You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
As posted on Discord , I am getting an error while trying to deploy to the af-south-1 region.
clarity/ServerFunction/ServerFunction: Resource handler returned message: "User: arn:aws:sts::<acc_id>:assumed-role/cdk-hnb659fds-cfn-exec-role-857082827836-af-south-1/AWSCloudFormation is not authorized to perform: lambda:GetLayerVersion on resource: arn:aws:lambda:af-south-1:226609089145:layer:sst-extension-arm64:2 because no resource-based policy allows the lambda:GetLayerVersion action (Service: Lambda, Status Code: 403, Request ID: <req_id>)" (RequestToken: <req_id>, HandlerErrorCode: AccessDenied)
I have attempted the same in eu-west-1 without issue. Appears to be that the Lambda Layer managed by the SST team may not have a resource policy that allows other accounts to access it. See this issue on another project where the same issue was resolved.
If I create a lambda function from the console and attempt to add the above layer ARN, I get the same error:
In eu-west-1 though, this is not a problem.
The text was updated successfully, but these errors were encountered:
After upgrading to SST version 2.39.6, running the deploy command appears not to utilize the SST Lambda layer any longer. The ServerFunction has no layers any more. Hence, deployment to af-south-1 now works without issue.
As posted on Discord , I am getting an error while trying to deploy to the af-south-1 region.
I have attempted the same in eu-west-1 without issue. Appears to be that the Lambda Layer managed by the SST team may not have a resource policy that allows other accounts to access it. See this issue on another project where the same issue was resolved.
If I create a lambda function from the console and attempt to add the above layer ARN, I get the same error:
![image](https://private-user-images.githubusercontent.com/103632207/296975159-9d1de221-0dc4-4542-a114-7d3333d9a446.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTUiLCJleHAiOjE3MjE0MTQzNjcsIm5iZiI6MTcyMTQxNDA2NywicGF0aCI6Ii8xMDM2MzIyMDcvMjk2OTc1MTU5LTlkMWRlMjIxLTBkYzQtNDU0Mi1hMTE0LTdkMzMzM2Q5YTQ0Ni5wbmc_WC1BbXotQWxnb3JpdGhtPUFXUzQtSE1BQy1TSEEyNTYmWC1BbXotQ3JlZGVudGlhbD1BS0lBVkNPRFlMU0E1M1BRSzRaQSUyRjIwMjQwNzE5JTJGdXMtZWFzdC0xJTJGczMlMkZhd3M0X3JlcXVlc3QmWC1BbXotRGF0ZT0yMDI0MDcxOVQxODM0MjdaJlgtQW16LUV4cGlyZXM9MzAwJlgtQW16LVNpZ25hdHVyZT1iZDIzOTE1N2Q4ZDI0ZDQ5NTFjMDhjMGUzYjVhNjIxMjAzOWRiNDUzNzY4ZTEyNGFjZGQ1NGQ2YmVjNWZiZWRhJlgtQW16LVNpZ25lZEhlYWRlcnM9aG9zdCZhY3Rvcl9pZD0wJmtleV9pZD0wJnJlcG9faWQ9MCJ9.BMI1aRqzlKS1ucH279cPzDdTrme4Omp_AlxkQozpI6I)
In eu-west-1 though, this is not a problem.
![image](https://private-user-images.githubusercontent.com/103632207/296975217-6afa0833-4475-4b68-a145-0102893df235.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTUiLCJleHAiOjE3MjE0MTQzNjcsIm5iZiI6MTcyMTQxNDA2NywicGF0aCI6Ii8xMDM2MzIyMDcvMjk2OTc1MjE3LTZhZmEwODMzLTQ0NzUtNGI2OC1hMTQ1LTAxMDI4OTNkZjIzNS5wbmc_WC1BbXotQWxnb3JpdGhtPUFXUzQtSE1BQy1TSEEyNTYmWC1BbXotQ3JlZGVudGlhbD1BS0lBVkNPRFlMU0E1M1BRSzRaQSUyRjIwMjQwNzE5JTJGdXMtZWFzdC0xJTJGczMlMkZhd3M0X3JlcXVlc3QmWC1BbXotRGF0ZT0yMDI0MDcxOVQxODM0MjdaJlgtQW16LUV4cGlyZXM9MzAwJlgtQW16LVNpZ25hdHVyZT1lYmFjMzJkYTY5ZGE4ZWYxOTZjZmI4OGQzZjU0MGFjYWJmOGFmMDg3NmJkYmVkMjk2ZTIzYTYwMWFjMzA4NGE5JlgtQW16LVNpZ25lZEhlYWRlcnM9aG9zdCZhY3Rvcl9pZD0wJmtleV9pZD0wJnJlcG9faWQ9MCJ9.27Wuwm0bKRObxh0vIwRJ5gLSRP22h8lTnNHcUC1LYOk)
The text was updated successfully, but these errors were encountered: