Any ideas what the issue here might be? Diagnostics: awsiamRole (role): error: 1 error occurred: * configuring Terraform AWS Provider: validating provider credentials: retrieving caller identity from STS: operation error STS: GetCallerIdentity, https response error StatusCode: 400, RequestID: 2b5b8da3-f695-438d-ae6a-9033007614, api error IncompleteSignature: '/2023111/us-east-1/sts/aws4_request' not a valid key=value pair (missing equal-sign) in Authorization header: 'AWS4-HMAC-SHA256 I used this command to verify correct credentials:

aws sts get-caller-identity

the aws credentials file is as 'default':

Hi @bored-car-93231! Are you able to share your Pulumi program code (at least the part that is trying to create this IAM Role resource)?

Yes! Here you go, import json import pulumi import pulumi_aws as aws import pulumi_aws_apigateway as apigateway # An execution role to use for the Lambda function role = aws.iam.Role("role", assume_role_policy=json.dumps({ "Version": "2012-10-17", "Statement": [{ "Action": "sts:AssumeRole", "Effect": "Allow", "Principal": { "Service": "lambda.amazonaws.com", }, }], }), managed_policy_arns=[aws.iam.ManagedPolicy.AWS_LAMBDA_BASIC_EXECUTION_ROLE]) # A Lambda function to invoke fn = aws.lambda_.Function("fn", runtime="python3.9", handler="handler.handler", role=role.arn, code=pulumi.FileArchive("./function")) # A REST API to route requests to HTML content and the Lambda function api = apigateway.RestAPI("api", routes=[ apigateway.RouteArgs(path="/", local_path="www"), apigateway.RouteArgs(path="/date", method=apigateway.Method.GET, event_handler=fn) ]) # The URL at which the REST API will be served. pulumi.export("url", api.url)

Thank you for sharing! I don't see anything that would be a cause of concern in your code. Out of curiosity, what environment are you running your Pulumi program in?

poetry virtual environment