From Lambda, duplicate a S3 folder (object) tree

Question

I am trying to duplicate a tree (2 levels) of objects in executing the Lambda.
I have searched online and found many examples using boto3 & s3pathlib.
I've made sure that the IAM account executing the Lambda created the S3 bucket and folders.
I've made sure that the IAM account has the correct permissions.
I've even added IAM permissions for executing Lambda as described in https://repost.aws/knowledge-center/lambda-copy-s3-files.

Regardless of any of the examples, the execution fails.  Not in the lambda code but deeper in a library....the error is the same regardless of what Lambda function I try - I've written 5 of them.

Any help would be appreciated!  I'm stuck.

Answer

Tricky... please try the following:
Make sure the IAM role used by the Lambda function has the necessary permissions to access the source and destination buckets. This includes s3:GetObject and s3:PutObject permissions.

When copying objects, the ownership does not automatically transfer to the destination bucket account. You need to explicitly grant the destination bucket owner permissions to the copied objects.

Try copying an object while setting the ACL to grant the destination bucket full control. For example:

`aws s3 cp s3://source-bucket/object s3://destination-bucket/object --acl bucket-owner-full-control`
Verify the bucket policy on the destination bucket allows the Lambda execution role to put objects.

Check for any explicit Deny policies that may be blocking access.

From Lambda, duplicate a S3 folder (object) tree

관련 콘텐츠