我想向 aws 提供的主题发布消息(aws 为我提供了该主题以用于集成目的)。在主题上,该策略包含所有操作,我的账户也有 AmazonSNSFullAccess 策略。
{
Policy= {
"Version":"version_number",
"Id":"policy_name",
"Statement":[
{
"Sid":"statement",
"Effect":"Allow",
"Principal":{"AWS":"*"},
"Action": ["SNS:GetTopicAttributes","SNS:SetTopicAttributes","SNS:AddPermission","SNS:RemovePermission","SNS:DeleteTopic","SNS:Subscribe","SNS:ListSubscriptionsByTopic","SNS:Publish","SNS:Receive"],
"Resource":"resource",
"Condition":{"StringEquals":{"AWS:SourceOwner":"number_of_account"}}},
}]
some_other_information_about_subscriptions
}
}
但是当我尝试向主题发布消息时,我收到错误
software.amazon.awssdk.services.sns.model.AuthorizationErrorException: User is not authorized to perform: SNS:Publish on resource: <resource> (Service: Sns, Status Code: 403, Request ID: <request_id>, Extended Request ID: null)
正如我所看到的政策很好,但我不明白为什么会发生这个错误。
有没有人面对过它并知道发生了什么?
谢谢!