AWS S3 Bucket
Create bucket
- Create new bucket in AWS S3
choose region closer to your location
- In bucket "Public Access Settings" uncheck all properties
Security will be configured via UserAgent token
* In "Bucket Policy" put below json:
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "AllowGetObject",
"Effect": "Allow",
"Principal": "*",
"Action": "s3:GetObject",
"Resource": "arn:aws:s3:::MYBUCKET/*",
"Condition": {
"StringLike": {
"aws:UserAgent": "MyStrongPassword"
}
}
}
]
}
replacing MYBUCKET with actual name and putting password instead of MyStrongPassword
- Provide MYBUCKET as
Bucketand MyStrongPassword asUserAgent keyduring setup procedure
Create user
- Goto IAM -> Policies -> Create Policy -> Active JSON
- Put below value, replacing MYBUCKET with actual value
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": "s3:ListAllMyBuckets",
"Resource": "arn:aws:s3:::*"
},
{
"Effect": "Allow",
"Action": "s3:*",
"Resource": [
"arn:aws:s3:::MYBUCKET",
"arn:aws:s3:::MYBUCKET/*"
]
}
]
}
- Click Review policy -> specify name like zebrunner-s3-writer-policy -> Create Policy
- Goto IAM -> Users -> Add User
- Specify username like zebrunner-s3-user -> Pick “Programmatic access” -> Next: Permissions: -> Attach existing policies directly
- Choose previously created policy -> Next: Tags -> Next: Review -> Create User
- Provide user keys as
Access keyandSecret keyduring setup procedure