S3 PolicyΒΆ
In order for pypicloud to be able to access your S3 bucket, you may need to set some policy options. The permissions required are:
s3:GetObject
s3:PutObject
s3:DeleteObject
s3:ListBucket
Note that s3:ListBucket
is a bucket permission (applies to arn:aws:s3:::bucket
), whereas the others all
apply to objects (applies to arn:aws:s3:::bucket/*
).
You should use the AWS Policy Generator to create the json policy for your bucket. The following may also work:
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": "s3:ListBucket",
"Resource": "arn:aws:s3:::<package-bucket-name>"
},
{
"Effect": "Allow",
"Action": [
"s3:PutObject",
"s3:GetObject",
"s3:DeleteObject"
],
"Resource": "arn:aws:s3:::<package-bucket-name>/*"
}
]
}