Reputation: 177
Accessing AWS Elasticsearch from Lambda Function
I am trying to access my AWS Elasticsearch from a Lambda function.
Using the Serverless Framework and an IP-based access policy, I was already able to achieve this locally.
For the deployed lambda function I tried using the ARN of the Lambda Function Role and the ARN of the Lambda function (the one on the top right when viewing the function in the console) in my access policy.
Sadly I still get the following error:
User: anonymous is not authorized to perform: es:ESHttpPost
This is my AWS Access Policy:
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Principal": {
"AWS": "arn-of-lambda-function-role"
},
"Action": "es:*",
"Resource": "my-resource-arn"
},
{
"Effect": "Allow",
"Principal": {
"AWS": "*"
},
"Action": "es:*",
"Resource": "my-resource-arn",
"Condition": {
"IpAddress": {
"aws:SourceIp": "my-ip"
}
}
}
]
}
Upvotes: 1
Views: 825
Answers (1)
Reputation: 2777
Are you signing your requests to the ES instance? According to the https://docs.aws.amazon.com/elasticsearch-service/latest/developerguide/es-ac.html#es-managedomains-signing-service-requests
To make calls to the Elasticsearch APIs, you must sign your own requests.
Upvotes: 1
Related Questions
- how to call rest api inside aws lambda function using nodejs
- AWS Lambda function can't query elastic search running on ec2 instance
- how to search in aws elastic search via lambda?
- How to make calls to elasticsearch apis through NodeJS?
- Not going into AWS HttpClient.handleRequest to elasticsearch in lambda, Nodejs
- Lambda Function using Node.Js
- AWS.HttpClient handleRequest is not working in AWS lambda
- How to access AWS Elasticsearch from Node JS
- Using AWS Lambda with Elastic Search, getting Undefined from the search client
- Lambda function not executing http.get