ALB bucket permissions - Access denied

Question

ALB bucket permissions - Access denied

griff92 opened this issue 2 years ago · comments

When adding
attach_elb_log_delivery_policy = true
attach_lb_log_delivery_policy = true
onto the module to enable sending ALB logs to the S3 bucket, the following error is received:

Error: failure configuring LB attributes: InvalidConfigurationRequest: Access Denied for bucket: . Please check S3bucket permission
│ status code: 400, request id: 8b5b0f08-3ad8-413e-82dd-2d5675a74ed5

Looking at the permissions of the policy created it adds a service of delivery.logs.amazonaws.com. However, referring to https://docs.aws.amazon.com/elasticloadbalancing/latest/application/enable-access-logging.html should the service be: "logdelivery.elasticloadbalancing.amazonaws.com"

Thanks

github-actions · Answer 1 · Sat Oct 22 2022 08:05:59 GMT+0800 (China Standard Time)

This issue has been automatically marked as stale because it has been open 30 days
with no activity. Remove stale label or comment or this issue will be closed in 10 days

github-actions · Answer 2 · Wed Nov 02 2022 08:03:48 GMT+0800 (China Standard Time)

This issue was automatically closed because of stale in 10 days

github-actions · Answer 3 · Fri Dec 02 2022 10:15:28 GMT+0800 (China Standard Time)

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.