Amazon s3 listobjects的访问被拒绝
尝试列出应用了跨帐户存储桶策略的对象时出错Amazon s3 listobjects的访问被拒绝,amazon-s3,Amazon S3,尝试列出应用了跨帐户存储桶策略的对象时出错 aws s3 ls bucket-name An error occurred (AccessDenied) when calling the ListObjectsV2 operation: Access Denied 用于允许列表对象的Bucket策略为: { "Id": "Policy2", "Version": "2012-10-17", "Statement": [ { "Sid": "Stmt13",
aws s3 ls bucket-name
An error occurred (AccessDenied) when calling the ListObjectsV2 operation: Access Denied
用于允许列表对象的Bucket策略为:
{
"Id": "Policy2",
"Version": "2012-10-17",
"Statement": [
{
"Sid": "Stmt13",
"Action": [ "s3:GetBucketLocation", "s3:ListBucket" ,"s3:GetBucketPolicy"],
"Effect": "Allow",
"Resource": ["arn:aws:s3:::bucket-name"],
"Principal": {"AWS":"*"}
}
]
}
我已尝试将委托人指定给特定的ARN。假设已启用块公共访问。但是那也不行。你的政策对我很有效 我采取的步骤:
- 创建了一个新的bucket
- 关闭两个Bucket策略选项的阻止公共访问
- 添加了您的bucket策略(如上),更改了我的bucket名称
- 使用来自不同帐户的IAM用户列出存储桶
工作正常。您的区块公共访问是否打开?我已尝试将委托人指定给特定的ARN。假设已启用块公共访问。但这也不起作用。用户的IAM策略是什么?您所说的“应用的跨帐户桶策略”是什么意思?