Terraform后端SignatureDoesNotMatch

Question

我是terraform的新手，但我在尝试设置terraform后端以使用S3时遇到了困难。

INIT：

terraform init -backend-config="access_key=XXXXXXX" -backend-config="secret_key=XXXXX"

TERRAFORM后端：

resource "aws_dynamodb_table" "terraform_state_lock" {
  name           = "terraform-lock"
  read_capacity  = 5
  write_capacity = 5
  hash_key       = "LockID"
  attribute {
    name = "LockID"
    type = "S"
  }
}

resource "aws_s3_bucket" "bucket" {
  bucket = "tfbackend"
}

terraform {
  backend "s3" {
    bucket = "tfbackend"
    key = "terraform"
    region = "eu-west-1"
    dynamodb_table = "terraform-lock"
  }
}

错误：

Error: error using credentials to get account ID: error calling sts:GetCallerIdentity: SignatureDoesNotMatch: The request signature we calculated does not match the signature you provided. Check your AWS Secret Access Key and signing method. Consult the service documentation for details.
    status code: 403, request id: xxxx-xxxx

我真的不知所措，因为我的Terraform Infrastructure使用了这些相同的凭据，并且工作得很好。AWS上的IAM用户还拥有对Dynamo和S3的权限。

我是否应该告诉Terraform使用不同的身份验证方法？

Answer 1

删除.terraform/，然后重试，并仔细检查您的凭据。