3

我无法访问我的 Amazon Elastic Transcoder 管道的输入 S3 存储桶。

3003 Does Not Have Read Permission The IAM role specified in the Role object in the pipeline that you used for this job doesn't have permission to read from the Amazon S3 bucket that contains the file you want to transcode.

3003 d6a37de0-6404-4cde-9c37-7aada57d54b2: You do not have the permissions required to read the specified object from the specified bucket: bucket=mybucket, key=myinputfile.MOV.

  • 存储桶mybucket没有存储桶策略
  • AIM 角色还具有托管策略AmazonS3FullAccessAmazonElasticTranscoderFullAccess 托管策略

这是附加到管道(Amazon Elastic Transcoder 管道)的 IAM 角色的自定义内联策略:

{
    "Version": "2008-10-17",
    "Statement": [
        {
            "Sid": "1",
            "Effect": "Allow",
            "Action": [
                "s3:ListBucket",
                "s3:Put*",
                "s3:Get*",
                "s3:*MultipartUpload*"
            ],
            "Resource": "*"
        },
        {
            "Sid": "2",
            "Effect": "Allow",
            "Action": "sns:Publish",
            "Resource": "*"
        },
        {
            "Sid": "3",
            "Effect": "Deny",
            "Action": [
                "s3:*Policy*",
                "sns:*Permission*",
                "sns:*Delete*",
                "s3:*Delete*",
                "sns:*Remove*"
            ],
            "Resource": "*"
        },
        {
            "Sid": "4",
            "Effect": "Allow",
            "Action": [
                "s3:GetObject",
                "s3:PutObject"
            ],
            "Resource": "arn:aws:s3:::mybucket/*"
        }
    ]
}

如果有人能指出我正确的方向并阐明如何授予我的 Amazon Elastic Transcoder 访问我的 S3 存储桶的权限,我将不胜感激。

4

1 回答 1

0

我知道现在回复你的问题已经很晚了。我今天也遇到了同样的错误,发现错误是由于输出存储桶中存在同名文件而引发的。解决方案是生成一个不同的名称或删除您以前的输出文件。我不知道为什么 aws 会抛出权限错误。

于 2020-02-26T18:38:07.393 回答