<WOWHDR>

S3: Bucket Policy

by

Website Admin
in 
{
  "Version": "2012-10-17",
  "Statement": [{
    "Effect": "Allow",
    "Principal": {"AWS": [
      "arn:aws:iam:::user/<username>",
      "arn:aws:iam:::user:<username>",
      "arn:aws:iam:::<username>"
    ]},
    "Action": "s3:*",
    "Resource": [
      "arn:aws:s3:::<bucket-name>"
      "arn:aws:s3:::<bucket-name>/*"
    ]
  }]
}
{
  "Version": "2012-10-17",
  "Statement": [{
    "Effect": "Allow",
    "Principal": {"AWS": [
      "arn:aws:iam:::<username>",
    ]},
    "Action": [
      "s3:ListBucket",
      "s3:GetObject"
    ],
    "Resource": [
      "arn:aws:s3:::<bucket-name>"
    ]
  }]
}
{
  "Version": "2012-10-17",
  "Statement": [{
    "Effect": "Allow",
    "Principal": {"AWS": [
      "arn:aws:iam:::user/<username>",
      "arn:aws:iam:::<username>:<sub-username>",
    ]},
    "Action": [
      "s3:GetBucketLocation",
      "s3:GetLifecycleConfiguration",
      "s3:GetBucketPolicy",
      "s3:GetBucketCORS",
      "s3:GetBucketAcl"
    ],
    "Resource": [
      "arn:aws:s3:::<bucket-name>"
    ]
  }]
}

AWS S3CEPH / RADOS-GW
AbortMultipartUploadAbortMultipartUpload
CompleteMultipartUpload
CopyObject
CreateBucketCreateBucket
CreateMultipartUpload
DeleteBucketDeleteBucket
DeleteBucketAnalyticsConfiguration
DeleteBucketCors
DeleteBucketEncryption
DeleteBucketIntelligentTieringConfiguration
DeleteBucketInventoryConfiguration
DeleteBucketLifecycle
DeleteBucketMetricsConfiguration
DeleteBucketOwnershipControls
DeleteBucketPolicyDeleteBucketPolicy
DeleteBucketReplication
DeleteReplicationConfiguration
DeleteBucketTagging
DeleteBucketWebsiteDeleteBucketWebsite
DeleteObjectDeleteObject
DeleteObjects
DeleteObjectTaggingDeleteObjectTagging
DeletePublicAccessBlock
DeleteObjectVersion
DeleteObjectVersionTagging
GetBucketAccelerateConfiguration
GetBucketAclGetBucketAcl
GetBucketAnalyticsConfiguration
GetBucketCorsGetBucketCORS
GetBucketEncryptionGetBucketEncryption
GetBucketIntelligentTieringConfiguration
GetBucketInventoryConfiguration
GetBucketLifecycle
GetBucketLifecycleConfiguration
GetBucketLocationGetBucketLocation
GetBucketLoggingGetBucketLogging
GetBucketMetricsConfiguration
GetBucketNotificationGetBucketNotification
GetBucketNotificationConfiguration
GetBucketOwnershipControls
GetBucketPolicyGetBucketPolicy
GetBucketPolicyStatus
GetBucketReplication
GetBucketRequestPaymentGetBucketRequestPayment
GetBucketTaggingGetBucketTagging
GetBucketVersioningGetBucketVersioning
GetBucketWebsiteGetBucketWebsite
GetObjectGetObject
GetObjectAclGetObjectAcl
GetObjectAttributes
GetObjectLegalHoldGetObjectLegalHold
GetObjectLockConfiguration
GetObjectRetentionGetObjectRetention
GetObjectTaggingGetObjectTagging
GetObjectTorrentGetObjectTorrent
GetPublicAccessBlock
GetObjectVersion
GetObjectVersionAcl
GetObjectVersionTagging
GetObjectVersionTorrent
HeadBucket
HeadObject
ListAllMyBuckets
ListBucketAnalyticsConfigurations
ListBucketIntelligentTieringConfigurations
ListBucketInventoryConfigurations
ListBucketMetricsConfigurations
ListBucket
ListBuckets
ListBucketMultipartUploads
ListBucketVersions
ListMultipartUploads
ListMultipartUploadParts
ListObjects
ListObjectsV2
ListObjectVersions
ListParts
PutAccelerateConfiguration
PutBucketAccelerateConfiguration
PutBucketAclPutBucketAcl
PutBucketAnalyticsConfiguration
PutBucketCorsPutBucketCORS
PutBucketEncryptionPutBucketEncryption
PutBucketIntelligentTieringConfiguration
PutBucketInventoryConfiguration
PutBucketLifecycle
PutBucketLifecycleConfiguration
PutBucketLoggingPutBucketLogging
PutBucketMetricsConfiguration
PutBucketNotificationPutBucketNotification
PutBucketNotificationConfiguration
PutBucketOwnershipControls
PutBucketPolicyPutBucketPolicy
PutBucketReplication
PutBucketRequestPaymentPutBucketRequestPayment
PutBucketTaggingPutBucketTagging
PutBucketVersioningPutBucketVersioning
PutBucketWebsitePutBucketWebsite
PutLifecycleConfiguration
PutObjectPutObject
PutObjectAclPutObjectAcl
PutObjectLegalHoldPutObjectLegalHold
PutObjectLockConfiguration
PutObjectRetentionPutObjectRetention
PutObjectTaggingPutObjectTagging
PutObjectVersionAcl
PutObjectVersionTagging
PutReplicationConfiguration
PutPublicAccessBlock
RestoreObjectRestoreObject
SelectObjectContent
UploadPart
UploadPartCopy
WriteGetObjectResponse

References:

Comments

Leave a Reply

Your email address will not be published. Required fields are marked *