Lambda函数从SSM密码存储获取密码,但是遇到此错误。 已经针对lambda角色和cognito角色设置了策略。 ssm:描述参数 ssm:Getparameter sts:assumerole
* {AccessDeniedException:用户:arn:aws:sts :: 000008109xxx:assumed-role / Cognito_tpnpoolUnauth_Role / CognitoIdentityCredentials未经授权执行:资源上的ssm:GetParameter:arn:aws:ssm:ap-southeast-1 :000008109xxx:参数/ TPN_SFX_P01_Pass 在Request.extractError(D:\ Work \ Amazon \ BillingAggregator \ billing-file-sender \ node_modules \ aws-sdk \ lib \ protocol \ json.js:48:27) 在Request.callListeners(D:\ Work \ Amazon \ BillingAggregator \ billing-file-sender \ node_modules \ aws-sdk \ lib \ sequential_executor.js:105:20) 在Request.emit(D:\ Work \ Amazon \ BillingAggregator \ billing-file-sender \ node_modules \ aws-sdk \ lib \ sequential_executor.js:77:10) 在Request.emit(D:\ Work \ Amazon \ BillingAggregator \ billing-file-sender \ node_modules \ aws-sdk \ lib \ request.js:683:14) 在Request.transition(D:\ Work \ Amazon \ BillingAggregator \ billing-file-sender \ node_modules \ aws-sdk \ lib \ request.js:22:10) 在AcceptorStateMachine.runTo(D:\ Work \ Amazon \ BillingAggregator \ billing-file-sender \ node_modules \ aws-sdk \ lib \ state_machine.js:14:12) 在D:\ Work \ Amazon \ BillingAggregator \ billing-file-sender \ node_modules \ aws-sdk \ lib \ state_machine.js:26:10 应要求。 (D:\ Work \ Amazon \ BillingAggregator \ billing-file-sender \ node_modules \ aws-sdk \ lib \ request.js:38:9) 应要求。 (D:\ Work \ Amazon \ BillingAggregator \ billing-file-sender \ node_modules \ aws-sdk \ lib \ request.js:685:12) 在Request.callListeners(D:\ Work \ Amazon \ BillingAggregator \ billing-file-sender \ node_modules \ aws-sdk \ lib \ sequential_executor.js:115:18) 消息:'用户:arn:aws:sts :: 000008109xxx:assumed-role / Cognito_tpnpoolUnauth_Role / CognitoIdentityCredentials未经授权执行:资源上的ssm:GetParameter:arn:aws:ssm:ap-southeast-1:000008109xxx :parameter / xxx_SFX_P01_Pass', 代码:“ AccessDeniedException”, 时间:2018-08-03T07:17:50.976Z, requestId:'cec59419-24cd-427e-99dc-b1f3495f0ceb', statusCode:400, 可重试:错误, *