![](/img/trans.png)
[英]Cloudformation template - S3 bucket website with cloudfront distribution - distribution can't access origin
[英]S3 Access Denied - Bucket owner can't download objects owned by CloudFront
我有一個擁有 S3 存儲桶的 IAM 用戶。
另外,我一直在使用 CloudFront 將一些文件上傳到 S3。
我只是相信 Bucket Owner IAM 用戶無法下載 CloudFront 創建的對象 - 它說訪問被拒絕。
一些潛在的解決方案可能是:
有沒有辦法強制存儲桶所有者能夠下載所有文件?
有沒有辦法讓 IAM 用戶擁有 CloudFront CloudFront Origin Access Identity EY********
用戶的權限?
我的存儲桶策略如下所示:
{
"Version": "2008-10-17",
"Id": "PolicyForCloudFrontPrivateContent",
"Statement": [
{
"Sid": "1",
"Effect": "Allow",
"Principal": {
"AWS": "arn:aws:iam::cloudfront:user/CloudFront Origin Access Identity EY********"
},
"Action": [
"s3:GetObject",
"s3:PutObject",
"s3:DeleteObject",
"s3:ListMultipartUploadParts",
"s3:AbortMultipartUpload",
"s3:PutObjectAcl",
"s3:PutObjectVersionAcl"
],
"Resource": "arn:aws:s3:::my-bucket/*"
}
]
}
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.