-
Notifications
You must be signed in to change notification settings - Fork 135
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Assume role configuration doesn't seem to work #149
Comments
Hello, is this using Web Identity Tokens or EKS's IRSA? If so, please see #112. Otherwise, this maybe similar to #114, however, the fix for that may have been related to the regression in #124. I don't have access to an AWS environment to test this, so it's a bit hard to debug 😀 . Can you try version 1.5.1 to see if that version of auth works for your situation? |
Hi @mrtnfchs following up on this, can you provide any further details on this? |
Hey @phillbaker. I ran into the issue described with provider version
Here's my provider config:
Downgraded to Thanks for the provider 🥇 |
Try version |
Hi @raids @mrtnfchs I believe this is a dupe of #124, the fix for that issue to pin to Please let me know if this is separate and downgrading does not work. |
Hi all
I'm trying to configure this
phillbaker/elasticsearch
Terraform providerv1.5.3
to assume an instance role to get an AWS identity so I can launch Terraform via one of my build agents. Unfortunately I'm getting ahealth check timeout
andrequest context canceled caused by: context deadline exceeded: no Elasticsearch node available
regardless what I try (eg: explicitly providing region or not,...)When I run terraform from a dedicated machine that has an AccessKey and SecretKey configured in
$HOME/.aws/credentials
or set by environment variables, everything runs fine but when I try to useaws_assume_role_arn
on one of my build agents, that don't have these keys set, but do have ainstance profile
with admin privileges assigned, I'm getting above connection failure.This is my provider configuration:
The role specified is the same role as assigned to the build agent itself and has following trust relationship:
Is there anything I'm missing ?
Thank you ! 🙏
The text was updated successfully, but these errors were encountered: