Define list of IAM Permissions

awslabs / flexible-snapshot-proxy

High-performance open-source orchestration utility that utilizes EBS Direct APIs to efficiently clone, copy and migrate EBS snapshots to and from arbitrary File, Block or Object destinations.

Apache License 2.0

30 stars 2 forks source link

Define list of IAM Permissions #9

Open rducic opened 2 years ago

rducic commented 2 years ago

I am trying to narrow down the IAM permissions required. So far I have these: { "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": [ "ec2:DescribeSnapshots", "ec2:DescribeRegions", "ebs:StartSnapshot", "s3:GetBucketAcl", "s3:ListBucket", "s3:PutObject", "s3:GetObject", ], "Resource": "*" } ] } But I am getting botocore.exceptions.ClientError: An error occurred (AccessDenied) when calling the ListBuckets operation: Access Denied

dangeReis commented 1 year ago

Same, seems like we need to add at least ListBuckets.