Sar*_*may 6 amazon-s3 amazon-ec2 amazon-web-services
请帮忙!
Last login: Wed Jul 23 00:04:41 2014 from 46.7.181.81 Could not open a connection to your authentication agent. ubuntu@ip:~$ wget https://s3-eu-west-1.amazonaws.com/hadoopconfigfiles/core-site.xml
--2014-07-23 00:29:12-- Resolving s3-eu-west-1.amazonaws.com (s3-eu-west-1.amazonaws.com)... Connecting to s3-eu-west-1.amazonaws.com (s3-eu-west-1.amazonaws.com)| connected.
HTTP request sent, awaiting response... 403 Forbidden 2014-07-23 00:29:12 ERROR 403: Forbidden.
我已经尝试了一切。来自 IAM 的策略(存储桶策略)公开了该文件。授予了所有权限,但我仍然收到禁止的错误。我正在使用 ec2 t2.micro 实例,并从命令行使用 wget 从我的 s3 存储桶获取文件。
https://s3-eu-west-1.amazonaws.com/hadoopconfigfiles/core-site.xml
这是我使用的存储桶策略
{
"Version": "2008-10-17",
"Id": "Policy1406073673060",
"Statement": [
{
"Sid": "Stmt1406073666892",
"Effect": "Allow",
"Principal": "*",
"Action": "s3:*",
"Resource": "arn:aws:s3:::hadoopconfigfiles/*"
}
]
}
这是 IAM 政策
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": "*",
"Resource": "*"
}
]
}
还将 IAM 策略附加到实例并重新启动但没有效果。请帮忙。
BR,萨弗拉兹。
小智 0
您的存储桶策略看起来是正确的,所以我建议您查看您的 CORS 配置并使其看起来像这样:
<CORSConfiguration>
<CORSRule>
<AllowedOrigin>*</AllowedOrigin>
<AllowedMethod>GET</AllowedMethod>
<AllowedHeader>*</AllowedHeader>
</CORSRule>
</CORSConfiguration>