AccessDeniedException: assumed-role not authorized to perform action on resource ( only since custom domain)

Craig · February 4, 2020, 1:24am

I encountered the 200 resource limitation with API Gateway so I split it up into several services as outlined by this blog post: https://serverless.com/blog/api-gateway-multiple-services/

After deploying the new APIs I’m suddenly getting AccessDeniedException errors in my Lambda functions trying to access the same DynamoDB table as before, despite the following resource allocation:
Resource: "arn:aws:dynamodb:us-east-1:*:*"

AccessDeniedException: User: arn:aws:sts::xxxxxxxxxxxx:assumed-role/my-api-service-staging-us-east-1-lambdaRole/my-api-users-service-staging-getUser is not authorized to perform: dynamodb:GetItem on resource: arn:aws:dynamodb:us-east-1:088023336700:table/my-table

Topic		Replies	Views
Serverless.yml iamRoleStatements modify Resource ARN -> AccessDeniedException Serverless Framework lambda , dynamodb	0	1341	January 29, 2021
AWS and DynamoDB permissions: "User is not authorized to access this resource" Serverless Framework aws	1	64990	January 8, 2018
An error occurred when calling the Invoke operation Serverless Framework aws , lambda	1	3703	June 24, 2019
[SOLVED] DynamoDB permission issue with ListTables Serverless Framework aws	2	12938	January 12, 2019
User is not authorized to access this resource Serverless Framework lambda , api-gateway , dynamodb	3	22916	September 6, 2022

AccessDeniedException: assumed-role not authorized to perform action on resource ( only since custom domain)

Related topics