I am trying to give single S3 bucket access to different user without listing all the buckets, Hence I didnot use list all my buckets policy. The buckets contains different folders inside folders, when I am trying to list the contents in the folder through its shows nothing
The policy I am using
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "ListBucket",
"Effect": "Allow",
"Principal": {
"AWS": "arn:aws:iam::abcd”
},
"Action": "s3:ListBucket",
"Resource": "arn:aws:s3:::abcd”
},
{
"Sid": "AddDeleteFiles",
"Effect": "Allow",
"Principal": {
"AWS": "arn:aws:iam::abcd”
},
"Action": [
"s3:DeleteObject",
"s3:GetObject",
"s3:PutObject"
],
"Resource": "arn:aws:s3:::abcd/*”
}
]
}
output of s3cmd ls [s3://abcd/aa] -acess denied
Aucun commentaire:
Enregistrer un commentaire