S3 bucket policy current example

Andro · December 30, 2021, 12:22pm

Referring to this topic on how to set up an S3 bucket policy for Discourse:

it appears to be out of date, and missing things currently needed, such as Principal information. Is there any more current advice on what to do? I know I am asking to be spoon fed, but as one poster pointed out this is more or less black magic to most people and any help would be appreciated. I am specifically referring just to the given bucket policy example, not the entire thread.

tggm · December 31, 2021, 6:55pm

I also have this issue. The s3:HeadBucket action does not exist and AWS throws a ton of errors about the policy.

Andro · January 1, 2022, 9:56am

I spent time learning about the policy concepts. I developed this which works, but it’s all wide open, and so needs considerable refinement. But it does allow you to get on and setup all the rest of the requirements for S3 storage for Discourse. A starting point that currently works, at least.

{
    "Version": "2012-10-17",
    "Id": "Policy1640915383804",
    "Statement": [
        {
            "Sid": "Stmt1640915382266",
            "Effect": "Allow",
            "Principal": "*",
            "Action": "s3:*",
            "Resource": [
                "arn:aws:s3:::xyzzy-file-uploads",
                "arn:aws:s3:::xyzzy-file-uploads/*"
            ]
        }
    ]
}

Topic		Replies	Views
Set up file and image uploads to S3 sysadmin configuring , how-to	1	114169	April 8, 2024
The bucket does not allow ACLs support s3	5	2136	December 3, 2022
S3 Backup ... suspect access issue support	4	1704	October 16, 2018
AWS S3 Object Ownership installation s3	2	656	December 26, 2021
After setting up S3 - Access denied support	10	3933	July 28, 2018

S3 bucket policy current example

Related Topics