Amazon cloudformation AWS中国验证堆栈策略时出错未知资源类型_Amazon Cloudformation_Amazon Cognito_Aws Secrets Manager

Amazon cloudformation AWS中国验证堆栈策略时出错未知资源类型

amazon-cloudformation

Amazon cloudformation AWS中国验证堆栈策略时出错未知资源类型,amazon-cloudformation,amazon-cognito,aws-secrets-manager,Amazon Cloudformation,Amazon Cognito,Aws Secrets Manager,我们有以下用于在aws和aws中国部署的堆栈策略 { "Statement": [ { "Effect": "Allow", "Action": "Update:*", "Principal": "*", "Resource": "*" },

我们有以下用于在aws和aws中国部署的堆栈策略

{
  "Statement": [
    {
      "Effect": "Allow",
      "Action": "Update:*",
      "Principal": "*",
      "Resource": "*"
    },
    {
      "Effect": "Deny",
      "Action": [
        "Update:Replace",
        "Update:Delete"
      ],
      "Principal": "*",
      "Resource": "*",
      "Condition": {
        "StringEquals": {
          "ResourceType": [
            "AWS::EC2::VPC",
            "AWS::EC2::Subnet",
            "AWS::S3::Bucket",
            "AWS::RDS::DBCluster",
            "AWS::RDS::DBInstance",
            "AWS::KMS::Key",
            "AWS::SecretsManager::Secret",
            "AWS::Cognito::UserPool",
            "AWS::Cognito::UserPoolClient",
            "AWS::Cognito::IdentityPool",
            "AWS::ApiGateway::RestApi"
          ]
        }
      }
    }
  ]
}

但是，部署仅在中国环境下失败，错误如下：

调用SetStackPolicy时发生错误（ValidationError）操作：验证堆栈策略时出错：未知资源类型语句{}中的“AWS:：SecretsManager:：Secret”

如果这次删除Cognito:UserPool的SecretsManager条目，也会发生同样的情况

这让我相信，在我将堆栈策略全部从cn环境中删除之前，构建将失败

是否有一个列表显示在中国支持的堆栈策略资源，或者堆栈策略通常不受支持

我不懂中文，所以我不能理解aws cn文档。还要记住，堆栈策略在正常的aws构建中不会出现任何问题