Warning: file_get_contents(/data/phpspider/zhask/data//catemap/0/amazon-s3/2.json): failed to open stream: No such file or directory in /data/phpspider/zhask/libs/function.php on line 167

Warning: Invalid argument supplied for foreach() in /data/phpspider/zhask/libs/tag.function.php on line 1116

Notice: Undefined index: in /data/phpspider/zhask/libs/function.php on line 180

Warning: array_chunk() expects parameter 1 to be array, null given in /data/phpspider/zhask/libs/function.php on line 181
Amazon web services IAM策略仅允许从S3存储桶的特定文件夹中删除_Amazon Web Services_Amazon S3_Amazon Iam_Aws Policies - Fatal编程技术网
Fatal编程技术网
  • amazon-web-services/
  • Amazon web services IAM策略仅允许从S3存储桶的特定文件夹中删除

Amazon web services IAM策略仅允许从S3存储桶的特定文件夹中删除

amazon-web-services amazon-s3

Amazon web services IAM策略仅允许从S3存储桶的特定文件夹中删除,amazon-web-services,amazon-s3,amazon-iam,aws-policies,Amazon Web Services,Amazon S3,Amazon Iam,Aws Policies,我有一个桶:s3://mybucket 我只想允许删除s3://mybucket/test 我尝试了以下策略: { “版本”:“2012-10-17”, “声明”:[ { “Sid”:“Stmt1604573937792”, “行动”:[ “s3:DeleteObject” ], “效果”:“允许”, “资源”:[ “arn:aws:s3:::mybucket/”, “arn:aws:s3:::mybucket/*” ], “条件”:{ “线状”:{ “s3:前缀”:“test/*” } } }

我有一个桶:
s3://mybucket

我只想允许删除
s3://mybucket/test

我尝试了以下策略:

{
“版本”:“2012-10-17”,
“声明”:[
{
“Sid”:“Stmt1604573937792”,
“行动”:[
“s3:DeleteObject”
],
“效果”:“允许”,
“资源”:[
“arn:aws:s3:::mybucket/”,
“arn:aws:s3:::mybucket/*”
],
“条件”:{
“线状”:{
“s3:前缀”:“test/*”
}
}
}
]
}
但是,IAM策略模拟器尝试删除对象时失败,提示“隐式拒绝(无匹配语句)”。我应该更改什么?

如果查看,您会注意到
DeleteObject
不接受
前缀

相反,您可以使用:


{
“版本”:“2012-10-17”,
“声明”:[
{
“效果”:“允许”,
“操作”:“s3:DeleteObject”,
“资源”:“arn:aws:s3:::mybucket/text/*”
}
]
}