AWS CodePipeline:源操作没有足够的 CodeStar 连接权限
AWS CodePipeline: source action has insufficient permissions for CodeStar connection
我正在设置一个 CodePipeline,我创建了一个操作来从 GitHub 获取源代码。
这需要建立连接,我也这样做了,GitHub 方面看起来也很好。
但是,如果我发布对管道的更改,我会在源阶段看到以下错误:
Insufficient permissions
Unable to use Connection: arn:aws:codestar-connections:us-east-1:REDACTED:connection/REDACTED. The provided role does not have sufficient permissions.
我添加了对管道服务角色(我在管道设置中找到的)的完整 CodeStar 访问权限,如下所示:
arn:aws:iam::REDACTED:role/service-role/AWSCodePipelineServiceRole-us-east-1-REDACTED
有人知道可能缺少什么吗?谢谢!
解决方案是将此位添加到服务角色的策略中:
{
"Effect": "Allow",
"Action": "codestar-connections:UseConnection",
"Resource": "insert ARN of the CodeStar connection here"
}
我正在设置一个 CodePipeline,我创建了一个操作来从 GitHub 获取源代码。
这需要建立连接,我也这样做了,GitHub 方面看起来也很好。
但是,如果我发布对管道的更改,我会在源阶段看到以下错误:
Insufficient permissions
Unable to use Connection: arn:aws:codestar-connections:us-east-1:REDACTED:connection/REDACTED. The provided role does not have sufficient permissions.
我添加了对管道服务角色(我在管道设置中找到的)的完整 CodeStar 访问权限,如下所示:
arn:aws:iam::REDACTED:role/service-role/AWSCodePipelineServiceRole-us-east-1-REDACTED
有人知道可能缺少什么吗?谢谢!
解决方案是将此位添加到服务角色的策略中:
{
"Effect": "Allow",
"Action": "codestar-connections:UseConnection",
"Resource": "insert ARN of the CodeStar connection here"
}