DigitalOcean Kubernetes: new control plane is faster and free, enable HA for 99.95% uptime SLA

Question

How can I set the bucket policy to allow/deny actions for a particular Spaces API user?

I need to set a bucket policy so that only one of my API users (defined in Spaces access keys and properly authenticated via key and secret) can perform s3:PutObject and s3:deleteObject.

What do I need to specify as Principal in the policy below?

{
            "Sid": "AllowPrivatePutAndDelete",
            "Effect": "Allow",
            "Principal": {...},
            "Action": [
                "s3:PutObject",
                "s3:DeleteObject"
            ],
            "Resource": [
                "arn:aws:s3:::<bucket>/*"
            ]
        }

Thanks!

Submit an answer

This textbox defaults to using Markdown to format your answer.

You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!

Sign In or Sign Up to Answer

Try DigitalOcean for free

Click below to sign up and get $100 of credit to try our products over 60 days!

Sign up