You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@fineract.apache.org by "Shaik Nazeer Hussain (JIRA)" <ji...@apache.org> on 2017/01/18 12:38:27 UTC

[jira] [Comment Edited] (FINERACT-380) S3 permission issue -- add system property

    [ https://issues.apache.org/jira/browse/FINERACT-380?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15827972#comment-15827972 ] 

Shaik Nazeer Hussain edited comment on FINERACT-380 at 1/18/17 12:37 PM:
-------------------------------------------------------------------------

Got the update from AWS and see the comments below

The current policy only allows actions on the bucket (like List), it does not allow actions on objects in the bucket. If this is required, you will need to update the IAM policy as follows:

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Action": [
                "s3:*"
            ],
            "Resource": [
                "arn:aws:s3:::BUCKET_NAME",
                "arn:aws:s3:::BUCKET_NAME/*"
            ],
            "Effect": "Allow"
        }
    ]
}
A similar example is shown here: http://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_examples.html




was (Author: nazeer1100126):
Got the update from AWS and see the comments below

The current policy only allows actions on the bucket (like List), it does not allow actions on objects in the bucket. If this is required, you will need to update the IAM policy as follows:

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Action": [
                "s3:*"
            ],
            "Resource": [
                "arn:aws:s3:::prd-prdbeta",
                "arn:aws:s3:::prd-prdbeta/*"
            ],
            "Effect": "Allow"
        }
    ]
}
A similar example is shown here: http://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_examples.html



> S3 permission issue -- add system property
> ------------------------------------------
>
>                 Key: FINERACT-380
>                 URL: https://issues.apache.org/jira/browse/FINERACT-380
>             Project: Apache Fineract
>          Issue Type: Improvement
>            Reporter: thynn win
>            Assignee: Shaik Nazeer Hussain
>            Priority: Critical
>              Labels: p1
>
> Due to signature version 4 issue, I am unable to use S3 with Mifos.
> Amazon suggested we add a system property and could you please help us add this in the next version?
> AWS Error Code: InvalidRequest, AWS Error Message: The authorization mechanism you have provided is not supported. Please use AWS4-HMAC-SHA256.
> http://docs.aws.amazon.com/AmazonS3/latest/dev/UsingAWSSDK.html#specify-signature-version



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)