Credential Issue

Question

Credential Issue

Closed this issue 5 years ago · 6 comments

I had Issue with credentials. If the key in common/main_providers.tf only export method works

2019/11/10 18:10:00 Create S3 bucket terraform-states-072717525149 returned an error: AccessDenied: Access Denied
	status code: 403, request id: 37AC6C10091FEAC5, host id: l3BbfEesPLDq8tNiE3F9rVeSO7fSMZpyz5VvHgMDTT0Ahj4xcOFXzKwYbrn/CIjLK8a2L8mW1Tw=. Sleeping for 10s and will try again.

Answer 1 · 2019-11-11T02:58:06.000Z

Have another issue:

[terragrunt] [/home/genaker/Downloads/Cloud-craft-former/cloud-craft_former/us-west-1/aws-data] 2019/11/10 18:44:00 Running command: terraform init -backend-config=skip_credentials_validation=true -backend-config=skip_metadata_api_check=true -backend-config=bucket=terraform-states-388956784340 -backend-config=dynamodb_table=terraform-locks-388956784340 -backend-config=encrypt=true -backend-config=key=aws-data/terraform.tfstate -backend-config=region=us-east-1 -input=false

Initializing the backend...

Error: Failed to get existing workspaces: AccessDenied: Access Denied
	status code: 403, request id: 88F5C30EE7A1E591, host id: fnaEdxn/GLEAOmVw6iHqNitpchXY0Zy0/ZbuVWjg3SmEUGI4UfByb3/mhRlYDVzBwuH6bSqb5P4=


[terragrunt] [/home/genaker/Downloads/Cloud-craft-former/cloud-craft_former/us-west-1/aws-data] 2019/11/10 18:44:00 Detected 1 Hooks
[terragrunt] [/home/genaker/Downloads/Cloud-craft-former/cloud-craft_former/us-west-1/aws-data] 2019/11/10 18:44:00 Module /home/genaker/Downloads/Cloud-craft-former/cloud-craft_former/us-west-1/aws-data has finished with an error: Hit multiple errors:
exit status 1
[terragrunt] [/home/genaker/Downloads/Cloud-craft-former/cloud-craft_former/us-west-1/vpc] 2019/11/10 18:44:00 Dependency /home/genaker/Downloads/Cloud-craft-former/cloud-craft_former/us-west-1/aws-data of module /home/genaker/Downloads/Cloud-craft-former/cloud-craft_former/us-west-1/vpc just finished with an error. Module /home/genaker/Downloads/Cloud-craft-former/cloud-craft_former/us-west-1/vpc will have to return an error too.
[terragrunt] [/home/genaker/Downloads/Cloud-craft-former/cloud-craft_former/us-west-1/autoscaling_2] 2019/11/10 18:44:00 Dependency /home/genaker/Downloads/Cloud-craft-former/cloud-craft_former/us-west-1/aws-data of module /home/genaker/Downloads/Cloud-craft-former/cloud-craft_former/us-west-1/autoscaling_2 just finished with an error. Module /home/genaker/Downloads/Cloud-craft-former/cloud-craft_former/us-west-1/autoscaling_2 will have to return an error too.
[terragrunt] [/home/genaker/Downloads/Cloud-craft-former/cloud-craft_former/us-west-1/vpc] 2019/11/10 18:44:00 Module /home/genaker/Downloads/Cloud-craft-former/cloud-craft_former/us-west-1/vpc has finished with an error: Cannot process module Module /home/genaker/Downloads/Cloud-craft-former/cloud-craft_former/us-west-1/vpc (excluded: false, dependencies: [/home/genaker/Downloads/Cloud-craft-former/cloud-craft_former/us-west-1/aws-data]) because one of its dependencies, Module /home/genaker/Downloads/Cloud-craft-former/cloud-craft_former/us-west-1/aws-data (excluded: false, dependencies: []), finished with an error: Hit multiple errors:
exit status 1

Answer 2 · 2019-11-11T03:25:09.000Z

Something wrong with S3 bucket permissions. Terraform creates a bucket but can't have access to it. It is a temporary fix: after making it public for read-write terragrunt works

Answer 3 · 2019-12-14T05:52:58.000Z

@antonbabenko please, can you suggest why this permission happened, what permission bucket should have?

Answer 4 · 2020-01-06T12:41:43.000Z

Hi @Genaker!

I am back from vacation, and ready to help you. Sorry for the delay.

The bucket has to be writable by your current IAM user and match the configuration as specified in remote_state block in terragrunt.hcl (check encrypt and region). Normally this bucket is created on the first run of terragrunt commands.

Answer 5 · 2020-01-08T05:07:13.000Z

Thanks, my friend checked and seems he doesn’t have any issues with S3. We can close this ticket. But you can also mention about this in the Readmy file

…

On Mon, Jan 6, 2020 at 2:41 AM Anton Babenko ***@***.***> wrote: Hi @Genaker <https://github.com/Genaker>! I am back from vacation, and ready to help you. Sorry for the delay. The bucket has to be writable by your current IAM user and match the configuration as specified in remote_state block in terragrunt.hcl (check encrypt and region). Normally this bucket is created on the first run of terragrunt commands. — You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub <#3?email_source=notifications&email_token=ACGJNZVVWXKG2PPHM7XJQJTQ4MRIRA5CNFSM4JLPWEB2YY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOEIFKU4A#issuecomment-571124336>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/ACGJNZT5FO24WGF66U3LNEDQ4MRIRANCNFSM4JLPWEBQ> .

Answer 6 · 2020-01-08T15:16:14.000Z

I will need more information about why it failed for you and what exactly was missing from your side to be able to describe it in readme or maybe change in the code.

Closing this for now.