Channels
#aws
Title
# aws
h
helpful-kitchen-78641
01/12/2021, 10:51 PMHi there, all of a sudden i'm getting the following error when trying to do a
pulumi uppulumi refresh Copy code
error: unable to discover AWS AccessKeyID and/or SecretAccessKey - see <https://pulumi.io/install/aws.html> for details on configuration~/.aws/config~/.aws/credentialsb
billowy-army-68599
01/12/2021, 10:53 PM
Does aws sts get-caller-identity return the account you expect it to?
h
helpful-kitchen-78641
01/12/2021, 10:56 PMyes, though i should add that the backend bucket is in one account (which is accessible via my
defaultstagingaws:profilePulumi.stackname.yamlthe accounts should have cross account access to this bucket, and this did work in the past and i'm a little lost why i just recently started getting this message
b
billowy-army-68599
01/13/2021, 12:19 AM
something to bear in mind, the credential provider for the bucket access and your pulumi program are slightly different, i can't help with debugging, but bear that in mind
h
helpful-kitchen-78641
01/13/2021, 12:24 AMany thoughts on how to maybe get some more info? I've tried
-v=3and would
AWS_SDK_LOAD_CONFIG=1thanks for that additional info on the credentials provider though, it might give me a new wall to bang my head against lol
b
billowy-army-68599
01/13/2021, 12:29 AM
-v=9 --logtostderr@helpful-kitchen-78641 the error is coming from the provider:
https://github.com/pulumi/pulumi-aws/blob/977a37d229d67a024220ed7eb197625922b9b0ce/provider/resources.go#L252
not the bucket, which is configured in the CLI
if you do:
Copy code
export AWS_PROFILE=<your profile name>
aws sts get-caller-identitydoes it work?
also are you using aws sso?
h
helpful-kitchen-78641
01/13/2021, 12:37 AMaws sts get-caller-identity/botocore-session-16[....]another "interesting" thing i just noticed,
pulumi preview --diff2 Views