使用 Amazon S3 阻止公有访问

Posted cloudrivers

tags:

篇首语:本文由小常识网(cha138.com)小编为大家整理,主要介绍了使用 Amazon S3 阻止公有访问相关的知识,希望对你有一定的参考价值。

Amazon S3 提供用于存储桶账户阻止公有访问设置,以帮助您管理对 Amazon S3 资源的公有访问。默认情况下,新存储桶和对象不允许公有访问,但用户可以通过修改存储桶策略或对象权限来允许公有访问。Amazon S3 阻止公有访问设置可覆盖这些策略和权限,以便于您限制对这些资源的公有访问。借助 Amazon S3 阻止公有访问,账户管理员和存储桶所有者可以轻松设置集中控制,来控制对已实施 Amazon S3 资源的公有访问(与资源的创建方式无关)。

When Amazon S3 receives a request to access a bucket or an object, it determines whether the bucket or the bucket owner‘s account has a block public access setting applied. If there is an existing block public access setting that prohibits the requested access, then Amazon S3 rejects the request. Amazon S3 block public access provides four settings. These settings are independent and can be used in any combination. And each setting can be applied to a bucket or to an entire AWS account. If a bucket has block public access settings that are different from its owner‘s account, Amazon S3 applies the most restrictive combination of the bucket-level and account-level settings. When Amazon S3 evaluates whether an operation is prohibited by a block public access setting, it rejects any request that violates either a bucket-level or an account-level setting.

以上是关于使用 Amazon S3 阻止公有访问的主要内容,如果未能解决你的问题,请参考以下文章

Amazon s3:“阻止公共访问”设置以允许使用签名 URL 进行公共读取私有写入

Amazon S3 存储桶策略只允许访问特定的 http

Amazon S3 存储桶策略阻止用户代理

被 CORS 策略阻止:从 Amazon S3 调用图像时没有“Access-Control-Allow-Origin”标头

在 angular2 中使用 http 访问 Amazon s3

允许 lambda 函数访问 S3 存储桶但阻止外部 IP