Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

S3 Access column shows "Error" for all buckets

Tags:

amazon-web-services

amazon-s3

In my console, all buckets show "Error" at the access column. Every operation results in an error, being it uploading, downloading, deleting or modifying files. The only thing I can do is creating a bucket. Afterwards however, I can't do anything with it.

I always had access rights and was previously working with my current account. I even tried it with the root account without any success. This seems to have happened miraculously over night as I wasn't working with S3 much during the past days.

N.B. I don't use any other APIs beside the console.

enter image description here

like image 238
Younes El Ouarti Avatar asked Feb 21 '19 10:02

Younes El Ouarti

People also ask

How do I fix an AWS S3 bucket policy and Public permissions access denied error?

If you're denied permissions, then use another IAM identity that has bucket access, and edit the bucket policy. Or, delete and recreate the bucket policy if no one has access to it. If you're trying to add a public read policy, then disable the bucket's S3 Block Public Access.

When accessing a S3 bucket you get 403 Forbidden error What does it mean?

The "403 Forbidden" error can occur due to the following reasons: Permissions are missing for s3:PutObject to add an object or s3:PutObjectAcl to modify the object's ACL. You don't have permission to use an AWS Key Management Service (AWS KMS) key. There is an explicit deny statement in the bucket policy.

Why is my S3 Access Denied?

If you're getting Access Denied errors on public read requests that are allowed, check the bucket's Amazon S3 block public access settings. Review the S3 Block Public Access settings at both the account and bucket level. These settings can override permissions that allow public read access.

Who is responsible for S3 bucket access configuration?

By default, all Amazon S3 buckets and objects are private. Only the resource owner which is the AWS account that created the bucket can access that bucket. The resource owner can, however, choose to grant access permissions to other resources and users.

1 Answers

In your IAM policy permission, you have to add following permission for S3 console to list all your buckets properly (without error).

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Sid": "Console_List_S3_Buckets",
            "Effect": "Allow",
            "Action": [
                "s3:GetBucketLocation",
                "s3:ListAllMyBuckets",
                "s3:GetAccountPublicAccessBlock",
                "s3:GetBucketAcl",
                "s3:GetBucketPolicyStatus",
                "s3:GetBucketPublicAccessBlock"
            ],
            "Resource": "*"
        }
}
like image 188
Mohammad Selim Miah Avatar answered Sep 20 '22 15:09

Mohammad Selim Miah
Sign in to Comment

Related questions

Does AWS support multicast and IGMP snooping?
How to invoke Lambda function with Event Invocation Type via API Gateway?
How to set folder permissions for a particular container on Elastic Beanstalk
Lambda and S3 Permission denied when want to create file
How to access buckets with boto3
How to mock AWS API using Mockito in java
Terminate SSL on Application Load Balancer in front of Elastic Beanstalk
How to Add iamRoleStatements to S3 Trigger Bucket in Serverless Framework
Verifying S3 credentials w/o GET or PUT using boto3
Overwrite MySQL tables with AWS Glue
How do I get the date/requestTime/timestamp in Mapping Template
SerializationException:Start of structure or map found where not expected: API Gateway to Step function
Amazon cloudwatch agent not working
Terraform : Specifying the working directory when running terraform apply/plan
Using AWS SES SMTP- error 554 Message rejected: Email address is not verified. The following identities failed the check in region
AWS Lambda: call function from another AWS lambda using boto3 invoke
Boto3 AWS S3 bucket creation error
Disable "delete" option for S3 objects in AWS
AWS Route 53 wildcard subdomain with Api gateway
How do I export AWS AppSync resolvers?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!