问题描述
我正在尝试将HMAC凭据用于Terraform中的Cloud Object Storage / S3,但看到此错误。
Error: Unsupported attribute
on main.tf line 56,in resource "ibm_cos_bucket" "sink_bucket":
56: ACCESS_KEY = ibm_resource_key.cos_key.credentials.cos_hmac_keys.access_key_id
This value does not have any attributes.
Error: Unsupported attribute
on main.tf line 57,in resource "ibm_cos_bucket" "sink_bucket":
57: SECRET_ACCESS_KEY = ibm_resource_key.cos_key.credentials.cos_hmac_keys.secret_access_key
This value does not have any attributes.
我通过在创建HMAC=true
时设置cos_key
来生成COS HMAC凭证
resource ibm_resource_key cos_key {
name = "${var.basename}-cos-key"
resource_instance_id = ibm_resource_instance.cos.id
role = "Writer"
parameters = {
service-endpoints = "private"
HMAC = true
}
}
当我检查terraform.tstate
文件时,我看到如下所示的凭据
"cos_key": {
"value": {
"credentials": {
"apikey": "muydB9TyqWr9_aCmFlSRSu-JG3J3PPzXcxxxxxxx","cos_hmac_keys.access_key_id": "e0892b46cfe1411cxxxxxx0","cos_hmac_keys.secret_access_key": "8520aca8680e3e930f74a8869xxxxxx8a27a6",...
}
}
}
解决方法
这对我有用
provisioner "local-exec" {
command = "echo 'Credentials for MINIO client...'"
environment = {
ACCESS_KEY = ibm_resource_key.cos_key.credentials["cos_hmac_keys.access_key_id"]
SECRET_ACCESS_KEY = ibm_resource_key.cos_key.credentials["cos_hmac_keys.secret_access_key"]
COS_REGION = var.region
COS_BUCKET_NAME = ibm_cos_bucket.sink_bucket.bucket_name
}
}
这里的问题是包括cos_hmac_keys.access_key_id
之类的点(。)的自定义json属性。 Terraform会引发错误,直到您使用以下符号
credentials["cos_hmac_keys.access_key_id"]