-
Notifications
You must be signed in to change notification settings - Fork 2.8k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Unable to load credentials from service endpoint when using IAM role #1398
Comments
The error indicates that the SDK could not connect to the default credentials host at http://docs.aws.amazon.com/AmazonECS/latest/developerguide/task-iam-roles.html |
The error went away the next day, again without us doing anything. So did not get chance to investigate more. But it persisted for more than a day. But i would really like to know what happen ed, so that it does not happen in our production environment (it was in dev) |
Good to see you're no longer experiencing the issue. Unfortunately as stated above, the only thing we can glean from the stacktrace is that the client was unable to connect to the standard credentials endpoint; without any more information it's difficult to track down why. If you haven't already, it might be helpful to open a ticket in the support center to see if it may have been a problem with how ECS created the problematic containers. |
Feel free to reopen if you have more questions. |
Please reopen. We are seeing it a lot in our api's now. Using aws-java-sdk version 1.11.235. For reference:
|
I don't think this issue is on SDK end as this code has not changed recently. As dagnir@ pointed out, the issue might be on the service end. You can reach out to the service team through console support. You can provide wire logs to us. That might help in narrowing down the issue. Make sure there is no sensitive data. |
Closing due to no response. If you observe this issue again, can you try the cURL command from this page? http://docs.aws.amazon.com/AmazonECS/latest/developerguide/task-iam-roles.html If you're unable to fetch credentials using that command then it's some other issue with ECS or the container. |
|
I have this same issue... I've tried many things, but am using this for connecting.
I tried to run the curl command as suggested earlier, but there is no environment variable |
Facing the same issue intermittently with AWS SDK v1.11.788, adoptopenjdk11 on kubernetes cluster trying to connect using Kube2Iam |
Hi! I talked about this issue and described our custom solution in this article. |
aws-java-sdk-sqs version 1.11.170
Using an aws task with IAM role having the right access to an SQS queue. It worked all fine but without any change in any config from our side we started getting an exception like
We are getting this exception consistently even after relaunching the service.
The same docker image works fine with similar IAM role on a different container instance.
The text was updated successfully, but these errors were encountered: