1 個回答
- 最新
- 最多得票
- 最多評論
1
The error you're getting sounds like you're trying to use a resource policy as an identity-based policy. Since these policies are attached to a principal already, the Principal
field is not required. More info here: https://aws.amazon.com/premiumsupport/knowledge-center/iam-principal-policy/
The policy above should be applied as the bucket policy for the bucket you'd like to share, and the identity-based policy for the user/role should look more like:
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"s3:GetObject"
],
"Resource": "arn:aws:s3:::cmaq-database/*"
}
]
}
已回答 2 年前
相關內容
- AWS 官方已更新 2 年前
- AWS 官方已更新 5 個月前
- AWS 官方已更新 2 年前
Hi Ed. Let me read the link to make sure I understand what you mean. Thanks.