O'Reilly logo

Amazon S3 Cookbook by Naoya Hashimoto

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Walkthrough 3: To grant cross-account bucket permissions to objects without ownership

Walkthrough 1 is almost similar to walkthrough 2. The difference is that the bucket owner in Account A wants to grant permissions of its bucket to their user. However, the owner does not own all objects in the bucket and wants to allows its users to access to objects it does not own, but are instead, owned by a user in Account B. The following diagram shows how AWS Account A grants permissions to the S3 bucket, and the Admin IAM user in AWS Account A delegates permissions to a different IAM user in its account to access the objects owned by the IAM user in Account B for this walkthrough.

To summarize, what you need to do is:

  1. Create a bucket policy in Account A ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required