Question

How can I set the bucket policy to allow/deny actions for a particular Spaces API user?

Posted February 12, 2020 121

DigitalOcean Spaces

I need to set a bucket policy so that only one of my API users (defined in Spaces access keys and properly authenticated via key and secret) can perform s3:PutObject and s3:deleteObject.

What do I need to specify as Principal in the policy below?

{
            "Sid": "AllowPrivatePutAndDelete",
            "Effect": "Allow",
            "Principal": {...},
            "Action": [
                "s3:PutObject",
                "s3:DeleteObject"
            ],
            "Resource": [
                "arn:aws:s3:::<bucket>/*"
            ]
        }

Thanks!

Add a comment

By:

bstiel

Add a comment

Submit an answer

Looking for something else?

Ask a new question Search for more help

Share

Share your Question

Question

How can I set the bucket policy to allow/deny actions for a particular Spaces API user?

Leave a comment

Related

question

How many subdomain can I have per droplet ? Especially if I buy 5$ droplet space?

question

Why does my droplet power off on its own yet it has been working well ever since?

question

Delete Space Bucket Immediately

question

Spaces API and S3 compatibility question

Looking for something else?

Almost there!