Timka
Reputation: 1769
Read-Only access to S3 folder on Amazon
I'm trying to set Read-Only access to a specific folder on Amazon. I have a 'corporate' bucket and folder 'software' inside it. For some reason the following code doesn't work for me (I'm using CloudBerry for the verification):
{
"Statement": [
{
"Effect": "Allow",
"Action": [
"s3:Get*",
"s3:List*"
],
"Resource": "arn:aws:s3:::corporate/software/*"
}
]
}
But if I use:
"Resource": "*"
I'm able to see all the buckets... Am I missing something?
Upvotes: 1
Views: 4382
Answers (1)
Timka
Reputation: 1769
Code below worked for me:
{
"Statement": [
{
"Effect": "Allow",
"Action": [
"s3:ListBucket",
"s3:GetBucketLocation",
"s3:ListBucketMultipartUploads"
],
"Resource": "arn:aws:s3:::corporate",
"Condition": {}
},
{
"Effect": "Allow",
"Action": [
"s3:GetObject",
"s3:GetObjectAcl",
"s3:GetObjectVersion",
"s3:GetObjectVersionAcl"
],
"Resource": "arn:aws:s3:::corporate/software/*",
"Condition": {}
},
{
"Effect": "Allow",
"Action": "s3:ListAllMyBuckets",
"Resource": "*",
"Condition": {}
}
]
}
Upvotes: 3
Related Questions
- AWS S3 Bucket Permissions - Access Denied
- Restrict read-write access from my S3 bucket
- AWS S3 folder permission for users
- Amazon S3 folder permissions
- AWS s3 Access Denied because of Ownership?
- Amazon S3 Folder Level Permissions
- aws s3 write permissions - access deined
- Amazon S3 Write Only access
- S3 public read-only files but private directories
- S3 policy - public write but only authenticated read