1 Resposta
- Mais recentes
- Mais votos
- Mais comentários
2
The bucket may allow the $Username to list buckets, but what is the IAM permissions for the actual $username itself? Both the IAM permissions for the entity AND the resource policy for the bucket must both allow the action, otherwise you may have the IAM policy associated with the $username causing the deny.
Conteúdo relevante
- AWS OFICIALAtualizada há 2 anos
- AWS OFICIALAtualizada há 9 meses
The $username has the following IAM policy/permission defined:
{ "Version": "2012-10-17", "Statement": [ { "Sid": "VisualEditor0", "Effect": "Allow", "Action": "s3:ListBucket", "Resource": "arn:aws:s3:::$BucketName" } ] }