Converting from Expired API Key to Cognito causes Cloudformation to fail. #954
Comments
yuth
added
question
|
Hello, you can get around this by setting the "APIKeyExpirationEpoch" parameter to -1 in your project's parameters.json file (https://aws-amplify.github.io/docs/cli/graphql#apikeyexpirationepoch). The issue is that the AppSync service deletes API keys when they become invalid which is causing CloudFormation to lose a reference to it. We will make a code change to the GraphQL Transform such that API Keys are never created when you have user pools auth enabled which should solve the problem from this perspective in the future. Thanks for reporting this issue. |
GraphQL transformer created AppSync API key even if the user had selected Cognito user pool as authorization type for API. These API keys expire after 7 days and when they do expire, users cant push changes using cloud formation. Updated transformer not to generate an API key when using Cognito User Pool fix aws-amplify#954
ghost
assigned 
|
This error also applies if you want to refresh the API Key and your existing one is already expired. The same CloudFormation error occurs. |
|
I'm also getting this when I have never used an API key for my API. It just started happening after a push to my branch in Amplify Console today...
|
GraphQL transformer created AppSync API key even if the user had selected Cognito user pool as authorization type for API. These API keys expire after 7 days and when they do expire, users cant push changes using cloud formation. Updated transformer not to generate an API key when using Cognito User Pool fix aws-amplify#954
|
Fix for this has been pushed and released with the latest CLI version 1.1.8. |
|
I have the latest amplify cli and I'm still getting this issue. My original API key was expired and I created a new API Key. Updated all references to the API KEY with the new Key in all the files, bgut still amplify push fails telling |
|
Any updates? I still got the same error with latest cli |
|
I am also still getting this error... I am not sure how to get around it... I've set the epoch to -1 and still get this error. |
|
@danieldram I just ran into the same issue and for some reason, @mikeparisstuff workaround wasn't working. My AppSync API is configured in AWS_IAM auth mode, but maybe I changed it at some which led to this error. |
|
@ChristopheBougere thank you so much for the response, do you know where in the console I can edit the APIKeyExpirationEpoch? |
|
To be more specific you don't edit the value but you redeploy the stack with a new value for the parameter.
|
|
@ChristopheBougere doesn't seem to work for me.. in the cloudformation console I see all green and when I drill down I find the failing stack, I updated the epoch -1 but still doesn't deploy locally anymore. |
|
@ChristopheBougere THANK YOU! how do I donate to your coffee fund! I finally got it working via editing the cloud formation template. You are a genius! |
|
Glad to hear that, cheers! |
|
For some reason I manually deleted the API key of my API and changed authorization to an existing Cognito Pool. |
|
This issue has been automatically locked since there hasn't been any recent activity after it was closed. Please open a new issue for related bugs. Looking for a help forum? We recommend joining the Amplify Community Discord server |
Describe the bug
Switching to Cognito auth type from an expired API key causes
amplify pushto fail with the error 404 not found.To Reproduce
Steps to reproduce the behavior:
amplify api updateamplify pushExpected behavior
Auth type to switch to Cognito instead of API key
Screenshots
Additional context
Using Amplify for Javascript with React. Using Amplify version 1.1.6
The text was updated successfully, but these errors were encountered: