Access denied using cyberduck or s3 Browser to upload object into s3 bucket

Question

Hi there,  
  
No matter what I do I cannot upload any object to an s3 bucket and I have the right permissions. I have tried playing around with the permissions and then ended up giving up and allowing all s3 permissions.  
  
I am using Cyberduck or S3 browser to upload documents, for certain reasons I cannot upload files straight to s3 in the browser.  
Below is the JSON that is used.  
{  
    "Version": "2012-10-17",  
    "Statement": \[  
        {  
            "Effect": "Allow",  
            "Action": "s3:*",  
            "Resource": "*"  
        }  
    ]  
}  
  
I really don't know why it will give me 'access denied' whenever I try to upload.  
  
Thanks

Answer

Hi,  
  
Below is the sample minimal IAM policy you may use to provide permissions to the bucket:  
\[code]  
{  
  "Statement": \[ {  
    "Effect": "Allow",  
    "Action": \["s3:ListBucket", "s3:GetBucketLocation"],  
    "Resource": "arn:aws:s3:::your_bucket_name",   
    "Condition": { }  
  }, {  
    "Effect": "Allow",  
    "Action": \["s3:PutObject", "s3:GetObject","s3:DeleteObject"],  
    "Resource": "arn:aws:s3:::your_bucket_name/*",  
    "Condition": {}  
  } ]  
}  
\[/code]

Access denied using cyberduck or s3 Browser to upload object into s3 bucket

Relevanter Inhalt