...
| Code Block |
|---|
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "VisualEditor0",
"Effect": "Allow",
"Action": [
"s3:PutObject",
"s3:GetObjectAcl",
"s3:GetObject",
"s3:PutBucketAcl",
"s3:ListBucket"
],
"Resource": [
"arn:aws:s3:::dexco-dev-da-data-upload-archive",
"arn:aws:s3:::dexco-dev-da-data-upload-archive/*"
]
}
]
} |
Criação da Chave Pública Para uso do Processo (criada uma única vez para cada unidade de negócio):
Nome do usuário IAM: svc-dexco-dev-da-data-upload-<BU>
Nome da role IAM: bucket-access-dexco-dev-da-data-upload-<BU>
| Code Block |
|---|
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "AllowRootAndHomeListingOfDexcoBucket",
"Action": [
"s3:ListBucket"
],
"Effect": "Allow",
"Resource": [
"arn:aws:s3:::dexco-dev-data-upload"
],
"Condition": {
"StringEquals": {
"s3:prefix": [
"",
"/",
"madeira/"
],
"s3:delimiter": [
"/"
]
}
}
},
{
"Sid": "AllowListingOfUserFolder",
"Action": [
"s3:ListBucket"
],
"Effect": "Allow",
"Resource": [
"arn:aws:s3:::dexco-dev-data-upload"
],
"Condition": {
"StringLike": {
"s3:prefix": [
"madeira/*"
]
}
}
},
{
"Sid": "AllowAllS3ActionsInUserFolder",
"Effect": "Allow",
"Action": [
"s3:PutObject",
"s3:GetObjectAcl",
"s3:ListBucket",
"s3:PutObjectAcl"
],
"Resource": [
"arn:aws:s3:::dexco-dev-data-upload/madeira/*"
]
}
]
} |