Zorgan
Reputation: 9123
S3 storage: Make a bucket folder private
My s3 storage settings look like this:
Permissions > Bucket Policy
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "AllowPublicRead",
"Effect": "Allow",
"Principal": {
"AWS": "*"
},
"Action": "s3:GetObject",
"Resource": "arn:aws:s3:::my-bucket/*"
}
]
}
every object is public.
I have 3 folders, and would like to add a new folder which is private. How would I ensure it is private?
Upvotes: 2
Views: 1443
Answers (1)
Gaurav Gandhi
Reputation: 3201
You have to use an option called NotResource.
The NotResource element lets you grant or deny access to all but a few
of your resources, by allowing you to specify only those resources to
which your policy should not be applied.
So instead of Resource, you should but use NotResource.
With this, your
bucket policy should be:
{
"Sid": "AllowPublicReadWithPrivateFolder",
"Effect": "Allow",
"NotResource": "arn:aws:s3:::bucket/your_private_folder_path/*",
"Principal": {
"AWS": [
"*"
]
},
"Action": "s3:GetObject"
}
Upvotes: 3
Related Questions
- Make a bucket public in Amazon S3
- How to set public read only access on Amazon S3 Bucket?
- AWS S3 make bucket public
- How to make private bucket on AWS s3?
- Making some object of the same bucket private and some public?
- Hide S3 bucket even from Admin
- Deny Amazon S3 buckets and objects from being public
- S3 Private Bucket
- Make all keys in s3 bucket private
- S3 bucket policy: In a Public Bucket, make a sub-folder private