"errorMessage": "User: arn:aws:sts::123456789012:assumed-role/GenesysLambdaRole/i-0598c0d53EXAMPLE is not authorized to perform: lambda:InvokeFunction on resource: arn:aws:lambda:us-west-2:123456789012:function:ProcessWFMData"
I am calling a Lambda from an Architect Data Action. The IAM policy attached to the execution role looks correct. It’s a standard lambda:InvokeFunction allow statement.
The Lambda is in the same account. The Data Action JSON is below.
{
"type": "external",
"url": "https://lambda.us-west-2.amazonaws.com/2015-03-31/functions/arn:aws:lambda:us-west-2:123456789012:function:ProcessWFMData/invocations",
"method": "POST",
"headers": {
"Authorization": "AWS4-HMAC-SHA256 Credential=..."
}
}
Why is it failing?