[ 
https://issues.apache.org/jira/browse/FINERACT-380?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15827972#comment-15827972
 ] 

Shaik Nazeer Hussain edited comment on FINERACT-380 at 1/18/17 12:37 PM:
-------------------------------------------------------------------------

Got the update from AWS and see the comments below

The current policy only allows actions on the bucket (like List), it does not 
allow actions on objects in the bucket. If this is required, you will need to 
update the IAM policy as follows:

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Action": [
                "s3:*"
            ],
            "Resource": [
                "arn:aws:s3:::BUCKET_NAME",
                "arn:aws:s3:::BUCKET_NAME/*"
            ],
            "Effect": "Allow"
        }
    ]
}
A similar example is shown here: 
http://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_examples.html




was (Author: nazeer1100126):
Got the update from AWS and see the comments below

The current policy only allows actions on the bucket (like List), it does not 
allow actions on objects in the bucket. If this is required, you will need to 
update the IAM policy as follows:

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Action": [
                "s3:*"
            ],
            "Resource": [
                "arn:aws:s3:::prd-prdbeta",
                "arn:aws:s3:::prd-prdbeta/*"
            ],
            "Effect": "Allow"
        }
    ]
}
A similar example is shown here: 
http://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_examples.html



> S3 permission issue -- add system property
> ------------------------------------------
>
>                 Key: FINERACT-380
>                 URL: https://issues.apache.org/jira/browse/FINERACT-380
>             Project: Apache Fineract
>          Issue Type: Improvement
>            Reporter: thynn win
>            Assignee: Shaik Nazeer Hussain
>            Priority: Critical
>              Labels: p1
>
> Due to signature version 4 issue, I am unable to use S3 with Mifos.
> Amazon suggested we add a system property and could you please help us add 
> this in the next version?
> AWS Error Code: InvalidRequest, AWS Error Message: The authorization 
> mechanism you have provided is not supported. Please use AWS4-HMAC-SHA256.
> http://docs.aws.amazon.com/AmazonS3/latest/dev/UsingAWSSDK.html#specify-signature-version



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Reply via email to