serverless-apigateway-service-proxy Support server-side encryption for Kinesis stream

Support server-side encryption for Kinesis stream

Open redcordlau opened this issue 5 years ago • 1 comments

If we enabled server-side encryption in Kinesis resource, the compiled IAM policy has not sufficient rights to do the putRecord(s), result in "__type": "KMSAccessDeniedException", "message": "User: arn:aws:sts::xxxxxxxxx:assumed-role/xxxxxxxxxxxxx is not authorized to perform: kms:GenerateDataKey on resource: arn:aws:kms:xxxxxxx:xxxxxx:key/xxxxxxxxxxxxxx"

Sep 04 '20 07:09 redcordlau

Is the only workaround currently for this to use a custom iam role?

Dec 13 '22 09:12 codezninja

serverless-apigateway-service-proxy serverless-apigateway-service-proxy copied to clipboard

Support server-side encryption for Kinesis stream

serverless-apigateway-service-proxy
serverless-apigateway-service-proxy copied to clipboard