Amazon cloudformation AWS中国验证堆栈策略时出错未知资源类型
我们有以下用于在aws和aws中国部署的堆栈策略Amazon cloudformation AWS中国验证堆栈策略时出错未知资源类型,amazon-cloudformation,amazon-cognito,aws-secrets-manager,Amazon Cloudformation,Amazon Cognito,Aws Secrets Manager,我们有以下用于在aws和aws中国部署的堆栈策略 { "Statement": [ { "Effect": "Allow", "Action": "Update:*", "Principal": "*", "Resource": "*" },
{
"Statement": [
{
"Effect": "Allow",
"Action": "Update:*",
"Principal": "*",
"Resource": "*"
},
{
"Effect": "Deny",
"Action": [
"Update:Replace",
"Update:Delete"
],
"Principal": "*",
"Resource": "*",
"Condition": {
"StringEquals": {
"ResourceType": [
"AWS::EC2::VPC",
"AWS::EC2::Subnet",
"AWS::S3::Bucket",
"AWS::RDS::DBCluster",
"AWS::RDS::DBInstance",
"AWS::KMS::Key",
"AWS::SecretsManager::Secret",
"AWS::Cognito::UserPool",
"AWS::Cognito::UserPoolClient",
"AWS::Cognito::IdentityPool",
"AWS::ApiGateway::RestApi"
]
}
}
}
]
}
但是,部署仅在中国环境下失败,错误如下:
调用SetStackPolicy时发生错误(ValidationError)
操作:验证堆栈策略时出错:未知资源类型
语句{}中的“AWS::SecretsManager::Secret”
如果这次删除Cognito:UserPool的SecretsManager条目,也会发生同样的情况
这让我相信,在我将堆栈策略全部从cn环境中删除之前,构建将失败
是否有一个列表显示在中国支持的堆栈策略资源,或者堆栈策略通常不受支持
我不懂中文,所以我不能理解aws cn文档。
还要记住,堆栈策略在正常的aws构建中不会出现任何问题