white-action-27798
04/20/2021, 8:17 AMdef create_region_external_s3_artifact_buckets():
buckets = []
regions = conf.require_object('externalRegions')
regions.append(conf.require('primaryRegion'))
for region in regions:
provider = Provider(f's3-{region}-provider', region=region)
bucket_conf = {"name": f'{ARTIFACTS_BUCKET}-{region}', "acl": None, "policy": PUBLIC_OBJECT_READ_FOR_BUCKET}
name, tags = get_resource_name_by_convention(f'{ARTIFACTS_BUCKET}-{region}')
policy = _handle_bucket_policy(name, bucket_conf)
created_bucket = s3.Bucket(
name,
bucket=name,
acl=bucket_conf.get('acl'),
policy=policy,
opts=pulumi.ResourceOptions(provider=provider)
)
buckets.append(created_bucket)
pulumi.export(name, created_bucket.arn)
return buckets
After I upgraded the Pulumi version to 3.0(and the pulumi-aws package), I tried to change something in the bucket but the operation failed .
After that, I tried to run Pulumi refresh and I got this error message:
aws:s3:Bucket (prod-lightlytics-artifacts-us-east-1):
error: Preview failed: refreshing urn:pulumi:prod::lightlytics::aws:s3/bucket:bucket::prod-lightlytics-artifacts-us-east-1: 1 error occurred:
* error reading S3 Bucket (prod-lightlytics-artifacts-us-east-1): Forbidden: Forbidden
Do you have any idea why this is happening and how I overcome it?
Thanks !!broad-dog-22463
04/20/2021, 8:18 AMwhite-action-27798
04/20/2021, 8:20 AMbroad-dog-22463
04/20/2021, 8:20 AMopts=pulumi.ResourceOptions(provider=provider)
white-action-27798
04/20/2021, 8:22 AMbroad-dog-22463
04/20/2021, 8:23 AMwhite-action-27798
04/20/2021, 8:30 AMbroad-dog-22463
04/20/2021, 8:32 AMimport pulumi
from pulumi_aws import s3, Provider
provider = Provider("my-provider", region="us-east-1")
# Create an AWS resource (S3 Bucket)
bucket = s3.Bucket('my-bucket', opts=pulumi.ResourceOptions(provider=provider))
# Export the name of the bucket
pulumi.export('bucket_name', bucket.id)
and got the following result:▶ pulumi up
Previewing update (dev)
View Live: <https://app.pulumi.com/stack72/test-py-aws-issue/dev/previews/f64d91b4-6442-4aa1-a040-6f6515a09721>
Type Name Plan
+ pulumi:pulumi:Stack test-py-aws-issue-dev create
+ ├─ pulumi:providers:aws my-provider create
+ └─ aws:s3:Bucket my-bucket create
Resources:
+ 3 to create
Do you want to perform this update? yes
Updating (dev)
View Live: <https://app.pulumi.com/stack72/test-py-aws-issue/dev/updates/1>
Type Name Status
+ pulumi:pulumi:Stack test-py-aws-issue-dev created
+ ├─ pulumi:providers:aws my-provider created
+ └─ aws:s3:Bucket my-bucket created
Outputs:
bucket_name: "my-bucket-74f8e6d"
Resources:
+ 3 created
Duration: 14s
white-action-27798
04/20/2021, 8:44 AMbroad-dog-22463
04/20/2021, 9:01 AMwhite-action-27798
04/20/2021, 9:37 AMconfig:
aws:profile: prod
aws:region: us-east-1
in the stack conf file