified value for roleName is invalid. It must contain only alphanumeric characters and/or the following: +=,.@_- │ status code: 400,

已提問 3 年前檢視次數 1737 次
1 個回答
0

In resource "aws_iam_role_policy", you should place .name instead of .id for the role: aws_iam_service_linked_role.AWSServiceRoleForLexV2**.name**.

However, note that you can't modify an Amazon Lex V2 service-linked role (only the description can be updated). Check this document for more info: https://docs.aws.amazon.com/lexv2/latest/dg/using-service-linked-roles.html

profile picture
已回答 3 年前

您尚未登入。 登入 去張貼答案。

一個好的回答可以清楚地回答問題並提供建設性的意見回饋,同時有助於提問者的專業成長。

回答問題指南