{"id":2124,"date":"2020-12-07T15:11:51","date_gmt":"2020-12-07T12:11:51","guid":{"rendered":"https:\/\/artem.services\/?p=2121"},"modified":"2022-06-08T23:05:40","modified_gmt":"2022-06-08T20:05:40","slug":"2124","status":"publish","type":"post","link":"https:\/\/artem.services\/?p=2124&lang=en","title":{"rendered":"AWS &#8212; S3 Allow Access for Organization Members"},"content":{"rendered":"<p><img loading=\"lazy\" class=\"aligncenter size-full wp-image-214\" src=\"https:\/\/artem.services\/wp-content\/uploads\/2018\/11\/AWS-Logo.png\" alt=\"\" width=\"975\" height=\"450\" srcset=\"https:\/\/artem.services\/wp-content\/uploads\/2018\/11\/AWS-Logo.png 975w, https:\/\/artem.services\/wp-content\/uploads\/2018\/11\/AWS-Logo-300x138.png 300w, https:\/\/artem.services\/wp-content\/uploads\/2018\/11\/AWS-Logo-768x354.png 768w, https:\/\/artem.services\/wp-content\/uploads\/2018\/11\/AWS-Logo-954x440.png 954w\" sizes=\"(max-width: 975px) 100vw, 975px\" \/><\/p>\n<p>In order to allow read access from the S3 Bucket for all members included in the organization, the following policy must be applied to the S3 Bucket:<\/p>\n<pre class=\"brush: java; title: ; notranslate\" title=\"\">\r\n{\r\n  &quot;Version&quot;: &quot;2012-10-17&quot;,\r\n  &quot;Statement&quot;: {\r\n    &quot;Sid&quot;: &quot;AllowOrganizationToReadBucket&quot;,\r\n    &quot;Effect&quot;: &quot;Allow&quot;,\r\n    &quot;Principal&quot;: &quot;*&quot;,\r\n    &quot;Action&quot;: [\r\n      &quot;s3:GetObject&quot;,\r\n      &quot;s3:ListBucket&quot;\r\n    ],\r\n    &quot;Resource&quot;: [\r\n      &quot;arn:aws:s3:::stackset-lambdas&quot;,\r\n      &quot;arn:aws:s3:::stackset-lambdas\/*&quot;\r\n    ],\r\n    &quot;Condition&quot;: {\r\n      &quot;StringEquals&quot;: {&quot;aws:PrincipalOrgID&quot;:[&quot;o-xxxxxxxxxx&quot;]}\r\n    }\r\n  }\r\n}\r\n<\/pre>\n<p>&nbsp;<\/p>\n<blockquote><p>Where &quot;<strong>stackset-lambdas<\/strong>&quot; is the S3 Bucket name and &quot;<strong>o-xxxxxxxxxx<\/strong>&quot; is your Organization ID.<\/p><\/blockquote>\n","protected":false},"excerpt":{"rendered":"<p>In order to allow read access from the S3 Bucket for all members included in the organization, the following policy must be applied to the S3 Bucket: &nbsp; Where &quot;stackset-lambdas&quot; is the S3 Bucket name and &quot;o-xxxxxxxxxx&quot; is your Organization ID.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[599],"tags":[543,1747,483,1749],"_links":{"self":[{"href":"https:\/\/artem.services\/index.php?rest_route=\/wp\/v2\/posts\/2124"}],"collection":[{"href":"https:\/\/artem.services\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/artem.services\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/artem.services\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/artem.services\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2124"}],"version-history":[{"count":5,"href":"https:\/\/artem.services\/index.php?rest_route=\/wp\/v2\/posts\/2124\/revisions"}],"predecessor-version":[{"id":2307,"href":"https:\/\/artem.services\/index.php?rest_route=\/wp\/v2\/posts\/2124\/revisions\/2307"}],"wp:attachment":[{"href":"https:\/\/artem.services\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2124"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/artem.services\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2124"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/artem.services\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2124"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}