broad-zoo-34077
09/05/2023, 3:45 PMcrooked-daybreak-55253
09/05/2023, 4:01 PMcrooked-daybreak-55253
09/05/2023, 4:20 PMus-east-2
even though you’re passing the <http://aws.us|aws.us>__east_1_
alias to the module right?
I think this is actually ok. The aws_cur_report_definition
needs to be created in us-east-1, but the s3 bucket itself can be in another region.gorgeous-twilight-75626
09/05/2023, 4:29 PMcrooked-daybreak-55253
09/05/2023, 4:30 PMgorgeous-twilight-75626
09/05/2023, 4:35 PM│ Error: putting S3 Bucket Notification Configuration: InvalidArgument: Unable to validate the following destination configurations
│ status code: 400, request id: 2NMDPPYZ8YECJJ2V, host id: b51xW0qHu8EqBYC8vZYk7VZmT1cGaAt275S5bWpGAWCl1haHMclb5lsiTWLlTgAK9CXGzuXTjt4=
│
│ with module.infracost.aws_s3_bucket_notification.sns_topic,
│ on .terraform/modules/infracost/main.tf line 356, in resource "aws_s3_bucket_notification" "sns_topic":
│ 356: resource "aws_s3_bucket_notification" "sns_topic" {
│
╵
╷
│ Error: creating Cost And Usage Report Definition (InfracostReportXXXXXXXXXXXXX): ValidationException: Failed to verify customer bucket permission. accountId= XXXXXXXX, bucket name: infracost-cur-XXXXXXXXXXXX, bucket region: us-east-2
│
│ with module.infracost.aws_cur_report_definition.costand_usage_report,
│ on .terraform/modules/infracost/main.tf line 418, in resource "aws_cur_report_definition" "costand_usage_report":
│ 418: resource "aws_cur_report_definition" "costand_usage_report" {
Which I thought may have been correlated with the regions for Infracost, but now I see it may have been because my default provider uses a profile
variable to separate my AWS creds for CLI. And it was using my default credentials instead of the profile
credentials. After adding my profile
to the provider
for Infracost, I'm getting a better error that's permissions related.