aws_canonical_user_id data source documentation should indicate ListAllMyBuckets permission is required #24007
Labels
documentation
Introduces or discusses updates to documentation.
service/s3
Issues and PRs that pertain to the s3 service.
Milestone
Community Note
Description
The documentation for aws_source_canonical_user_id should mention that the
s3:ListAllMyBuckets
permission is required. Without this permission, you get the following error when runningterraform plan
with the sample terraform code listed below:Debug logging reveals the 403 was from a ListBuckets request:
It was not immediately obvious to me why ListAllMyBuckets permission was required, the terraform documentation page I linked does link to this page though:
From that page there is a link to Finding the canonical user ID for your AWS account which confirms the requirement:
It might be useful to add this important tidbit to the terraform documentation. I tried it with just the ListBucket permission, but it seemed to only work if I granted the ListAllMyBuckets permission.
New or Affected Resource(s)
Potential Terraform Configuration
References
The text was updated successfully, but these errors were encountered: