Amazon S3 Access Control - IAM Policies, Bucket Policies and ACLs

Been struggling with AWS permissions and policies for weeks on end now. Found this tutorial series this morning and already feel like I've learned so much in a handful of hours. Thank you very much!!

Thank you for the instructions. Perfectly summarised and clear and understandable.

One of. the best explanations I have seen!

this is an amazing explanation I see in all RUclips about this subject S3. Thank you a lot of

Beautifully explained. Thank you 👍

Very well explained, thanks

This video is awesome!! Thanks

Great explanation.

This is soooo helpful

Awesome info helpme a lot TY

Great training session on this topic, the only thing I would liked to see is policies attached to roles but I think I saw enough to extrapolate that to roles.

thank you!!!!

Thanks for your great session. One thing I want to know, do you have any sessions for S3 and WooCommerce Downloadable products.

Good one.

helped me a ton

i was learning through your course from udemy and I couldnt understand the last part bucket policy(copied directly from your resources in udemy).
I cant upload or download file and I cant create folder.
I am sure the bucket policy work to provide some privilege to the user(without identity based policy) because i can view the detail through the console.
But I cant actually upload or download.
I figure this has to to with the block public access or ACL. But then why do we need resource based policy if things are already public.
No idea how to get help from your course. Thought I try my luck here.

How to conditionally grant access of S3bucket to a specified/ list of lambda functions?

Thanks for the lesson. I could not get the 5th policy working. I can see the contents of the Confidential folder for user Paul, but cannot download the contents of the Confidential folder.

on a bucket that has public access, can i prevent users from downloading files within or from that bucket?

Hey I need to know is there any way we can block public access to group of users simultaneously via a single code

Hello, you seem very knowledgeable about S3. I have an unrelated question: Do you know how I can export/download 20-30 links from s3 to Google Sheets at the same time?

s3 bucket permission in ACL shows: This bucket has the bucket owner enforced setting applied for Object Ownership, When bucket owner enforced is applied, use bucket policies to control access. and ACL edit button is undetectable/greyed out. .....I have used bucket policy to enable GetObject from this s3 bucket and turned off Block public access (bucket settings). due to this when I enable versioning, I can only access the latest version publically whereas other versions (including null, uploaded before enabling versioning) show the Access denied page. the ACL policy for object (versioning enabled) is also unselectable and greyed out.... are there some updates in the system or is there some setting in my IAM account that is showing such behavior... what am I doing wrong?

I want to restrict the IP address for some hours(say 24 hrs), for those who query to my AWS s3 bucket for more than 100/second. As they might be spam and wanted to harm my business by increasing traffic and raising my AWS costing. How can I restrict these type of IP addresses dynamically and release them after 24hrs?

Are there any plans for a AWS Devops Professional course?

Can you show where the json policy files are stored

papi

Hi, I am trying to create a stack on Opsworks. but it showing me this "An IAM role is required to create a stack." Can you help? Thanks