IAM角色ARN识别创建流处理器

时间:2019-03-13 06:24:27

标签: aws-sdk amazon-iam amazon-kinesis amazon-rekognition

我正在尝试通过流Kinesis使用AWS的面部识别,但是在创建流处理器步骤时出现错误:

  

err AccessDeniedException:状态代码:400,请求ID:d871329b-4553-11e9-9d9b-bf3e1c3a90d6

我有以下配置:
IAM政策

if self.filter.is_valid(message) {
    |                   ^^^^^^^ expected client::Filter::Message, found client::Client::Message
    |
    = note: expected type `&<F as client::Filter>::Message`
               found type `&<C as client::Client>::Message`


该角色具有2个附加策略,即AmazonRekognitionServiceRole和上述自定义策略。

{
"Version": "2012-10-17",
"Statement": [
    {
        "Sid": "VisualEditor0",
        "Effect": "Allow",
        "Action": [
            "kinesisanalytics:*",
            "kinesisvideo:*",
            "kinesis:*",
            "rekognition:*"
        ],
        "Resource": "*"
    }
]
}


测试代码(通过Golang):

Role's Trust relationships: 

    {
      "Version": "2012-10-17",
      "Statement": [
        {
          "Effect": "Allow",
          "Principal": {
            "Service": "rekognition.amazonaws.com"
          },
          "Action": "sts:AssumeRole",
          "Condition": {}
        }
      ]
    }

1 个答案:

答案 0 :(得分:0)

截至2019年3月27日,Rekognition实时流仅在4个地区可用:us-east-1,us-west-2,eu-west-1和ap-northeast-1