Reputation: 11691
How to create an IAM user with Programmatic access with Full Access to S3 using the PHP SDK
I am trying to create a new IAM user (programmatic access only) that has full access to Amazon S3 using PHP SDK.
I looked at https://docs.aws.amazon.com/aws-sdk-php/v3/api/api-iam-2010-05-08.html#createuser and I am not able to figure out what parameter is required to indicate programmatic access only to the user. Does specifying the username alone indicates it to be Programmatic user? Once I create the user, I am assuming, I have to call the "createAccessKey" method for that user to get the access credentials? Is that right?
Upvotes: 1
Views: 478
Answers (1)
Reputation: 238051
You are correct. createuser only creates an IAM user without any permissions. By default the user can't do anything, including no programmatic access. To enable the access you have to call createAccessKey.
Since the user has no permissions by default, you will also need to add IAM policy to the user with S3 permissions.
Upvotes: 1
Related Questions
- Using an IAM service role for credentials in AWS services with PHP
- Get AWS IAM credentials from PHP SDK
- AWS EC2 access to S3 with IAM role
- create new user IAM with aws php sdk and limit access of one bucket
- AWS S3 grant access to single IAM user
- Grant IAM User Permissions to AWS S3 File Through AWS PHP SDK
- Access someone else's AWS S3 bucket with PHP SDK
- Authenticating and using iAM users to access S3
- Set permissions on accessing a certain file on S3 using IAM with the PHP SDK?
- Amazon IAM User + Granting Access to S3