我创建了一个新的bucket test1,它有两个文件夹上传和下载。下面是我的政策附加到用户。我使用aws cli连接访问和秘密访问密钥,并成功地将文档上传到s3:// test1 / upload /。当我尝试上传到s3:// test1 / upload /文件夹时使用cloudberry资源管理器失败,出现403 forbidden错误。我使用相同的密钥连接到aws cli和cloudberry但不确定导致问题的原因。任何人都可以帮忙解决这个问题。
{
"Version": "2012-10-17",
"Statement": [
{
"Action": "s3:ListAllMyBuckets",
"Resource": "arn:aws:s3:::*",
"Effect": "Allow"
},
{
"Action": [
"s3:ListBucket",
"s3:GetBucketLocation"
],
"Resource": "arn:aws:s3:::test1",
"Effect": "Allow",
"Condition": {
"StringEquals": {
"s3:prefix": [
"",
"/",
"download/",
"download/*",
"upload/",
"upload/*"
]
}
}
},
{
"Action": "s3:GetObject",
"Resource": "arn:aws:s3:::test1/download/*",
"Effect": "Allow"
},
{
"Action": [
"s3:GetObject",
"s3:PutObject",
"s3:DeleteObject"
],
"Resource": "arn:aws:s3:::test1/upload/*",
"Effect": "Allow"
}
]
}
答案 0 :(得分:0)
你可以尝试Fiddler进行流量检查吗?为了更好地了解您的请求遇到403错误的位置。
让我知道。