1. 程式人生 > >Use Wildcards With Explicit Deny With Principle Elements in an S3 Bucket Policy

Use Wildcards With Explicit Deny With Principle Elements in an S3 Bucket Policy

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Sid": "",
            "Effect": "Allow",
            "Principal": "*",
            "Action": [
                "s3:ListBucket"
            ],
            "Resource": "arn:aws:s3:::myExampleBucket",
            "Condition": {
                "StringLike": {
                    "aws:userid": [
                        "AROAID2GEXAMPLEROLEID:*",
                        "444455556666"
                    ]
                }
            }
        },
        {
            "Sid": "",
            "Effect": "Allow",
            "Principal": "*",
            "Action": [
                "s3:DeleteObject",
                "s3:GetObject",
                "s3:PutObject"
            ],
            "Resource": "arn:aws:s3:::myExampleBucket/*",
            "Condition": {
                "StringLike": {
                    "aws:userid": [
                        "AROAID2GEXAMPLEROLEID:*",
                        "444455556666"
                    ]
                }
            }
        },
        {
            "Sid": "",
            "Effect": "Deny",
            "Principal": "*",
            "Action": "s3:*",
            "Resource": [
                "arn:aws:s3:::myExampleBucket/*",
                "arn:aws:s3:::myExampleBucket"
            ],
            "Condition": {
                "StringNotLike": {
                    "aws:userid": [
                        "AROAID2GEXAMPLEROLEID:*",
                        "444455556666"
                    ]
                }
            }
        }
    ]
}

相關推薦

Use Wildcards With Explicit Deny With Principle Elements in an S3 Bucket Policy

{ "Version": "2012-10-17", "Statement": [ { "Sid": "", "Effect": "Allow", "Principal": "*",

Enforce the Use of MFA When Users From Other Accounts Access Your S3 Bucket

{ "Version": "2012-10-17", "Id": "Policy201612130001aa", "Statement": [ { "Sid": "Stmt201612130001ab",

Use an S3 Bucket as an AWS DMS Target

{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": [ "s3:PutObject

How to use for ASP.NET Core with csproj

2017-10-10 23:40:29.5143||DEBUG|ASP.NET_Core_2___VS2017.Program|init main 2017-10-10 23:40:30.9739|0|INFO|Microsoft.AspNetCore.DataProtection.KeyManageme

Making the Most of Polymorphism with the Liskov Substitution Principle

The Liskov Substitution PrincipleIn object-oriented design, a common technique of creating objects with like behavior is the use of super- and sub-types. A

How to use APIs with Pandas and store the results in Redshift

How to use APIs with Pandas and store the results in RedshiftHere is an easy tutorial to help understand how you can use Pandas to get data from a RESTFUL

Avoiding Interface Pollution with the Interface Segregation Principle

The Interface Segregation PrincipleAs we discussed in our review of the Open/Closed Principle, interfaces are a means of programming with abstractions rath

Effective Program Structuring with the Dependency Inversion Principle

The Dependency Inversion PrincipleAt its heart, the DIP is about structure. The manner in which you structure your program entities, and the way in which t

How to Use Metrics for Deep Learning with Keras in Python

Tweet Share Share Google Plus The Keras library provides a way to calculate and report on a suit

Use Your Own Security Group With Elastic Beanstalk

2.    Create a security group for the load balancer. Configure the inbound and outbound rules for the security group as needed and record the a

How to use Dagger 2 on Android with Kotlin (KAD 20)

Virtually everyone who wants to create code on Android in a decoupled and easy-to-test way, resorts to Dagger sooner or later. Although there is some

Use Logs to Troubleshoot Issues with Hive Queries in Amazon EMR

$ aws s3 ls s3://aws-logs-223377617334-us-west-2/elasticmapreduce/j-3MCDUQO2MWNJ5/ PRE containers/

Spring Boot - Error creating bean with name 'dataSource' defined in class path resource

刪除 需要 reat text class with config autoconf ext 看起來像最初的問題是與自動配置。 如果你不需要數據源,只需從自動配置過程中刪除它: @EnableAutoConfiguration(exclude={DataSour

Spring Boot 報錯:Error creating bean with name 'entityManagerFactory' defined in class path resource

fine 依賴 debug isp jpa java idt .com ima spring boot 寫一個web項目,在使用spring-data-jpa的時候,啟動報如下錯誤: Error starting ApplicationContext. To display

idea報錯 Error creating bean with name 'requestMappingHandlerMapping' defined in class path resource

ror factory pojo mapped clas mes del strong per 核對一下控制器是不是寫了相同的路徑。。。org.springframework.beans.factory.BeanCreationException: Error crea

SQL Server WITH ROLLUP、WITH CUBE、GROUPING語句的應用

toolbar then span 分組 table bsp group 生成 spa CUBE:CUBE 生成的結果集顯示了所選列中值的所有組合的聚合。 ROLLUP:ROLLUP 生成的結果集顯示了所選列中值的某一層次結構的聚合。 GROUPING:當行由 CUBE 或

Cannot find class [org.apache.commons.dbcp.BasicDataSource] for bean with name 'dataSource' defined in class path resource [applicationContext

Cannot find class [org.apache.commons.dbcp.BasicDataSource] for bean with name 'dataSource' defined in class path resource [applicationContext.xml]; 該錯誤是因

Error creating bean with name 'dataSource' defined in class path resource [spring-config.xml]: BeanP

錯誤描述: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'dataSource' defined in class path resource [spring-con

Debugging programs with multiple processes with windbg’s kernel mode debugger

轉載自:http://www.vallejo.cc/2015/04/debugging-programs-with-multiple.html It’s common to reverse malware (or any type of software) that creates multip

報錯org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'sessionFactory' defined in class path resource [bean

報這種錯的原因基本上是applicationContext.xml檔案中bean配置錯誤,錯誤如下: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'sessionFactory'