英文:
AWS Step Functions - Invoke Another - All Built from Console
问题
我正在测试一种使用一个步骤函数来调用另一个的流程。子状态机将用于调用一个用于数据处理的 Lambda 函数。
为了验证这一点,我正在通过 Web 控制台创建非常简单的对象,但是当尝试运行父进程时,我收到以下错误消息:
用户:arn:aws:sts::xxxxxxx:assumed-role/StepFunctions-ETL_POC-role-xxxx/step-functions-express-xxxx 未被授权访问此资源(服务:AWSStepFunctions;状态代码:400;错误代码:AccessDeniedException;
我已经尝试过将 "Step Functions Full Access" 管理策略添加到 IAM 角色中,但似乎没有起作用。
我漏掉了什么吗?
英文:
I am testing out a flow where I use one Step Function to invoke another. The child State Machine will be used to invoke a lambda for data processing.
To bear this out, I am creating very simple objects via the web console, however, when attempting to run the parent process, I am getting the following error
User: arn:aws:sts::xxxxxxx:assumed-role/StepFunctions-ETL_POC-role-xxxx/step-functions-express-xxxx is not authorized to access this resource (Service: AWSStepFunctions; Status Code: 400; Error Code: AccessDeniedException;
I have played around by adding the Step Functions Full Access managed policy to the IAM role, but that didn't seem to do the trick.
What am I missing?
答案1
得分: 1
问题在于状态机的定义使用了默认的占位文本。我试图通过Web控制台完成所有操作,从未考虑过要检查我是否正确引用了ARN。
这只是在Justin上面的第一条评论之后才发现的。
英文:
The issue was that the definition of the State Machine was using the default placeholder text. I was attempting to do everything via the web console and never once thought to check if I had properly referenced the ARN.
This was only found after the first comment from Justin above.
通过集体智慧和协作来改善编程学习和解决问题的方式。致力于成为全球开发者共同参与的知识库,让每个人都能够通过互相帮助和分享经验来进步。
评论