Skip to main content

S3: buckets, access policies and CORS policies

deserted-chateau-test-external-site-assets

Bucket Policy
{
    "Version": "2012-10-17",
    "Id": "Policy1477065434531",
    "Statement": [
        {
            "Sid": "Stmt1477065432829",
            "Effect": "Allow",
            "Principal": {
                "AWS": "arn:aws:iam::704509183101:user/Deserted-Chateau-Test-BunnyCDN-User"
            },
            "Action": "s3:GetObject",
            "Resource": "arn:aws:s3:::deserted-chateau-test-external-site-assets/*"
        }
    ]
}
Block All Public Access

Yes

CORS Policy

None

Lifecycle Rules

None

deserted-chateau-test-protected

Bucket Policy
{
    "Version": "2008-10-17",
    "Id": "PolicyForCloudFrontPrivateContent",
    "Statement": [
        {
            "Sid": "AllowCloudFrontServicePrincipal",
            "Effect": "Allow",
            "Principal": {
                "Service": "cloudfront.amazonaws.com"
            },
            "Action": "s3:GetObject",
            "Resource": "arn:aws:s3:::deserted-chateau-test-protected/*",
            "Condition": {
                "StringEquals": {
                    "AWS:SourceArn": "arn:aws:cloudfront::704509183101:distribution/E2DXB4ICQINRD0"
                }
            }
        }
    ]
}
Block All Public Access

Yes

CORS Policy

None

Lifecycle Rules
  • Expire all objects with prefix tmpuploads/ after 1 day

deserted-chateau-test-public

Bucket Policy
{
    "Version": "2012-10-17",
    "Id": "Policy1477065434531",
    "Statement": [
        {
            "Sid": "Stmt1477065432829",
            "Effect": "Allow",
            "Principal": {
                "AWS": "arn:aws:iam::704509183101:user/Deserted-Chateau-Test-BunnyCDN-User"
            },
            "Action": "s3:GetObject",
            "Resource": "arn:aws:s3:::deserted-chateau-test-external-site-assets/*"
        }
    ]
}
Block All Public Access

Yes

CORS Policy
[
    {
        "AllowedHeaders": [
            "*"
        ],
        "AllowedMethods": [
            "GET",
            "HEAD"
        ],
        "AllowedOrigins": [
            "https://*.desertedchateau.com"
        ],
        "ExposeHeaders": [],
        "MaxAgeSeconds": 3000
    }
]
Lifecycle Rules
  • Expire all objects with prefix tmpuploads/ after 1 day

deserted-chateau-test-subscribed

Bucket Policy
{
    "Version": "2012-10-17",
    "Id": "Policy1477065434531",
    "Statement": [
        {
            "Sid": "Stmt1477065432829",
            "Effect": "Allow",
            "Principal": {
                "AWS": "arn:aws:iam::704509183101:user/Deserted-Chateau-Test-BunnyCDN-User"
            },
            "Action": "s3:GetObject",
            "Resource": "arn:aws:s3:::deserted-chateau-test-subscribed/*"
        }
    ]
}
Block All Public Access

Yes

CORS Policy
[
    {
        "AllowedHeaders": [
            "*"
        ],
        "AllowedMethods": [
            "GET",
            "HEAD"
        ],
        "AllowedOrigins": [
            "https://*.desertedchateau.com"
        ],
        "ExposeHeaders": [],
        "MaxAgeSeconds": 3000
    }
]
Lifecycle Rules

None

deserted-chateau-test-user-data-requests

Bucket Policy

None

Block All Public Access

Yes

CORS Policy
[
    {
        "AllowedHeaders": [
            "*"
        ],
        "AllowedMethods": [
            "GET",
            "HEAD"
        ],
        "AllowedOrigins": [
            "https://*.desertedchateau.com"
        ],
        "ExposeHeaders": [],
        "MaxAgeSeconds": 3000
    }
]
Lifecycle Rules
  • Expire all objects with prefix userdata/ after 7 days
Back to top