How To: Block access to AWS S3 buckets, for particular IAM user(s)

At times we want to allow/deny access to any particular S3 bucket, for a particular user.
Similar case would be, suppose you want to give someone only a read access to your AWS infra, but you don't want them looking at your specific buckets.

The below snippet would help you achieve the same.

{
    "Id": "bucketPolicy",
    "Statement": [
        {
            "Action": "s3:*",
            "Effect": "Deny",
            "NotPrincipal": {
                "AWS": [
                    "arn:aws:iam::277739107537:user/test"
                ]
            },
            "Resource": [
                "arn:aws:s3:::bucket",
                "arn:aws:s3:::bucket/*"
            ]
        }
    ],
    "Version": "2012-10-17"
}

How To: Block access to AWS S3 buckets, for particular IAM user(s)

How To: Send your public IP via mail on raspberry pi reboot

How To: Allow only whitelisted IP's to access any S3 bucket

Subscribe to A Developer's Diary

Subscribe to A Developer's Diary