Div*_*ivy 4 amazon-web-services amazon-iam amazon-ecr github-actions
您好,我正在使用 Github 操作 AWS EC2 和 IAM 策略来构建和推送 docker 映像。但是我收到以下错误:
错误:buildx 失败,原因:错误:无法解决:意外状态:403 禁止。
我使用的iam策略如下:
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"ecr:CompleteLayerUpload",
"ecr:GetAuthorizationToken",
"ecr:UploadLayerPart",
"ecr:InitiateLayerUpload",
"ecr:BatchCheckLayerAvailability",
"ecr:PutImage"
],
"Resource": "*"
}
]
}
不知道我应该做什么才能让它发挥作用
您必须包含ecr:BatchGetImage有问题的图像。完整的政策:
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"ecr:CompleteLayerUpload",
"ecr:BatchGetImage",
"ecr:UploadLayerPart",
"ecr:InitiateLayerUpload",
"ecr:BatchCheckLayerAvailability",
"ecr:PutImage"
],
"Resource": "arn:aws:ecr:region:111122223333:repository/repository-name"
},
{
"Effect": "Allow",
"Action": "ecr:GetAuthorizationToken",
"Resource": "*"
}
]
}
| 归档时间: |
|
| 查看次数: |
664 次 |
| 最近记录: |