8,393 questions
0
votes
1
answer
24
views
AWS-Cloudformation: Ipv6 EC2 Route in a Private Nat Subnet - Provide one of DestinationCidrBlock or DestinationIpv6CidrBlock and a valid routeTableId
I am currently creating a network infrastructure within my vpc, that has private subnets and has a NAT gateway. I have a Route Table that has the private subnets associated to it and I intend to have ...
- 15
0
votes
0
answers
53
views
AWS CDK use api gateway in a nested stack
I have this api gateway in my main stack:
api_gateway = _api_gw.LambdaRestApi(
self,
f"{construct_id}-gw-api",
handler=lambda_hello,
rest_api_name=f"gw-api{env_ext}"...
- 43
0
votes
1
answer
83
views
Changing DynamoDB from Provisioned to On Demand via CDK process?
I'm trying to change my DynamoDB table from Provisioned to On Demand via CDK.
The commented out code is what my table was provisioned with before, for autoscaling.
table = new TableV2(this, props....
0
votes
1
answer
181
views
ECS Task in private subnet is not able to pull image from ECR, using AWS PrivateLink
I am using AWS Cloudformation to build the infrastructure, I have a vpc that have a private subnet and 2 public subnets, the private subnet has the ecs service with ecs cluster and ecs task, the alb ...
- 766
0
votes
0
answers
27
views
How to have two different cfn-exec-roles to be used in two CloudFormation stacks?
While bootstrapping the environment for CloudFormation, we create a role with this format
cdk-hnb659fds-cfn-exec-role-[ACCOUNT]-[REGION]
This role is assumed by CloudFormation to create,delete and ...
- 127
0
votes
0
answers
22
views
sam watch with Separate Lambda Layer and Function Stacks -- how to use newest layers in lambdas during development
I'm looking for the recommended local development workflow for a project that uses multiple, independent AWS SAM applications within a single monorepo.
Setup:
Layers Stack: one SAM application ...
- 1,163
0
votes
1
answer
59
views
Using PreSignUp Lambda with Cognito suddenly fails to verify email
Repro steps:
Verification emails work as handled by Cognito thanks to the IaC setting for UserPool
(this one:
AutoVerifiedAttributes:
- email
)
2. add a Lambda function trigger to the userpool
(e.g ...
- 117
0
votes
1
answer
69
views
AWS SDK for Rust not getting region from specified profile
I have various AWS regions configured, and they each have a default region specified. Thus with AWS CLI I can do this to list CloudFormation exports for the default profile:
aws cloudformation list-...
- 22.2k
0
votes
0
answers
81
views
AWS SAM - How do I conditionally set CodeUri property for a Lambda function?
I'm working on a AWS Sam Application (repo here) where I want to conditionally set CodeUri to use an S3 bucket 'hot-reload' for running locally on Localstack.
SpringBootLambdaFunction:
Type: AWS:...
1
vote
0
answers
55
views
GitHub Actions for SAM Deployment of Lambda Functions '.deps.json' file Error
Even with the sample from the AWS toolkit, each time I use GitHub Actions to build and publish a lambda function I am getting the error
Error: .NET binaries for Lambda function are not correctly ...
- 11
1
vote
1
answer
227
views
Is Cognito explicit auth flow `ALLOW_USER_SRP_AUTH` included in `ALLOW_USER_AUTH`?
In the Cognito CloudFormation resourceAWS::Cognito::UserPoolClient documentation for ExplicitAuthFlows it says:
ALLOW_USER_AUTH: Enable selection-based sign-in with USER_AUTH. This setting covers ...
- 22.2k
0
votes
1
answer
58
views
SAM template authorizerr error: authorizerUri/Fn::Sub/1/__FunctionArn__] 'null' values are not allowed in templates
Trying to create and API Gateway with lambda and attach the authorizer to it. The api and lambda creation works perfectly, but when I add the authorizer section, I get the following error:
Error: ...
- 349
0
votes
0
answers
29
views
Elastic Beanstalk fails to create an Auto Scaling Group
I get the following error when I try to deploy a 'High Availability' EBS environment
Creating Auto Scaling group named: awseb-e-uyrzzcumbu-stack-AWSEBAutoScalingGroup-H6IXr3kSXJO8 failed. Reason: ...
- 477
0
votes
1
answer
124
views
AWS Athena is not processing any data from glue table if partition projection is enabled
I have a glue table that is fed by partitioned data in s3. The issue at hand is in Athena that if the partition projection is turned off, and I run MSCK REPAIR TABLE <my table>; and SELECT * ...
- 21
0
votes
1
answer
78
views
aws lex bot through cloud formation and lambda
My use case is to create a bot using the YAML file. When a user asks questions related to my knowledge base, I need the bot to provide answers. I tried using the QnA intent in the AWS console, but it’...
0
votes
3
answers
76
views
aws QnA intent cloudformation template not working
I want to create a lex bot with serverless.yaml and I want to use the aws bedrocks builtin intent qnaintent. I am able to create the bot with intents from the serverless.yaml but I am unable to add ...
0
votes
0
answers
32
views
AWS CDK Codepipeline deploy certain Stacks within cdk Stage
I have an existing aws account with infrastructure that has already been deployed via CDK with a codepipeline. The codepipeline is specifying which stacks to deploy via the addStage function of ...
- 63
0
votes
0
answers
119
views
Is CDK's auto-generated AssumeRolePolicy sufficient, or should I specify a condition for specific ARN(s)?
I've been working with CDK for a bit, and haven't had any reason to modify any of the default roles/policies that are auto-generated when I create resources like lambdas or step functions. However, I ...
0
votes
2
answers
35
views
CloudFormation : How to parse mutiples key from secretmanager to container task definition?
I want to define multiple AWS Batch jobs that all use the same environment variables defined in Secrets Manager.
I understand CloudFormation does not supports YAML anchors and aliases. Is there a way ...
0
votes
2
answers
138
views
Use !ImportValue together with !Sub in a yaml template
I have a CF template where I export a value like this:
Outputs:
LambdaLogGroup:
Value: !Ref LambdaLogGroup
Export:
Name: !Sub "LambdaLogGroup-${EnvironmentName}${EnvironmentId}"
...
- 2,672
0
votes
0
answers
11
views
Why do CloudFormation stack dependencies report UPDATE_COMPLETE in reverse order?
I have multiple CloudFormation stacks with serial dependencies (Stack A2 depends on Stack A1, etc.).
I've noticed a pattern during stack updates where CloudFormation appears to report the ...
- 1,140
0
votes
1
answer
71
views
Does AWS CloudFormation provide a one-level map?
I'm aware of Fn::FindInMap, which provides a two-level map. Consider this example from a Mappings section:
ShortNames:
us-east-1:
'753': us
'426': us
eu-west-1: ...
- 1,558
1
vote
2
answers
45
views
Is there a way to specify what module version to use in the Cloudformation template?
If a module is registered in CloudFormation with a default version, is there a way to specify a different version in the CF YAML file? For instance, if the default version is '000002' but I want to ...
0
votes
1
answer
62
views
Enable "Include sub domains" in an AWS CloudWatch RUM monitor using CDK?
CloudWatch RUM in the AWS UI console has a field for "Application domain" and a separate checkbox for "Include sub domains".
However, there is no corresponding boolean field in ...
- 3,138
1
vote
0
answers
185
views
AWS Cloudformation : Fn::ForEach on empty CommaDelimitedList
I need to create AWS Cloudfront distributions in a ForEach loop based on the strings coming in a parameter named UnauthDomains of type CommaDelimitedList.So 5 comma seperated strings in the list and ...
- 263