All Questions
Tagged with amazon-s3 amazon-iam
1,204
questions
0
votes
1
answer
41
views
Access denied 403 Error while uploading to S3 bucket in production ECS Fargate (Working locally)
I am getting AccessDenied: Access Denied while upload files to my s3 bucket. But everything is working perfectly locally.
This is the error I am seeing in my cloudwatch
AccessDenied: Access Denied
api
...
- 117
0
votes
1
answer
19
views
Can I grant access to another AWS account only through Identity and trust policy
I have an AWS account A from which I want to grant access to another AWS account B, I have created a role in my account A giving the identity access to my bucket in account A, here's the role identity ...
- 21
0
votes
0
answers
19
views
Apache Spark On EKS master, failed to connect S3 using IAM role
We are running our Spark application on EKS as master. And trying to access(read/write) files in S3 bucket using IAM role.
We have configured SA and attached IAM role to that Service account using ...
0
votes
1
answer
31
views
I keep getting an access denied error on my lambda function
I'm a beginner and I keep getting this error message when testing a Lambda function. I'm trying to do a simple write file to an S3 directory bucket.
Here is the PHP code:
import json
import boto3
...
- 19
0
votes
0
answers
20
views
S3 throws 403 when I restrict role to vpce policy using principal
I wanted to restrict my VPC Endpoint policy with by specifying my IAM role in principal
doc which I followed: https://docs.aws.amazon.com/vpc/latest/privatelink/vpc-endpoints-access.html
{
"...
- 72
0
votes
1
answer
32
views
How can I tell what deleted an S3 object?
I'm looking at my CloudTrail logs pertaining to the deletion of an object from an S3 bucket. I can see this (lightly censored):
{type=AssumedRole, principalid=AROAxxx:xxx, arn=arn:aws:sts::xxx:assumed-...
- 995
0
votes
1
answer
69
views
Why might I be getting an error 403 for a presigned url when the S3 bucket has open policy and signing lambda has sufficient permissions?
I have a project like so: Client -> Gateway API -> Lambda -> signed url; User takes signed url -> S3 Post.
I am able to generate and return the signed url but every time I try to make a ...
0
votes
0
answers
58
views
How to prevent object overwriting in AWS S3?
I have the following IAM policy to allow read and write on a S3 bucket:
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "...
- 456
0
votes
1
answer
14
views
Getting s3:GetObject AccessDenied error when trying to use AWS Sagemaker built-in model retrieval
I'm trying to train a LightGBM model using AWS Sagemaker built-in model.
The following code (copy&pasted from AWS docs) runs into an s3:GetObject Access Denied error. It is likely that my IAM role ...
- 2,091
1
vote
0
answers
20
views
Use AWS KMS key to decrypt file in another account
I have an account A that has KMS key used to encrypt files in account B. How can I use this key to decrypt files in s3 bucket inside account B? When I assume role from account A I lose ability to ...
0
votes
0
answers
38
views
I am having issues accessing a an object in a bucket using S3 pre-signed URL. Can someone help on this?
I have a ECS fargate service which have a lambda role. I am granting that role permissions in to getObject, read and write objects in s3 bucket in the same AWS account. When I run the test from my ...
0
votes
0
answers
19
views
AWS: How to obtain the RoleSessionName while trying to assume a role Boto3
I want to connect to a bucket across account by assuming a role that has access to that bucket.
client = boto3.client('sts')
assumed_role = client.assume_role(RoleArn=settings.iam_role_arn, ...
- 2,234
0
votes
1
answer
40
views
boto3 s3 copy HeadObject 403 Forbidden
Source and destination buckets are in the same region but different AWS accounts. The copy code that fails:
import boto3
from datetime import datetime
assumed_role = boto3.client('sts').assume_role(
...
- 2,223
0
votes
0
answers
34
views
Cloudfront signed urls - Incorporating IAM
I am currently working on a little project where I'm serving up an object from an S3 bucket behind cloudfront. I'm studying for certification so I thought it would be useful to have a real world play. ...
- 381
0
votes
1
answer
60
views
lambda cannot find S3 bucket
I have a lambda in which I am making an api call to get some stock data and then want to write the csv to a bucket. When I run from home in python 3.9.7, it works fine. Lambda is python 3.11. When I ...
- 99