Open airbone42 opened 8 years ago
We got a Forbidden for retrieving the object head.
Please re-check.
s3.getHead
should only require s3:GetObject
. I just retested and my policy does not include s3:ListBucket
. s3.getHead
worked fine.
Is your source bucket in a different region/account or something else unusual?
We're working in eu-central-1. The AWS business support brought us to this point. Not sure if it's region-specific.
I tried it now in eu-central-1 and again it worked fine without the s3:ListObjects
command.
Give your lambda another try with the s3:ListObjects
removed. Just have the policy outlined.
What failed if
s3:ListBucket
was missing?