Comments (4)
amstuta
commented on August 11, 2024
1
Yes you can push a PR first on go-ovh, we'll be happy to review it :)
About the /services endpoint, it is not (yet) restricted by the IAM policies, that's why you get this error.
The solution in the meantime is to use the application key / application secret / consumer key.
from terraform-provider-ovh.
amstuta
commented on August 11, 2024
1
@0x416e746f6e thanks for your contribution on go-ovh, v1.6.0 has been released.
from terraform-provider-ovh.
amstuta
commented on August 11, 2024
Hello @0x416e746f6e, thanks for opening this issue.
This seems like a good idea indeed.
It requires first a patch of the go-ovh library as it doesn't accept directly an access_token today.
We'll work on it whenever possible and keep you posted here !
from terraform-provider-ovh.
0x416e746f6e
commented on August 11, 2024
This seems like a good idea indeed. It requires first a patch of the
go-ovhlibrary as it doesn't accept directly an access_token today.We'll work on it whenever possible and keep you posted here !
@amstuta if that helps I have a working patch on my machine. Can send a PR (for both of the repos).
Unfortunately, I am stuck on some strange issue when the access token fails to access /servics path with error:
-----------------------------------------------------
2024/06/02 12:43:11 [DEBUG] OVH API Request Details:
---[ REQUEST ]---------------------------------------
GET /1.0/services/126829131 HTTP/1.1
Host: eu.api.ovh.com
User-Agent: github.com/ovh/go-ovh (Terraform//)
Accept: application/json
Authorization: Bearer REDACTED
Accept-Encoding: gzip
-----------------------------------------------------
2024/06/02 12:43:12 [DEBUG] OVH API Response Details:
---[ RESPONSE ]--------------------------------------
HTTP/1.1 403 Forbidden
Connection: close
Transfer-Encoding: chunked
Access-Control-Allow-Headers: X-Ovh-Timestamp, X-Ovh-Consumer, X-Ovh-Application, X-Ovh-Signature, X-Ovh-Session, Authorization, Content-Type, X-Challenge-Response, X-Challenge-Payload
Access-Control-Allow-Methods: GET, PUT
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: X-Pagination-Cursor-Next, X-Ovh-Queryid
Cache-Control: no-cache, no-store
Content-Type: application/json; charset=utf-8
Date: Sun, 02 Jun 2024 09:43:12 GMT
Server: nginx
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Iplb-Instance: 47056
X-Iplb-Request-Id: 6D268E5B:4447_8D5FBADF:01BB_665C3EAF_13EBF2E6:21AC
X-Ovh-Queryid: EU.ext-3.665c3eb0.2937583.1ebf1c1d2662ca109aa393a127ff342f
X-Xss-Protection: 1; mode=block
50
{
"class": "Client::Forbidden",
"message": "You are not allowed to call this route"
}
0
Do you know why could that be? (The underlying client has urn:v1:eu:permissionsGroup:ovh:globalAdmin permission group attached to it).
from terraform-provider-ovh.
Related Issues (20)
- [BUG] list order not consistent in containerregistry_ip_restrictions HOT 3
- [BUG] when creating a public cloud project, got 403 "This order can't be paid with 'bankAccount'" error HOT 6
- [DOCS] Error with doc for datasource ovh_order_cart_product_plan in cloud_project resource on 0.44.0 HOT 1
- [BUG] ovh_cloud_project_kube_oidc crashed HOT 4
- [FEATURE] Project id (Service name) should not be required HOT 3
- [BUG] ovh_domain_zone_record: can't use ttl default value of '0' HOT 2
- When importing `ovh_cloud_project` it forces replacement HOT 3
- [BUG] Impossible to use terraform to configure a compute instance - No suitable endpoint could be found in the service catalog HOT 2
- [BUG] ovh_dedicated_server_install_task fail on invalid partition schema (with no error) HOT 2
- [FEATURE] Create Gateway Interface using the provider HOT 2
- [FEATURE] Use existing floating IP on gateway HOT 3
- [FEATURE] Missing "description" argument in ovh_dedicated_nasha_partition_access HOT 4
- [BUG] `ovh_cloud_project_kube` requires `load_balancers_subnet_id` but doesn't properly update it on the resource HOT 1
- [FEATURE] : allow dedicated server displayName configuration HOT 5
- [FEATURE] [Logs Data Platform] Get the write token of a logs data stream HOT 4
- [FEATURE] [Logs Data Platform] Setting the retention period of a logs data stream HOT 7
- [BUG] Error: Provider produced inconsistent final plan (resource ovh_cloud_project_database with changed node subnet) HOT 1
- [FEATURE] resource_cloud_project_user_s3_policy - add refresh for policy property HOT 1
- [BUG] ovh_cloud_project has constantly the same change after apply with 0.48.0
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from terraform-provider-ovh.