Skip to content

Commit

Permalink
docs(pipelines): describe how to work around policy size errors (#20569)
Browse files Browse the repository at this point in the history
Fixes #20565.


----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
  • Loading branch information
rix0rrr authored Jun 30, 2022
1 parent 0368374 commit e0d375b
Showing 1 changed file with 16 additions and 0 deletions.
16 changes: 16 additions & 0 deletions packages/@aws-cdk/pipelines/README.md
Original file line number Diff line number Diff line change
Expand Up @@ -1379,6 +1379,22 @@ After turning on `privilegedMode: true`, you will need to do a one-time manual c
pipeline to get it going again (as with a broken 'synth' the pipeline will not be able to self
update to the right state).

### IAM policies: Cannot exceed quota for PoliciesPerRole / Maximum policy size exceeded

This happens as a result of having a lot of targets in the Pipeline: the IAM policies that
get generated enumerate all required roles and grow too large.

Make sure you are on version `2.26.0` or higher, and that your `cdk.json` contains the
following:

```json
{
"context": {
"@aws-cdk/aws-iam:minimizePolicies": true
}
}
```

### S3 error: Access Denied

An "S3 Access Denied" error can have two causes:
Expand Down

0 comments on commit e0d375b

Please sign in to comment.