Length: 00:17:53
Lesson Summary:
Securing S3 buckets for access via a single account can often be challenging enough. In this lesson we'll step through how to provide access to buckets and objects using Cross-Account policies and roles. We review the pros and cons of each, and discuss appropriate usage.
https://aws.amazon.com/premiumsupport/knowledge-center/s3-bucket-owner-access/
{
"Statement":[
{
"Effect":"Allow",
"Principal":{"AWS":"311407276115"},
"Action":"s3:PutObject",
"Resource":["arn:aws:s3:::la-permissionsdemo/*"]
},
{
"Effect":"Deny",
"Principal":{"AWS":"311407276115"},
"Action":"s3:PutObject",
"Resource":"arn:aws:s3:::la-permissionsdemo/*",
"Condition": {
"StringNotEquals": {"s3:x-amz-acl":"bucket-owner-full-control"}
}
}
]
}
This lesson is only available to Linux Academy members.