aws-cdk - 为什么在更新 BucketPolicy 时管理员帐户的权限被拒绝？

bucket = aws_s3.Bucket( self, "myBucket", bucket_name="mybucket", access_control=aws_s3.BucketAccessControl.PRIVATE, versioned=True, encryption=aws_s3.BucketEncryption.S3_MANAGED, block_public_access=aws_s3.BlockPublicAccess.BLOCK_ALL ) policy_statement = aws_iam.PolicyStatement( effect=aws_iam.Effect.DENY, actions=["*"], resources=[bucket.arn_for_objects("*")], conditions={ "Bool": { "aws:SecureTransport": "false" } } ) policy_statement.add_any_principal() bucket.add_to_resource_policy(policy_statement)

如何使用 AWS CDK 添加 S3 BucketPolicy？

[英]How to add S3 BucketPolicy with AWS CDK?

AWS CDK 跨账户 Lambda 部署权限问题

[英]AWS CDK Cross Account Lambda Deployment Permission Issue

alpha（工具帐户）管道无权部署到产品帐户的存储桶[CDK v2]

[英]alpha(tool account) pipeline doesn't have permission to deploy to prod account's bucket[CDK v2]

当我获得 AWS 账户的临时凭证授权时，如何在 CDK 中指定账户 ID？

[英]How can I specify Account ID in CDK when I'm authorized with temp credentials to the AWS account?

CDK DnsValidatedCertificate：当托管区域是父账户的一部分时，可以在链接的 AWS 账户中创建证书吗？

[英]CDK DnsValidatedCertificate: Can create a certificate in a linked AWS account, when the hosted zone is part of the parent account?

使用 AWS CDK 合成 lambda 函数时，为什么会出现“this.combinedGrant is not a function”？

[英]Why am I getting “this.combinedGrant is not a function” when synthesizing lambda functions with AWS CDK?

尝试创建连接 AWS 胶水时 AWS CDK 访问被拒绝

[英]AWS CDK access Denied when trying to create connection AWS glue

错误：创建 AWS 自定义资源时拒绝访问

[英]Error : Access denied When creating AWS custom resource

AWS：在担任子账户中的角色时，我如何保持对父账户中权限的访问？

[英]AWS: When assuming a role in a child account, how can I keep access to permissions in parent account?

在 docker 容器中运行 CDK 时无法解析要使用的 AWS 账户

[英]Unable to resolve AWS account to use when running CDK in a docker container

为什么在更新 BucketPolicy 时管理员帐户的权限被拒绝？

问题描述

0 个解决方案