jonrau1/SyntheticSun

[BUG] S3 bucket access policy not created in cloudformation template and applied to MISP instance profile

sonofagl1tch opened this issue · 1 comments

Describe the bug
S3 bucket access policy not created in cloudformation template and applied to MISP instance profile

To Reproduce
Steps to reproduce the behavior:

  1. run cloudformation template
  2. try and run aws s3 cp s3://<artifact-bucket-name-here>/suricata.yaml .
  3. get error fatal error: An error occurred (403) when calling the HeadObject operation: Forbidden
  4. cry

Expected behavior

  1. Create new policy in cloudformation template
  2. Attach new policy to MISP instance profile

{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "VisualEditor0",
"Effect": "Allow",
"Action": "s3:GetObject",
"Resource": [
"arn:aws:s3:::/",
"arn:aws:s3:::$syntheticsun-artifacts"
]
}
]
}

I ran into the same issue and updated the permissions.