I m working on a project that uses as far as I can tell only

Question

I m working on a project that uses as far as I can tell only the default AWS provider configured in the default manner When I use env vars AWS ACCESS KEY ID AWS SECRET ACCESS KEY and AWS SESSION TOKEN things work But when I unset those vars and use only AWS PROFILE correctly set it Pulumi complains with ```Error invocation of aws index getRegion getRegion returned an error unable to discover AWS AccessKeyID and or SecretAccessKey see <https pulumi io install aws html> for details on configuration```

little-cartoon-10569 · Answer

My theory is that because my profile s region and source profile are configured in ~ aws config rather than ~ aws credentials it s not being picked up correctly

little-cartoon-10569 · Answer

I do remember having to set a variable in the distant past that said use the config file as well as the credentials file but I can t remember if that was an AWS thing or a Pulumi thing

little-cartoon-10569 · Answer

Has anyone got any suggestions for what I can try to get past this

billowy-army-68599 · Answer

what s actually in your credentials file are the keys in there

billowy-army-68599 · Answer

the env var you re thinking of is `AWS SDK LOAD CONFIG=1`

little-cartoon-10569 · Answer

Keys are in creds file in profile X AWS PROFILE is set to profile Y which is defined in confg with source profile = X and a role arn

little-cartoon-10569 · Answer

That is the var I was thinking of but it didn t resolve the problem this time will try narrowing down the problem to an MCVE

little-cartoon-10569 · Answer

Solved I had 2 issues a profile was defined twice AWS CLI reported a format error removing 2nd copy of the profile fixed that and someone had deleted my IAM role face with rolling eyes