However, this is very confusing and hard to troubleshoot.
The issue:
I configure AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY as project environment variables, but the values in the build are not the ones I set.
Tried the same with the org context: same result.
The env variables available during build are NOT the ones I set.
The reason (probably): CircleCI V1.0 used to have “AWS Permissions” page where those values are set. Our org/project had these set there before the page was removed. After the page was removed from the CircleCI UI, the values are still passed into the build environment and they override the environment variables configured at the project level.
There is no way to remove that old configuration now.
Basically, I added AWS_ACCESS_KEY_ID_TEMP and AWS_SECRET_ACCESS_KEY_TEMP as environment variables and then explicitly set them before the AWS CLI command.
I’m glad you found a workaround. I still believe this is a bug and we are trying to figure out the best way to clear those old configs (or if maybe that AWS page wasn’t as 1.0-only as we though.
Hi, I’m also facing the same issue.
I tried to rotate AWS keys. When searching my environment config the old AWS keys are not there anymore. I remember setting up a Context (which still exists) but appeared now empty.
If I configure new AWS environment variables in the same Context the old key is still used.
There is no trace of the old keys, I’m sure I setup the old key (that is still used) on 2018-12-18. I suppose that the “AWS Permissions” panel was already disabled at that time.
I have a paid plan.
Is there a way we can get notified on the bug status or shall I open a support ticket?