stackoom
  简体   繁体   中英

Amazon S3: Change bucket policy with Java SDK

 原文  2018-09-05 08:52:25       java/ amazon-web-services/ servlets/ amazon-s3/ minio

Question

I am testing with Amazon S3 compatible Minio using "aws-java-sdk-s3" in Java (Servlet).

Minio wants to set this as "Prefix: *, Read Only" because the initial value of the bucket policy is None.

I added the source code when creating the bucket I wrote as follows, but it did not change.

BasicAWSCredentials awsCreds = new BasicAWSCredentials(awsId, awsKey);
AmazonS3 s3Client = AmazonS3ClientBuilder.standard()
    .withCredentials(new AWSStaticCredentialsProvider(awsCreds))
    .withEndpointConfiguration(new EndpointConfiguration(endpoint, null))
    .withPathStyleAccessEnabled(true)
    .build();

s3client.createBucket(new CreateBucketRequest(bucketName));
s3client.setBucketPolicy(bucketName,
    "{"
        + "\"Version\":\"2012-10-17\","
        + "\"Statement\":["
            + "{"
                + "\"Sid\":\"Statement1\","
                + "\"Effect\":\"Allow\","
                + "\"Principal\":\"*\","
                + "\"Action\":[\"s3:GetObject\"],"
                + "\"Resource\":[\"arn:aws:s3:::*\"]"
            + "}"
        + "]"
    + "}"
);

What did I mistake? please tell me. If it is possible to change the initial value of bucket policy for all buckets, such as with Minio's environment setting, there is no problem.

Thank you.

1 answers

solution1
 0  2022-05-26 22:24:01

This is how you can get the general public access policy programmatically.

// Gets a public read policy on the bucket.
public static String getPublicReadPolicy(String bucket_name) {
    Policy bucket_policy = new Policy().withStatements(
            new Statement(Statement.Effect.Allow)
                    .withPrincipals(Principal.AllUsers)
                    .withActions(S3Actions.GetObject)
                    .withResources(new Resource(
                            "arn:aws:s3:::" + bucket_name + "/*")));
    return bucket_policy.toJson();
}

Then you can use this policy text to the desired s3 bucket

String policy_text = getPublicReadPolicy(bucket_name);
setBucketPolicy(bucket_name, policy_text);

However in the minio console this will not show with public access. It shows as a custom policy, but it works as public access only.(ref. below image)

在此处输入图像描述

Also this logic can be extended by applying wildcard * instead of specific bucket.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Amazon S3 bucket sub objects REST and Java without SDK Amazon s3 returns only 1000 entries for one bucket and all for another bucket (using java sdk)? Store Java object to Amazon S3 bucket Creating an Amazon S3 bucket Using the AWS SDK for Java : Exception in thread "main" java.lang.NoClassDefFoundError Amazon S3 Policy Signing in Java Download a Large Number of Files Using the Java SDK for Amazon S3 Bucket Issuing uploading file to Amazon S3 Bucket. using the AWS SDK for Java v2 Amazon sdk dowload large zip file from s3 bucket in spring boot java Uploading Image to S3 Bucket - Java SDK Can we perform, creating a bucket, block public access and bucket versioning functionality in single java SDK call in Amazon S3?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM