无法将S3后端与Terraform一起使用-缺少凭据

时间:2018-08-14 18:24:08

标签: terraform terraform-provider-aws

我在Terraform样本中的行人最多:

2018/08/14 14:19:13 [INFO] Terraform version: 0.11.7  41e50bd32a8825a84535e353c3674af8ce799161
2018/08/14 14:19:13 [INFO] Go runtime version: go1.10.1
2018/08/14 14:19:13 [INFO] CLI args: []string{"C:\\cygwin64\\usr\\local\\bin\\terraform.exe", "init"}
2018/08/14 14:19:13 [DEBUG] Attempting to open CLI config file: C:\Users\judall\AppData\Roaming\terraform.rc
2018/08/14 14:19:13 [DEBUG] File doesn't exist, but doesn't need to. Ignoring.
2018/08/14 14:19:13 [INFO] CLI command args: []string{"init"}
2018/08/14 14:19:13 [DEBUG] command: loading backend config file: C:\cygwin64\home\judall\t2

2018/08/14 14:19:13 [DEBUG] command: no data state file found for backend config
Initializing the backend...
2018/08/14 14:19:13 [DEBUG] New state was assigned lineage "5113646b-318f-9612-5057-bc4803292c3a"
2018/08/14 14:19:13 [INFO] Building AWS region structure
2018/08/14 14:19:13 [INFO] Building AWS auth structure
2018/08/14 14:19:13 [INFO] Setting AWS metadata API timeout to 100ms
2018/08/14 14:19:13 [INFO] Ignoring AWS metadata API endpoint at default location as it doesn't return any instance-id

2018/08/14 14:19:13 [DEBUG] plugin: waiting for all plugin processes to complete...
Error configuring the backend "s3": No valid credential sources found for AWS Provider.
  Please see https://terraform.io/docs/providers/aws/index.html for more information on
  providing credentials for the AWS Provider

Please update the configuration in your Terraform files to fix this error
then run this command again.

运行Terraform初始化时,我收到以下(跟踪的)响应:

webView(_:shouldStartLoadWith:navigationType:)

我已经为此搜索了几个小时。我尝试使用'profile'属性-产生的跟踪日志略有不同,但最终结果相同。我尝试设置AWS_环境变量-结果相同。

我正在运行terraform版本0.11.7。有什么建议吗?

2 个答案:

答案 0 :(得分:6)

provider配置独立于您的backend配置。

您在provider块中配置的凭证用于创建与AWS相关的资源。为了访问S3存储桶作为远程状态的存储,您还需要提供凭据。这可以与您的provider的配置相同,也可以完全不同(出于安全原因,仅对此特定存储区具有权限)。

您可以通过在backend块中添加凭据来解决此问题:

#  Terraform configuration
terraform {
  backend "s3" {
    bucket     = "terraform.example.com"
    key        = "85/182/terraform.tfstate"
    region     = "us-east-1"
    access_key = "xxxxxxxxx"
    secret_key = "yyyyyyyyyyy"
  }
}

或者您可以在主目录(AWS Doku)中创建一个AWS(默认)配置文件,并在terraform代码中删除您的凭据(将配置存储在版本控制系统中时为首选)。

答案 1 :(得分:0)

正如@JimUdall在评论中指出的,如果要在更新的后端配置上重新运行init,则需要对更新的配置使用-reconfigure来应用更改的配置。

terraform init -reconfigure
相关问题
最新问题