Grant access to OHSU S3 bucket to HMS IAM role user

Question

Closed this issue 4 years ago · 5 comments

The ARN of our role user is as follows:
arn:aws:iam::292075781285:user/idp-import

Answer 1 · 2020-11-03T00:51:31.000Z

@jmuhlich you should have access to s3://htan-dcc-ohsu now!

Answer 2 · 2020-11-17T19:37:12.000Z

I can list and get objects, but not put. If that's the expected permissions then we're all set.

Answer 3 · 2020-11-20T19:57:04.000Z

I think that's expected, do you require put permissions?

Answer 4 · 2020-11-24T18:46:38.000Z

@jmuhlich just remembered that you're probably getting access denied because we require an extra flag when people put objects into buckets so we have full control over them: https://ncihtan.github.io/HTAN-Data-Ingress-Docs/programmatic-upload-aws-cli.html

Answer 5 · 2020-12-22T20:36:24.000Z

I didn't need put permissions, just testing the boundaries. Good to know about the docs for upload though. I think this is resolved.