Reputation: 3611
Grant access to AWS S3 bucket/folder to users without AWS account
I want to make a Video On Demand service using AWS S3 , and I would like to restrict each of my clients to his own bucket/folder (which one schema is best..) . I want a client to have access only to his bucket/folder, but these people are not going to have an AWS account.
I read ,and still reading, about IAM users,roles and policies but I have not found something pointing to what I want to achieve.
Upvotes: 0
Views: 3713
Answers (1)
Reputation: 1701
If you know the IP address (or CIDR blocks) of each client, you can then restrict your bucket with a policy.
http://docs.aws.amazon.com/AmazonS3/latest/dev/example-bucket-policies.html
Alternatively, you could just set up IAM accounts for them within your own account, and scope their access accordingly. That would let them use a very limited form of the AWS Console. You can even write your IAM policies so that users automatically have access to something like:
s3://your-bucket/%username%/
Upvotes: 1
Related Questions
- How to access files from an Amazon S3 bucket without an account?
- AWS S3 folder permission for users
- Grant EC2 instance access to S3 Bucket
- How to give external AWS IAM user access to specific S3 Bucket folder
- Allow access to S3 Bucket from all EC2 instances of specific Account
- S3 grant object access to users
- AWS S3 bucket access for role/users- Select Role Type
- Granting permissions to an Amazon S3 bucket
- Permissions on Amazon S3 objects without AWS account
- AWS -Is it possible to grant access permissions to an S3 object using my client's AWS Account Id