-
Notifications
You must be signed in to change notification settings - Fork 248
Provisioning S3 Manually
Matt Holt edited this page Oct 15, 2016
·
2 revisions
-
Create two IAM users. One user has
AmazonS3FullAccess. The other user hasAmazonS3ReadOnlyAccess(the credentials for this user will become public...) -
Create an S3 bucket (in region US Standard) with the following CORS configuration:
<?xml version="1.0" encoding="UTF-8"?>
<CORSConfiguration xmlns="http://s3.amazonaws.com/doc/2006-03-01/">
<CORSRule>
<AllowedOrigin>*</AllowedOrigin>
<AllowedMethod>GET</AllowedMethod>
<AllowedMethod>HEAD</AllowedMethod>
<MaxAgeSeconds>3000</MaxAgeSeconds>
<ExposeHeader>ETag</ExposeHeader>
<AllowedHeader>*</AllowedHeader>
</CORSRule>
</CORSConfiguration>- Give the bucket this policy (replace BUCKET_NAME):
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "PublicReadGetObject",
"Effect": "Allow",
"Principal": "*",
"Action": "s3:GetObject",
"Resource": "arn:aws:s3:::BUCKET_NAME/*"
}
]
}This bucket must be used exclusively for checks for this status page.