AWS S3 access control
0
How do I disable access or display of a directory (folder) for a specified IAM user?
asked 2 months ago7 views
1 Answers
0
I would use S3 Access Points to achieve this. You can read the full documentation here: https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-points.html
Each access point has distinct permissions and network controls that S3 applies for any request that is made through that access point. Each access point enforces a customized access point policy that works in conjunction with the bucket policy that is attached to the underlying bucket.
An example of an access point policy to grant access to a Prefix (folder) is here:/
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "Statement1",
"Principal": {
"AWS": "arn:aws:iam::123456789012:root"
},
"Effect": "Allow",
"Action": [
"s3:*"
],
"Resource": [
"arn:aws:s3:us-west-2:123456789012:accesspoint/tester"
],
"Condition": {
"StringEquals": {
"s3:prefix": [
"asdf"
]
}
}
}
]
}
answered 2 months ago
Relevant questions
Question on user directory location in Appstream 2.0 user sessions
asked 3 years agoS3 Bucket Security
asked 5 months agoCreate User to Use S3 API with Restricted Permissions
Accepted Answerasked 17 hours agoChange Access type for an IAM user
asked 5 years agoHow do I share Amazon S3 files with users who don't have AWS Management Console access?
Accepted Answerasked 2 years agoMulti-tenancy in Neptune
asked 4 months agoSet the access permission of objects in S3 buckets
asked 2 months agoRestrict listing 5 out of 10 folders for given prefix through IAM policy
asked 2 months agoAccess S3 object via cloudfront as a specific IAM user
Accepted Answerasked 5 months agoAWS S3 access control
asked 2 months ago