Amazon web services S3存储:将存储桶文件夹设置为私有
我的s3存储设置如下所示: 权限>存储桶策略Amazon web services S3存储:将存储桶文件夹设置为私有,amazon-web-services,amazon-s3,Amazon Web Services,Amazon S3,我的s3存储设置如下所示: 权限>存储桶策略 { "Version": "2012-10-17", "Statement": [ { "Sid": "AllowPublicRead", "Effect": "Allow", "Principal": { "AWS": "*" }, "Action": "s3:Get
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "AllowPublicRead",
"Effect": "Allow",
"Principal": {
"AWS": "*"
},
"Action": "s3:GetObject",
"Resource": "arn:aws:s3:::my-bucket/*"
}
]
}
每件物品都是公开的
我有3个文件夹,想添加一个新的私人文件夹。如何确保它是私有的?您必须使用名为的选项 因此,您不应该使用
Resource
,而应该使用NotResource
。
有了这个,你的
桶策略应为:
{
"Sid": "AllowPublicReadWithPrivateFolder",
"Effect": "Allow",
"NotResource": "arn:aws:s3:::bucket/your_private_folder_path/*",
"Principal": {
"AWS": [
"*"
]
},
"Action": "s3:GetObject"
}
可能存在的副本
{
"Sid": "AllowPublicReadWithPrivateFolder",
"Effect": "Allow",
"NotResource": "arn:aws:s3:::bucket/your_private_folder_path/*",
"Principal": {
"AWS": [
"*"
]
},
"Action": "s3:GetObject"
}