ERROR An error occurred (AccessDenied) when calling the DeleteObject operation: Access Denied

my s3 IAM

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": [
                "s3:*",
                "s3-object-lambda:*"
            ],
            "Resource": "*"
        }
    ]
}

settings.py

INSTALLED_APPS = [
    'storages',
]

DEFAULT_FILE_STORAGE = "storages.backends.s3boto3.S3Boto3Storage"

django code

def UpdateCompanyView(request):
    user = request.user
    company = user.company
    old_logo = company.logo
    if old_logo and 'logo' in serializer.validated_data and data_logo is not None:
        old_logo.delete()
    #old_logo.delete(save=False)#I've tried this also

other all actions working put, add, but deleting occurring this error

Topics

Security, Identity, & Compliance

Tags

AWS Identity and Access Management IAM Policies

Language

English

Shary Raaz

asked 6 months ago306 views

1 Answer

Newest
Most votes
Most comments

Are these answers helpful? Upvote the correct answer to help the community benefit from your knowledge.

Hello.

S3 bucket policy not set?
If DeleteObject is denied in the S3 bucket policy, object deletion will fail even if the IAM policy allows it.

EXPERT

Riku_Kobayashi

answered 6 months ago

Shary Raaz
6 months ago
where to set it ?

in the bucket policy i already add the same, but same error
Riku_Kobayashi EXPERT
6 months ago
If the IAM policy is set correctly, there is no need to set the S3 bucket policy.
Shary Raaz
6 months ago
then which policy you're talking about. the IAM policy is already set. then why i'm getting this error. please give me the solution if you know about it
Riku_Kobayashi EXPERT
6 months ago
Is your AWS account managed by AWS Organizations? In that case, please check whether DeleteObject is not rejected by SCP. Additionally, please make sure that "Permissions boundaries" are not set, as described in the document below. https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_boundaries.html?icmpid=docs_iam_console
Shary Raaz
6 months ago
when i visit SCPs

Your request has a problem. Please see the following details. Your account is not a member of an organization.

and Permissions boundaries are also not set

Relevant content

(AccessDenied) when calling the PutObject operation: Access Denied
houmanalv
asked 20 days ago
An error occurred (AccessDenied) when calling the PutBucketPolicy operation: Access Denied
rePost-User-5008335
asked a year ago
An error occurred (AccessDenied) when calling the ListObjectsV2 operation: Access Denied
AWS-User-7725407
asked 2 years ago
An error occurred (AccessDenied) when calling the PutObject operation: Access Denied
rePost-User-6540276
asked a year ago
How do I resolve the error "An error occurred (TargetNotConnectedException) when calling the ExecuteCommand operation" in Amazon ECS?
AWS OFFICIALUpdated 2 years ago
How do I troubleshoot explicit deny error messages when requesting API calls using IAM roles or users?
AWS OFFICIALUpdated 2 years ago
How can I troubleshoot access denied or unauthorized operation errors with an IAM policy?
AWS OFFICIALUpdated 2 years ago
Why am I getting an Access Denied error for ListObjectsV2 when I run the sync command on my Amazon S3 bucket?
AWS OFFICIALUpdated 2 years ago
Why doesn't S3 respect the TLS settings in my IAM policy?
EXPERT
Brettski-AWS
published 2 years ago
Troubleshoot 403 Access Denied error in Amazon S3
EXPERT
Gayathri Krishnamoorthy
published a year ago