Python 圣杯:无法通过pynamodb与DynamoDB连接
它在配置了.aws的本地机器上运行良好。但是,lambda无法通过自动生成的iam角色与dynamodb表连接。我甚至尝试通过IAM控制台向角色显式添加策略:Python 圣杯:无法通过pynamodb与DynamoDB连接,python,amazon-web-services,amazon-dynamodb,chalice,Python,Amazon Web Services,Amazon Dynamodb,Chalice,它在配置了.aws的本地机器上运行良好。但是,lambda无法通过自动生成的iam角色与dynamodb表连接。我甚至尝试通过IAM控制台向角色显式添加策略: { "Sid": "VisualEditor1", "Effect": "Allow", "Action": "dynamodb:*", "Resource": "arn:aws:dynamodb:ap-south-1:*:table/*" }
{
"Sid": "VisualEditor1",
"Effect": "Allow",
"Action": "dynamodb:*",
"Resource": "arn:aws:dynamodb:ap-south-1:*:table/*"
}
但仍会出现此错误(调试日志):
您必须在config.json中添加“autogen_policy”:false
,并将所有策略放在policy-dev.json中,例如:
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"logs:CreateLogGroup",
"logs:CreateLogStream",
"logs:PutLogEvents",
"s3:*",
"dynamodb:*"
],
"Resource": "*"
}
]
}
通过这种方式,您可以手动设置策略。您的VPC是否正确?idk您为表和/或角色配置了何种安全性
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"logs:CreateLogGroup",
"logs:CreateLogStream",
"logs:PutLogEvents",
"s3:*",
"dynamodb:*"
],
"Resource": "*"
}
]
}