How to troubleshoot ACCESS DENIED in code deploy for DownloadBundle stage

Question

The attached screenshot is the error. There are no stderr messages for me to troubleshoot. I have already set the necessary EC2 IAM access to S3. So what could be the problem?

[ [

I have also add in the user requirements for IAM, so I am not sure what is wrong

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": [
                "s3:Get*",
                "s3:List*"
            ],
            "Resource": [
                "arn:aws:s3:::codepipeline-ap-southeast-1-617020163322/*",
                "arn:aws:s3:::aws-codedeploy-us-east-2/*",
                "arn:aws:s3:::aws-codedeploy-us-east-1/*",
                "arn:aws:s3:::aws-codedeploy-us-west-1/*",
                "arn:aws:s3:::aws-codedeploy-us-west-2/*",
                "arn:aws:s3:::aws-codedeploy-ca-central-1/*",
                "arn:aws:s3:::aws-codedeploy-eu-west-1/*",
                "arn:aws:s3:::aws-codedeploy-eu-west-2/*",
                "arn:aws:s3:::aws-codedeploy-eu-west-3/*",
                "arn:aws:s3:::aws-codedeploy-eu-central-1/*",
                "arn:aws:s3:::aws-codedeploy-ap-northeast-1/*",
                "arn:aws:s3:::aws-codedeploy-ap-northeast-2/*",
                "arn:aws:s3:::aws-codedeploy-ap-southeast-1/*",
                "arn:aws:s3:::aws-codedeploy-ap-southeast-2/*",
                "arn:aws:s3:::aws-codedeploy-ap-south-1/*",
                "arn:aws:s3:::aws-codedeploy-sa-east-1/*"
            ]
        }
    ]
}

Answer 1

Had the same issue, and resolved by looking up destination instances IAM role (under instance description tab) and attached S3 access policy.

Answer 2

I have the same issue and was able to resolve it. I forgot to add permission to KMS in my EC2 Assume Role. My S3 artifact bucket uses KMS Encryption hence since CodePipeline uses KMS, it throws ACCESS DENIED to the S3 bucket. The error though is not friendly enough to tell the user what is the actual problem.