roleArn doesn't work. serverless nextjs creates IAM role every time when deploying · serverless-nextjs/serverless-next.js#1698

Métricas do repositório

Stars: (3.998 stars)
Métricas de merge de PR: (Nenhuma PRs mesclada em 30d)

Description

Issue Summary

I specify roleArn inside serverless.yml like below. However, somehow, serverless nextjs always create IAM role.

serverless.yml

myApp:
  component: "@sls-next/serverless-component@1.19.0-alpha.27"
  inputs: 
    roleArn: 'roleArn: "arn:aws:iam::123456789012:role/MyCustomLambdaRole"'
    :

Actual behavior

Serveless nextjs creates IAM role every time when deploying.

Expected behavior

Serveless nextjs doesn't create IAM role, just uses the IAM role I specify inside serverless.yml.

Steps to reproduce

Specify IAM role inside serverless.yml
Deploy

Screenshots/Code/Configuration/Logs

Nothing.

Versions

OS/Environment: on Github Actions
@sls-next/serverless-component version: @sls-next/serverless-component@1.19.0-alpha.27
Next.js version: 10.0.1

Additional context

The content of IAM roles serverless nextjs always creates is this.

Inline policy

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Resource": "*",
            "Action": [
                "logs:CreateLogGroup",
                "logs:CreateLogStream",
                "logs:PutLogEvents"
            ]
        },
        {
            "Effect": "Allow",
            "Resource": "arn:aws:s3:::hogehoge/*",
            "Action": [
                "s3:GetObject",
                "s3:PutObject"
            ]
        }
    ]
}

Trust relations

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Principal": {
        "Service": [
          "lambda.amazonaws.com",
          "edgelambda.amazonaws.com"
        ]
      },
      "Action": "sts:AssumeRole"
    }
  ]
}

Checklist

You have reviewed the README and FAQs, which answers several common questions.
You have reviewed our DEBUGGING wiki and have tried your best to include complete information and reproduction steps (including your configuration) as is possible.
You have first tried using the most recent latest or alpha @sls-next/serverless-component release version, which may have already fixed your issue or implemented the feature you are trying to use. Note that the old serverless-next.js component and the serverless-next.js plugin are deprecated and no longer maintained.

Guia do colaborador

Direção de pesquisa: Investigue o tratamento de entrada do componente para entender por que o roleArn é ignorado. Procure a criação de funções IAM na base de código e rastreie a lógica que deveria usar o roleArn fornecido.
Pilha de tecnologia: typescriptnodejsaws
Domain: backendinfrastructurecloud
Tipo Issue: Bug
Difficulty: 2
Tempo estimado: Meio dia
Status da atividade: Ativo
Clarity: Principalmente claro
Prerequisites: AWSNode.jsTypeScriptServerless Framework
Simpatia para novatos: 55