mangotango
Reputation: 376
AWS S3 empty bucket policy
I have all my user permission needs covered using IAM, therefore I keep my bucket policy sections completely empty.
I was wondering if this is a good practice and if it raises any potential issues from any perspective.
Perhaps there is some configuration that is good to set as default?
Just double checking.
Upvotes: 0
Views: 3013
Answers (1)
John Rotenstein
Reputation: 270224
Typically:
- When you want to grant 'public' access to an Amazon S3 bucket, use a Bucket Policy
- When you want to grant access to specific IAM Users, attach an IAM policy to the IAM Users or IAM Groups
It sounds like your needs are satisfied via IAM policies, so that's perfectly good (and actually preferable!).
Upvotes: 2
Related Questions
- AWS S3 bucket policy with condition
- Amazon S3 - Bucket Policy
- AWS S3 Bucket Policy is not valid
- aws s3 bucket policy
- AWS S3 Bucket Policy with Empty Principle Array
- AWS S3 bucket policy
- s3 bucket policy post
- aws s3 Bucket policy not working as expected
- AWS S3: user policy for specifc bucket
- Setting S3 Bucket Policies