stackoom
  简体   繁体   中英

How to add a "s3:ListBucket/" to give access to a bucket

 原文  2023-01-11 16:41:28       amazon-web-services/ amazon-s3/ amazon-iam/ identity-management

Question

Issue is IAM permissions already exist and the User x has permissions to s3:ListALLMyBuckets through identity policy, letting them return a list of all buckets owned by authenticated sender of request but missing "s3:ListBucket" action on (needed) bucket.

How can I add this permission, and should I add them to S3 or as an IAM inline policy for user?

S3 policy on needed bucket has GetObject but not ListBucket.

1 answers

solution1
 0  2023-01-11 16:49:50

You will need to edit the policy that's attached to the user and add the "s3:ListBucket" permission as you mentioned.

As per the documentation, you need to have ListALLMyBuckets in order for ListBucket to work. So you need to have both permissions.

from the documentation for ListBucket :

Returns a list of all buckets owned by the authenticated sender of the request. To use this operation, you must have the s3:ListAllMyBuckets permission.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question how to add an inline policy to allow s3:ListBucket for a certain User How to add access to s3 bucket for userpool How to list more than 1000 objects with S3 ListBucket? Not able to give a Cognito User access on a certain S3 bucket How to structure s3 bucket for access control How to access s3 bucket with key and secret? How to access S3 bucket using IAM roles in NODEJS project How to add lifecycle rules to an S3 bucket using terraform? How to restrict all access to the AWS s3 bucket how I grant s3 bucket access with this particular role?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM