stackoom
  简体   繁体   中英

AWS REST Api as S3 proxy and accessing client specific bucket

 原文  2020-05-05 16:27:21       amazon-web-services/ amazon-s3/ aws-api-gateway

Question

I have created AWS API Gateway as S3 proxy as per guidelines here . So final url looks something like

http://api.exmaple.com/v1/ {clientbucketname}/{key}

client will use their pre-assigned bucket name in the url. I understand that if API is authenticated using IAM user then API will have access to the bucket belongs to authenticated IAM user and can perform actions only on a particular client's bucket.
However my API is authenticated using API-KEY. Each client has their own API-KEY how do i tie API-KEY to S3 bucket so client A cannot access client B's bucket simply by changing the bucket name in the URL.

1 answers

solution1
 0  2020-05-06 02:55:17

It is not possible without AWS_IAM authorization.

API Gateway uses the result of that authorization to locate the account, role and bucket.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Upload to S3 bucket through API Gateway AWS Service Proxy Retrieve bucket's objects without knowing bucket's region with AWS S3 REST API Accessing s3 bucket on AWS ParallelCluster Accessing files from AWS S3 Bucket Access client's AWS S3 bucket Accessing a file on AWS S3 with spark via REST API AWS S3 Listing API - How to list everything inside S3 Bucket with specific prefix Accessing a bucket at the google S3 api How to give access to the Client on SFTP server for s3 bucket accessing using key pair on AWS? AWS Cognito Authentication + AWS Mobile Client + API Gateway + S3 Bucket
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM