SOLVED: How to Limit S3 Access to One Subuser

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hi folks,

I found countless questions but no real solution on how to have
multiple subusers and buckets in one account while limiting access to
a bucket to just one specific subuser.

Here’s how I managed to make it work:

```
{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "DenyAllUsersButOne",
      "Effect": "Deny",
      "Action": "s3:*",
      "Resource": [
        "arn:aws:s3:::test-a",
        "arn:aws:s3:::test-a/*"
      ],
      "NotPrincipal": {
        "AWS": "arn:aws:iam:::user/<UID>:<ACCESSKEY>"
      }
    }
  ]
}
```

I hope this might be useful for others as well.

Best regards,
Ansgar
_______________________________________________
ceph-users mailing list -- ceph-users@xxxxxxx
To unsubscribe send an email to ceph-users-leave@xxxxxxx
[Index of Archives]     [Information on CEPH]     [Linux Filesystem Development]     [Ceph Development]     [Ceph Large]     [Ceph Dev]     [Linux USB Development]     [Video for Linux]     [Linux Audio Users]     [Yosemite News]     [Linux Kernel]     [Linux SCSI]     [xfs]

  Powered by Linux