I can't enable write access to CloudWatch logs in AWS API Gateway by providing a new IAM Role.
I checked several tutorials, checked everything. Even attached AdministratorAccess policy to my IAM Role and checked that The identity provider(s) apigateway.amazonaws.com is a Trusted entity.
But if still fails when I try to enable logs in API Gateway:
The role ARN does not have required permissions set to API Gateway
iam:passRolepermission. - Ka Hou Ieong