[英]S3 Access Denied - Bucket owner can't download objects owned by CloudFront
我有一個擁有 S3 存儲桶的 IAM 用戶。
另外,我一直在使用 CloudFront 將一些文件上傳到 S3。
我只是相信 Bucket Owner IAM 用戶無法下載 CloudFront 創建的對象 - 它說訪問被拒絕。
一些潛在的解決方案可能是:
有沒有辦法強制存儲桶所有者能夠下載所有文件?
有沒有辦法讓 IAM 用戶擁有 CloudFront CloudFront Origin Access Identity EY********用戶的權限?
我的存儲桶策略如下所示:
{
"Version": "2008-10-17",
"Id": "PolicyForCloudFrontPrivateContent",
"Statement": [
{
"Sid": "1",
"Effect": "Allow",
"Principal": {
"AWS": "arn:aws:iam::cloudfront:user/CloudFront Origin Access Identity EY********"
},
"Action": [
"s3:GetObject",
"s3:PutObject",
"s3:DeleteObject",
"s3:ListMultipartUploadParts",
"s3:AbortMultipartUpload",
"s3:PutObjectAcl",
"s3:PutObjectVersionAcl"
],
"Resource": "arn:aws:s3:::my-bucket/*"
}
]
}
似乎有一個設置可以強制 object 所有權成為 Bucket 所有者。
Cloudformation 模板 - 具有雲端分發的 S3 存儲桶網站 - 分發無法訪問源
[英]Cloudformation template - S3 bucket website with cloudfront distribution - distribution can't access origin
CloudFront 分配無法訪問網站 static 資產的 S3 存儲桶
[英]CloudFront distribution can't access S3 bucket for website static assets
Cloudfront 在沒有公共訪問的情況下為 S3 存儲桶源提供通過 AWS CDK Python 創建的訪問被拒絕的響應
[英]Cloudfront give Access denied response created through AWS CDK Python for S3 bucket origin without public Access
當我嘗試從 s3 存儲桶下載 object 時:ACCESS DENIED
[英]when i try to download object from s3 bucket : ACCESS DENIED
為什么即使我在存儲桶策略中授予用戶也無法訪問我們的 S3 存儲桶?
[英]why user can't access our S3 bucket even after I granted in the bucket policy?
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.