stackoom
  简体   繁体   中英

Access Denied for uploading images to AWS S3

 原文  2021-11-15 12:11:36       node.js/ amazon-web-services/ amazon-s3/ amazon-ec2/ amazon-iam

Question

I am trying to upload images to my S3 Bucket. But I am receiving "AccessDenied: Access Denied at Request.extractError" error. The Dev NodeJS server is running in an EC2 Instance. Surprisingly, upload image functionality is working when I am running the server in localhost. Same credentials are being used in the local server and the dev server. And the IAM user has both administrator and AmazonS3FullAccess permissions.The S3 Bucket doesnt have any policy and the objects within the bucket can be public.

This is my NodeJS code for uploading an image.

const AWS = require('aws-sdk');
AWS.config.update({
  accessKeyId: process.env.AWS_ACCESS_KEY_ID,
  secretAccessKey: process.env.AWS_SECRET_ACCESS_KEY,
  region: process.env.AWS_REGION
});
const S3 = new AWS.S3();

uploadImage: async (title, file, mime) => {
    return await S3.upload({
        Bucket: process.env.AWS_S3_IMAGES,
        Key: title,
        Body: file,
        ACL: "public-read",
        ContentType: mime
    }).promise()
},

This is the error that I am receiving.

AccessDenied: Access Denied\n    at Request.extractError (/home/ec2-user/backend/node_modules/aws-sdk/lib/services/s3.js:700:35)\n    at Request.callListeners(/home/ec2-user/backend/node_modules/aws-sdk/lib/sequential_executor.js:106:20)\n    at Request.emit (/home/ec2-user/backend/node_modules/aws-sdk/lib/sequential_executor.js:78:10)\n    at Request.emit (/home/ec2-user/backend/node_modules/aws-sdk/lib/request.js:688:14)\n    at Request.transition (/home/ec2-user/backend/node_modules/aws-sdk/lib/request.js:22:10)\n    at AcceptorStateMachine.runTo (/home/ec2-user/backend/node_modules/aws-sdk/lib/state_machine.js:14:12)\n    at /home/ec2-user/backend/node_modules/aws-sdk/lib/state_machine.js:26:10\n    at Request. <anonymous> (/home/ec2-user/backend/node_modules/aws-sdk/lib/request.js:38:9)\n    at Request.<anonymous> (/home/ec2-user/backend/node_modules/aws-sdk/lib/request.js:690:12)\n    at Request.callListeners (/home/ec2-user/backend/node_modules/aws-sdk/lib/sequential_executor.js:116:18)\n    at Request.emit (/home/ec2-user/backend/node_modules/aws-sdk/lib/sequential_executor.js:78:10)\n    at Request.emit (/home/ec2-user/backend/node_modules/aws-sdk/lib/request.js:688:14)\n    at Request.transition (/home/ec2-user/backend/node_modules/aws-sdk/lib/request.js:22:10)\n    at AcceptorStateMachine.runTo (/home/ec2-user/backend/node_modules/aws-sdk/lib/state_machine.js:14:12)\n    at /home/ec2-user/backend/node_modules/aws-sdk/lib/state_machine.js:26:10\n    at Request.<anonymous> (/home/ec2-user/backend/node_modules/aws-sdk/lib/request.js:38:9)\n    at Request.<anonymous> (/home/ec2-user/backend/node_modules/aws-sdk/lib/request.js:690:12)\n    at Request.callListeners (/home/ec2-user/backend/node_modules/aws-sdk/lib/sequential_executor.js:116:18)\n    at callNextListener (/home/ec2-user/backend/node_modules/aws-sdk/lib/sequential_executor.js:96:12)\n    at IncomingMessage.onEnd (/home/ec2-user/backend/node_modules/aws-sdk/lib/event_listeners.js:313:13)\n    at IncomingMessage.emit (events.js:387:35)\n    at IncomingMessage.emit (domain.js:470:12)

I have been trying to solve this issue for the last few days But couldnt find any leads. It will be great if any one of you can point me in the right direction.

Thanks in advance.

1 answers

solution1
 -1  2021-11-15 14:27:57

Apply below policies in s3 console > Bucket policy editor of 'Permissions'.

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Sid": "editor",
            "Effect": "Allow",
            "Principal": {
                "AWS": "arn:aws:iam::<IAM-user-ID>:user/testuser"
            },
            "Action": [
                "s3:ListBucket",
                "s3:ListBucketVersions",
                "s3:GetBucketLocation",
                "s3:Get*",
                "s3:Put*",
                "s3:Delete*"
            ],
            "Resource": [
                "arn:aws:s3:::bucket/*",
                "arn:aws:s3:::bucket"
            ]
        },
        {
            "Sid": "editor2",
            "Effect": "Allow",
            "Action": "s3:ListAllMyBuckets",
            "Resource": "*"
        }
    ]
}

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Access denied while uploading image to AWS S3 Access denied while uploading picture to S3 Uploading multiple images with multer to AWS S3 Why AWS S3 return error message Access Denied? AWS S3 403 access denied issue with nodeJS AWS S3: Receiving access denied with full control during upload S3 generated PUT URL access denied for images Uploading and resizing images to S3 Receiving Access Denied when trying to access Amazon AWS S3 service with nodejs Uploading images to AWS S3 bucket - specifying file path for randomly generated file names
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM