Reputation: 99
error 403 while building the app in AWS amplify
I was trying to build a simple serverless web app in AWS. So, I put my static files in codecommit and tried to host it through AWS Amplify.The AWS builds the amplify.yml for us by default, but it is failing in the build stage. I understood that there is something wrong in amplify.yml and am not getting how to configure it.
amplify.yml :
version: 1
frontend:
phases:
# IMPORTANT - Please verify your build commands
build:
commands: []
artifacts:
# IMPORTANT - Please verify your build output directory
baseDirectory: /
files:
- '**/*'
cache:
paths: []
error I was shown:
2021-01-23T15:01:54.840Z [INFO]: # Cloning repository: https://git-codecommit.us-east-
2.amazonaws.com/v1/repos/wildrydes-site
2021-01-23T15:01:55.176Z [INFO]: Cloning into 'wildrydes-site'...
2021-01-23T15:02:02.660Z [INFO]: fatal: unable to access 'https://git-codecommit.us-east-
2.amazonaws.com/v1/repos/wildrydes-site/': The requested URL returned error: 403
Upvotes: 0
Views: 1421
Answers (2)
Reputation: 141
You can find the execution role that Amplify uses to run its builds by navigating to AWS Amplify > General (in the left-hand column). Under the Settings section, you'll see a value for the "Service role" field. It will look something like this: "arn:aws:iam:::role/service-role/AWSAmplifyExecutionRole-xxxx".
Once you find that, navigate to IAM > Roles and search for the service role that you just found (AWSAmplifyExecutionRole-xxxx) and click on it. Then click "Attach policies". Search for the "AWSCodeCommitReadOnly" policy and attach it to the role.
You should be able to clone your CodeCommit repository in your Amplify build now.
Upvotes: 1
Reputation: 101
With the limited amount of information provided, the best I can offer is the issue is somewhere in your IAM privileges for your CodeCommit user. AWS components generally need to have the appropriate Group, Role, and/or Policy to complete the action.
Put another way: CodeCommit is giving a 403 Forbidden error because whatever is attempting doing the cloning doesn't have the right permissions. Give it the right permissions.
Upvotes: 1
Related Questions
- not authorized to perform: amplify:CreateApp on resource... - Amplify Init + Angular
- Permission problem accessing CodeCommit repository during build phase
- AWS Codecommit - fatal: unable to access : The requested URL returned error: 403
- The requested URL returned error: 403, AWS Server less: Amplify app to CodeCommit
- amplify 403 comes up that too with a CORS error
- How to fix Access Denied error on AWS Amplify
- Getting 403 ACCESS DENIED error when deploying React Web app on AWS Amplify
- AWS failed to create backend for amplify app
- Amplify CreateApp Permission
- AWS Amplify React Native, GET request error 403 status code