我试着按照AWS的说明为我的用户设置ECR授权,方法是给我的用户AmazonEC2ContainerRegistryFullAccess
策略。AWS ECR GetAuthorizationToken
但是,当我尝试在我的电脑上运行aws ecr get-login
时出现错误,我没有权限。
An error occurred (AccessDeniedException) when calling the GetAuthorizationToken operation: User: arn:aws:iam::ACCOUNT_NUMBER:user/MY_USER is not authorized to perform: ecr:GetAuthorizationToken on resource: *
我做错了什么?
aws get-session-token可以从MFA获取令牌 - http://docs.aws.amazon.com/cli/latest/reference/sts/get-session-token.html –