-
Notifications
You must be signed in to change notification settings - Fork 58
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
What is the minimal IAM permission to run s3_data_store? #30
Comments
Here's what permissions you might need: Reading
Writing
Deleting
|
After some trial and error I managed to get it working with the following permissions:
|
I am also struggling with the actual minimal IAM permissions. I am seeing a ton of 403 forbidden errors getting generated by this library and it appears to be due to the storage.sync_clock which calls ListBuckets on S3 ( a GET /) for which the IAM user does not have permissions. Any thoughts on making sync_clock optional or use an operation the IAM user has permissions for to achieve it (it appears to ignore the error and just parse the response headers Date anyway)? |
Is that all?
The text was updated successfully, but these errors were encountered: