Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Parameter Store request timing out inside of AWS Lambda

Tags:

amazon-web-services

aws-lambda

serverless

serverless-framework

I'm attempting to access the AWS SSM Parameter store, like this article does. I have tested the lambda function locally and it works as expected. When pushed to AWS, however, the lambda fails when attempting to retreive the config; it times out: 

{
    "errorMessage": "2018-09-02T04:55:49.096Z 71a5006a-ae6c-11e8-9322-313ba5e28048 Task timed out after 6.01 seconds"
}

I have the following permissions added to my serverless.yml. I have made it as unrestricted as possible to try to find where the error is. Additionally, the parameter is just a string, so it does not use KMS.

service: pwaer-messages-service

provider:
  name: aws
  runtime: nodejs8.10
  vpc:
    securityGroupIds:
      - sg-222f126f
    subnetIds:
      - subnet-756aef12
      - subnet-130f8f3d
  environment:
    NODE_ENV: ${opt:stage, 'dev'}

  iamRoleStatements:
    - Effect: 'Allow'
      Action: 'ssm:**'
      Resource:
        - 'Fn::Join':
          - ':'
          -
            - 'arn:aws:ssm'
            - Ref: 'AWS::Region'
            - Ref: 'AWS::AccountId'
            - 'parameter/*'

functions:
  receiveText:
    handler: dist/receive.handler
    events:
      - http:
          path: sms/parse
          method: post

What am I missing?

like image 983
Ulad Kasach Avatar asked Sep 02 '18 04:09

Ulad Kasach

People also ask

Why does my Lambda keep timing out?

There are three reasons why retry and timeout issues occur when invoking a Lambda function with an AWS SDK: A remote API is unreachable or takes too long to respond to an API call. The API call doesn't get a response within the socket timeout.

Can Lambda access parameter store?

At this point the lambda function's role has been extended with a policy that grants access to some Parameter Store actions on a specific parameter. If your Lambda function needs to access multiple SSM parameters, pass multiple ARN values to the Resource element of the policy, or set the Resource to * .

1 Answers

Since mentioned Lambda doesn't have access to the public internet, to access AWS APIs please setup a VPC endpoint.

As per the description - "VPC endpoint enables you to privately connect your VPC to supported AWS services and VPC endpoint services".

For AWS Systems Manager follow this procedure - Setting Up VPC Endpoints for Systems Manager

like image 96
Lech Migdal Avatar answered Oct 15 '22 05:10

Lech Migdal
Sign in to Comment

Related questions

Deploy code directly to AWS EC2 instance using Github Actions
Amazon S3 Creating Folder through .NET SDK vs through Management Console
How to backup Amazon RDS MS SQL Server database instance and restore locally
How to call an aws java lambda function from another AWS Java Lambda function when both are in same account, same region
How to unlock the file after AWS S3 Helper uploading file?
SQS dead letter queue not triggered on AWS Lambda invocation errors
How to change yarn scheduler configuration on aws EMR?
How to use boto3 to get a list of EBS snapshots owned by me?
ec2 error starting instances insufficient capacity
Is there an elegant way to post messages to AWS SQS with visibility delay of longer than 15 minutes?
How to hide instances in EC2 based on tag - using IAM?
How can you get the Elastic Beanstalk Application Version in your application?
How to implement inbound email on Amazon AWS?
create empty folder S3 ruby SDK
How can I create an AWS Lambda function using the AWS CLI?
Dynamodb- Adding non key attributes
What does ingestion time mean in CloudWatch
Store multiple elements in json files in AWS Athena
Creating load balancer failed Reason: Default VPC not found
Custom domain feature for saas product customers

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!