简体繁体中英

AWS S3 Bucket Accessible from my ElasticBeanStalk Instance only

原文 2015-06-14 20:53:08 7 1 amazon-web-services/ amazon-s3/ amazon-ec2/ amazon-elastic-beanstalk

I have 1 s3 bucket, 1 elasticbeanstalk instance. Currenly my s3bucket is made public hence its accessible from any domain, even from my localhost. I want that all my s3 bucket resources should be accessible from my EBS instance only where my APP is hosted/running. My app should be able to view these resources and upload new images/resources to this bucket . I am sure somebody myt have done this.

1 answers

Controlling access to S3 has several ways. The best practice to make something privately accessible is: not to give any rights to access your S3 buckets/files in the bucket policy.

However you should create an IAM role which has either a full access to S3, or limited access to some actions, some buckets.

For every EC2 instances and also to every Elastic Beanstalk environments, you can attache an IAM Role. This role will be automatically served to your instances via instance metadata. This is a safe way to give special rights to your instances.

(Note: This is an AWS security best practice, since AWS will deal with the key rotations on your EC2 boxes.)

Items in my S3 bucket are publicly accessible. How do I restrict access so that the S3 Bucket link is only accessible from within my app?

How to configure access to my aws s3 bucket from aws ec2 instance via VPC

Copy files from AWS S3 Bucket only if the bucket exists

Will there be data transfer fees using aws s3 cp (locally) to move data from my S3 bucket to my EC2 instance?

AWS S3 bucket , uploaded image files are accessible only after setting individual object permission to public manually

AWS S3 Bucket Policy to allow read-only access from my instances

SFTP from External vendor s3 bucket to my (company's) AWS s3 bucket

PowerShell for AWS: List only "folders" from S3 bucket?

AWS S3 | Allow grantee to ONLY download objects from the bucket

Get publicly accessible contents of S3 bucket without AWS credentials

暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Items in my S3 bucket are publicly accessible. How do I restrict access so that the S3 Bucket link is only accessible from within my app? How to configure access to my aws s3 bucket from aws ec2 instance via VPC Copy files from AWS S3 Bucket only if the bucket exists Will there be data transfer fees using aws s3 cp (locally) to move data from my S3 bucket to my EC2 instance? AWS S3 bucket , uploaded image files are accessible only after setting individual object permission to public manually AWS S3 Bucket Policy to allow read-only access from my instances SFTP from External vendor s3 bucket to my (company's) AWS s3 bucket PowerShell for AWS: List only "folders" from S3 bucket? AWS S3 | Allow grantee to ONLY download objects from the bucket Get publicly accessible contents of S3 bucket without AWS credentials

Related Tags

AWS S3 Bucket Accessible from my ElasticBeanStalk Instance only

Question

1 answers

solution1 0 2015-06-14 22:13:46

solution1
0 2015-06-14 22:13:46