AWS S3

AWS » S3

Mounting buckets with s3fs

Create an IAM user
https://console.aws.amazon.com/iamv2/home#/users
```
arn:aws:iam::XXXXXXXXXXX:user/pwstmp
```
with AmazonS3ReadOnlyAccess
Generate Security Credentials
(these will actually be offered to you at the end of the create process)

if the S3 account has encrypted storage, permission the IAM user to use the key...
https://eu-west-2.console.aws.amazon.com/kms/home?region=eu-west-2#/kms/keys
(to check whether you have an encrypted S3 bucket check the Default Encryption on the"Properties" tab of the bucket)

{
    "Version": "2012-10-17",
    "Statement": [
.... snip ....
       {
            "Effect": "Allow",
            "Principal": {
                "AWS": "arn:aws:iam::XXXXXXXXXXX:user/pwstmp"
            },
            "Action": [
                "kms:Decrypt",
                "kms:Encrypt",
                "kms:ReEncrypt*",
                "kms:GenerateDataKey*"
            ],
            "Resource": "*"
        }
    ]
}

Mount the bucket

s3fs -o passwd_file=~/passwd-s3fs -o allow_other  bucketId /mnt/s3/????

Happy to work as an Employee, Consultant, Contractor / Self Employed or via Limited Company

AWS » S3

Skills / Experience