Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How to access buckets with boto3

Tags:

amazon-web-services

amazon-s3

boto3

boto

Here are my permissions: enter image description here

Additionally, I have this as a bucket policy:

{
    "Version": "2008-10-17",
    "Statement": [
        {
            "Sid": "",
            "Effect": "Allow",
            "Principal": {
                "AWS": "*"
            },
            "Action": "s3:*",
            "Resource": [
                "arn:aws:s3:::manga-learn-data",
                "arn:aws:s3:::manga-learn-data/*"
            ]
        }
    ]
}

I have this in my ~/.aws/config file:

[default]
region=us-west-2

And this in my ~/.aws/credentials file:

[default]
aws_access_key_id = <access-key>
aws_secret_access_key = <secret-key>

Now I do:

>>> import boto3
>>> s3 = boto3.resource('s3')
>>> s3.buckets.all()
s3.bucketsCollection(s3.ServiceResource(), s3.Bucket)
>>> for bucket in s3.buckets.all():
...         print(bucket.name)
...
Traceback (most recent call last):
  File "<stdin>", line 1, in <module>
  File "/Users/alex/anaconda2/lib/python2.7/site-packages/boto3/resources/collection.py", line 83, in __iter__
    for page in self.pages():
  File "/Users/alex/anaconda2/lib/python2.7/site-packages/boto3/resources/collection.py", line 161, in pages
    pages = [getattr(client, self._py_operation_name)(**params)]
  File "/Users/alex/anaconda2/lib/python2.7/site-packages/botocore/client.py", line 262, in _api_call
    return self._make_api_call(operation_name, kwargs)
  File "/Users/alex/anaconda2/lib/python2.7/site-packages/botocore/client.py", line 552, in _make_api_call
    raise ClientError(parsed_response, operation_name)
botocore.exceptions.ClientError: An error occurred (AccessDenied) when calling the ListBuckets operation: Access Denied

And you see the traceback there. I am following the steps here: https://github.com/boto/boto3

Any suggestions?

like image 839
BigBoy1337 Avatar asked Jun 16 '16 03:06

BigBoy1337

People also ask

How do I view contents of S3 bucket?

Start S3 Browser and select the bucket you want to browse. Files and folders will appear in the corresponding table. Content of Amazon S3 Bucket.

What is boto3 bucket?

An Amazon S3 bucket is a storage location to hold files. S3 files are referred to as objects. This section describes how to use the AWS SDK for Python to perform common operations on S3 buckets.

1 Answers

Your code currently tries to list all buckets but the IAM user does not have permission to do that.

You either have to grant the ListAllMyBuckets access to your IAM user, e.g.:

    {
      "Effect": "Allow",
      "Action": "s3:ListAllMyBuckets",
      "Resource": "arn:aws:s3:::*"
    },

Or you need to change your code to only access the bucket you are interested in:

bucket = s3.Bucket('manga-learn-data')
for object in bucket:
    # do whatever you need to do here
like image 90
garnaat Avatar answered Sep 19 '22 12:09

garnaat
Sign in to Comment

Related questions

AWS Lambda not authorised to perform action listed in permissions
Laravel artisan tinker from Amazon Linux 2 (Elastic Beanstalk)
EC2 - taking an EBS snapshot, saving to S3, and then launching instances from S3
How do you specify the requester's workerID in a mechanical turk HIT?
AWS EC2 apache log file location on AMI
Importing Key Pair into Amazon AWS - wrong fingerprint?
S3 DeleteObject - DeleteMarker always returns empty
Is it possible to create an AWS IAM policy for automatic resource tagging?
S3 performance for LIST by prefix with millions of objects in a single bucket
How to add Cc and Bcc in Amazon SES SendRawEmail?
AWS: Convert String to Region
How to check whether MFA is enabled for root account in AWS using boto?
How to verify that Amazon Kinesis Python client is working
How to set Amazon RDS SQL_MODE with multiple values
AWS CLI filter OR logic
Updating a file in Amazon S3 bucket
Does AWS support multicast and IGMP snooping?
How to invoke Lambda function with Event Invocation Type via API Gateway?
How to set folder permissions for a particular container on Elastic Beanstalk
Lambda and S3 Permission denied when want to create file

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!