英文:
API Gateway integration to an elastic beanstalk app with a VPC_LINK fails with AWS ARN for integration must contain path or action
问题
NLB 目标 EB ALB
module "nlb" {
source = "terraform-aws-modules/alb/aws"
version = "~> 6.0"
name = "${var.eb_env_name}-${var.environment}-internal-nlb"
load_balancer_type = "network"
internal = true
vpc_id = module.vpc.vpc_id
subnets = module.vpc.private_subnets
access_logs = {
bucket = "${var.eb_env_name}-${var.environment}-internal-nlb-logs"
}
target_groups = [
{
name = "${var.eb_env_name}-${var.environment}-internal-tg"
backend_protocol = "TCP"
backend_port = 80
target_type = "alb"
health_check = {
enabled = true
interval = 30
path = "/health"
port = "traffic-port"
healthy_threshold = 3
unhealthy_threshold = 3
timeout = 6
}
targets = [
{
target_id = aws_elastic_beanstalk_environment.eb_env.load_balancers[0]
port = 80
}
]
}
]
http_tcp_listeners = [
{
port = 80
protocol = "TCP"
target_group_index = 0
}
]
}
VPC LINK
resource "aws_api_gateway_vpc_link" "eb_vpc_link" {
name = "${var.eb_app_name}-vpc-link"
target_arns = [module.nlb.lb_arn]
}
API Gateway 集成
resource "aws_api_gateway_integration" "rest_api_get_destinationId_method_integration" {
rest_api_id = aws_api_gateway_rest_api.rest_api.id
resource_id = aws_api_gateway_resource.rest_api_destinationId_resource.id
http_method = aws_api_gateway_method.rest_api_destination_get_method.http_method
integration_http_method = "POST"
type = "AWS_PROXY"
uri = module.nlb.http_tcp_listener_arns[0]
connection_type = "VPC_LINK"
connection_id = aws_api_gateway_vpc_link.eb_vpc_link.id
//request_tempates is required to explicitly set the statusCode to an integer value of 200
request_templates = {
"application/json" = jsonencode({
statusCode = 200
})
}
depends_on = [
aws_api_gateway_resource.rest_api_destinationId_resource,
aws_api_gateway_resource.rest_api_destination_resource,
aws_api_gateway_method.rest_api_destination_get_method,
aws_api_gateway_vpc_link.eb_vpc_link
]
}
我一直收到以下错误消息。
创建 API Gateway 集成: BadRequestException: 集成的 AWS ARN 必须包含路径或操作
上面的 aws_api_gateway_integration 应该指向 /destination/{destinationId}。
英文:
I have an elastic beanstalk(EB) app setup in a private subnet in my current VPC. I want to have an API REST Gateway that will forward the traffic to elastic beanstalk(EB) app via an VPC_LINK as lambda is too expensive and all i need is proxy the traffic.
NLB targeting EB ALB
module "nlb" {
source = "terraform-aws-modules/alb/aws"
version = "~> 6.0"
name = "${var.eb_env_name}-${var.environment}-internal-nlb"
load_balancer_type = "network"
internal = true
vpc_id = module.vpc.vpc_id
subnets = module.vpc.private_subnets
access_logs = {
bucket = "${var.eb_env_name}-${var.environment}-internal-nlb-logs"
}
target_groups = [
{
name = "${var.eb_env_name}-${var.environment}-internal-tg"
backend_protocol = "TCP"
backend_port = 80
target_type = "alb"
health_check = {
enabled = true
interval = 30
path = "/health"
port = "traffic-port"
healthy_threshold = 3
unhealthy_threshold = 3
timeout = 6
}
targets = [
{
target_id = aws_elastic_beanstalk_environment.eb_env.load_balancers[0]
port = 80
}
]
}
]
http_tcp_listeners = [
{
port = 80
protocol = "TCP"
target_group_index = 0
}
]
}
VPC LINK
resource "aws_api_gateway_vpc_link" "eb_vpc_link" {
name = "${var.eb_app_name}-vpc-link"
target_arns = [module.nlb.lb_arn]
}
API Gateway integration
resource "aws_api_gateway_integration" "rest_api_get_destinationId_method_integration" {
rest_api_id = aws_api_gateway_rest_api.rest_api.id
resource_id = aws_api_gateway_resource.rest_api_destinationId_resource.id
http_method = aws_api_gateway_method.rest_api_destination_get_method.http_method
integration_http_method = "POST"
type = "AWS_PROXY"
uri = module.nlb.http_tcp_listener_arns[0]
connection_type = "VPC_LINK"
connection_id = aws_api_gateway_vpc_link.eb_vpc_link.id
//request_tempates is required to explicitly set the statusCode to an integer value of 200
request_templates = {
"application/json" = jsonencode({
statusCode = 200
})
}
depends_on = [
aws_api_gateway_resource.rest_api_destinationId_resource,
aws_api_gateway_resource.rest_api_destination_resource,
aws_api_gateway_method.rest_api_destination_get_method,
aws_api_gateway_vpc_link.eb_vpc_link
]
}
I keep getting the following error message.
> Creating API Gateway Integration: BadRequestException: AWS ARN for integration must contain path or action
The aws_api_gateway_integration above should point to /destination/{destinationId}
答案1
得分: 2
根据CloudFormation文档,您需要在uri参数中指定Network Load Balancer DNS名称:
Uri指定集成端点的统一资源标识符(URI)。[...] 如果connectionType是VPC_LINK,请指定Network Load Balancer DNS名称。[...]
因此,在您的情况下,应该是:
uri = module.nlb.lb_dns_name
编辑:根据评论,类型应该是HTTP_PROXY:
type = "HTTP_PROXY"
英文:
As per the CloudFormation documentation, you need to specify the Network Load Balancer DNS name in the uri argument:
> Uri Specifies Uniform Resource Identifier (URI) of the integration endpoint. [...] If connectionType is VPC_LINK specify the Network Load Balancer DNS name. [...]
So in your case, that would be:
uri = module.nlb.lb_dns_name
EDIT: As per the comments, the type should be HTTP_PROXY:
type = "HTTP_PROXY"
通过集体智慧和协作来改善编程学习和解决问题的方式。致力于成为全球开发者共同参与的知识库,让每个人都能够通过互相帮助和分享经验来进步。
评论