Use an S3 User

Setting up an IAM Role (in development)

If using an IAM role to provide access

1) Create a policy that allows access to the bucket:

• Go to the AWS IAM Console → Policies → Create Policy

• Go to the JSON tab

• Copy the following policy and paste it into the visual editor. Replace {your-bucket-name} with the name of your S3 bucket.

{
    "Version": "2012-10-17",
    "Statement": [
        {
        "Effect": "Allow",
        "Action": [
                "s3:GetBucketLocation",
                "s3:GetObject",
                "s3:ListBucket"

        ],
        "Resource": [
                "arn:aws:s3:::{your-bucket-name}/*",
                "arn:aws:s3:::{your-bucket-name}"
        ]
        }
    ]
}

• You can save the policy as HockeyStack-DataSyncs-S3Access

2) Create an IAM user:

• Go to the AWS IAM Console → Users → Add Users

• After creating a user name, select "Attach Policies Directly" to add the HockeyStack-DataSyncs-S3Access policy created in the previous step

3) Retrieving the Access Key and Secret Access Key

• In the Users tab, find the user we created

• Go to Security credentials tab and navigate to the Access keys section

• Click Create access key

• From the Use Case options, select the Third-party service option and then click Next

• Enter a Description tag value and then click Create access key

• Copy the Access key and Secret access key values