Amazon web services 当源域名为S3 bucket时，CloudFront InvalidArgument

我无法将以前创建的S3 Bucket（它不是网站S3 Bucket！）用于我的CloudFront分发源之一：

Error: error creating CloudFront Distribution: InvalidArgument: The parameter Origin DomainName does not refer to a valid S3 bucket.
    status code: 400, request id: xxxx

  on modules/cloudfront/main.tf line 20, in resource "aws_cloudfront_distribution" "app":
  20: resource "aws_cloudfront_distribution" "app" {

注意：我通过Web控制台使用相同的S3 Bucket成功地创建了一个具有源站的CloudFront发行版，以验证S3 Bucket

resource "aws_s3_bucket" "static" {
    bucket = "static.any-domain.tld"
    acl = "public-read"
}

resource "aws_cloudfront_distribution" "app" {
    enabled         = true
    is_ipv6_enabled = true
    comment         = "k8s test"

    # without this origin, cloudfront distribution is successfully created
    origin {
        # tried different dns domain names:
        # static.any-domain.tld.s3.eu-west-1.amazonaws.com
        # or static.any-domain.tld.s3-eu-west-1.amazonaws.com
        # or static.any-domain.tld.s3.amazonaws.com
        domain_name = aws_s3_bucket.static.bucket_regional_domain_name
        origin_id = "S3-${aws_s3_bucket.static.bucket}/any/path"
        origin_path = "/any/path"

        # tried with and without the following:
        s3_origin_config {
            origin_access_identity = "origin-access-identity/cloudfront/${aws_cloudfront_distribution.app.id}"
        }
    }

    origin {
        domain_name = "any-valid-stuff.eu-west-1.elb.amazonaws.com"
        origin_id   = "ELB-any-valid-stuff"

        custom_origin_config {
            origin_read_timeout = 30
            origin_keepalive_timeout = 30
            http_port = 80
            https_port = 443
            origin_protocol_policy = "http-only"
            origin_ssl_protocols = ["TLSv1"]
        }
    }
...
}

---

我现在遇到了完全相同的问题。尝试了各种域名，但都不起作用如果它能从控制台工作，你能运行aws cli来获取域和其他参数设置的详细信息吗？@Marcin:我做了，我的选项没有问题：-（是新的S3存储桶还是现有的？@mokugo devops testet，有新的和现有的（通过terraform导入）