{"id":7136,"date":"2017-11-28T08:39:40","date_gmt":"2017-11-28T00:39:40","guid":{"rendered":"http:\/\/rmohan.com\/?p=7136"},"modified":"2017-11-28T08:39:40","modified_gmt":"2017-11-28T00:39:40","slug":"aws-s3-permissions","status":"publish","type":"post","link":"https:\/\/mohan.sg\/?p=7136","title":{"rendered":"AWS S3 permissions"},"content":{"rendered":"<div id=\"page\" class=\"hfeed\">\n<div id=\"main\">\n<div id=\"primary\">\n<div id=\"content\" role=\"main\">\n<article id=\"post-375\" class=\"post-375 post type-post status-publish format-standard hentry category-aws tag-amazon tag-aws tag-permission tag-role tag-s3\">\n<div class=\"entry-content\">\n<p>A quick tip on aws S3 permissions to a specific folder in a bucket.<br \/>\n<code><br \/>\n{<br \/>\n\"Version\": \"2012-10-17\",<br \/>\n\"Statement\": [{<br \/>\n\"Effect\": \"Allow\",<br \/>\n\"Action\": [<br \/>\n\"s3:Put*\",<br \/>\n\"s3:Get*\",<br \/>\n\"s3:List*\"<br \/>\n],<br \/>\n\"Resource\": [<br \/>\n\"arn:aws:s3:::nameofmybucket\/profile\/*\"<br \/>\n]<br \/>\n}]<br \/>\n}<br \/>\n<\/code><\/p>\n<p>Try to avoid bucket root level permission as much as possible. Also, try to use <a href=\"https:\/\/aws.amazon.com\/cognito\/\">cognito<\/a> if the client wants to directly access aws resources.<\/p>\n<\/div>\n<\/article>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"\n<p>A quick tip on aws S3 permissions to a specific folder in a bucket. { &#8220;Version&#8221;: &#8220;2012-10-17&#8221;, &#8220;Statement&#8221;: [{ &#8220;Effect&#8221;: &#8220;Allow&#8221;, &#8220;Action&#8221;: [ &#8220;s3:Put*&#8221;, &#8220;s3:Get*&#8221;, &#8220;s3:List*&#8221; ], &#8220;Resource&#8221;: [ &#8220;arn:aws:s3:::nameofmybucket\/profile\/*&#8221; ] }] } <\/p>\n<p>Try to avoid bucket root level permission as much as possible. Also, try to use cognito if the client wants [&#8230;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[49],"tags":[],"_links":{"self":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/7136"}],"collection":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=7136"}],"version-history":[{"count":1,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/7136\/revisions"}],"predecessor-version":[{"id":7137,"href":"https:\/\/mohan.sg\/index.php?rest_route=\/wp\/v2\/posts\/7136\/revisions\/7137"}],"wp:attachment":[{"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=7136"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=7136"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mohan.sg\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=7136"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}