Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Error Deleting File from S3 bucket when using restricted access IAM user #9063

Closed
cyberduck opened this issue Oct 20, 2015 · 1 comment
Closed
Labels
bug duplicate s3 AWS S3 Protocol Implementation
Milestone

Comments

@cyberduck
Copy link
Collaborator

38e8e80 created the issue

The error is: "Upload FileName failed. Access Denied, Please contact your web hosting service provider for assistance."

It is odd that the error is Upload failed, while I am attempting to delete a file from S3. If I hit refresh after receiving the error, the file is gone, so the file delete operation is successful, and the error is occuring after the delete.

This error does not occur when using an IAM user with full S3 access. The error only happens using IAM users that are restricted to a particular bucket. I have an IAM policy set up to allow GET/PUT/DELETE object access to a specific bucket, and the error only occurs when logged into S3 via Cyberduck using a user with that IAM policy. Looking at the Log Drawer below, it looks like the first request to S3 is a DELETE, which appears to work just fine. After the delete, a GET is requested which receives a 403 forbidden response.

DELETE /McCarthy%20CEO.pdf HTTP/1.1
Date: Tue, 20 Oct 2015 12:47:14 GMT
Authorization: AWS redacted:redacted
Host: redacted.s3.amazonaws.com:443
Connection: Keep-Alive
User-Agent: Cyberduck/4.7.2.18004 (Windows 7/6.1) (x86)
HTTP/1.1 204 No Content
x-amz-id-2: redacted
x-amz-request-id: A6174417D5AB8F2E
Date: Tue, 20 Oct 2015 12:47:09 GMT
Server: AmazonS3
GET /?prefix=McCarthy%20CEO.pdf&uploads HTTP/1.1
Date: Tue, 20 Oct 2015 12:47:14 GMT
x-amz-request-payer: requester
Authorization: AWS redacted
Host: expressmr.s3.amazonaws.com:443
Connection: Keep-Alive
User-Agent: Cyberduck/4.7.2.18004 (Windows 7/6.1) (x86)
HTTP/1.1 403 Forbidden
x-amz-request-id: 8DC431F02DCA5DA7
x-amz-id-2: A1nyJ2AF47eDRWzNr0lCWTL3+tPhO8twodaP/KztJL/0e4BIpXjiemsp/TFit6st/pqshMKe4ko=
Content-Type: application/xml
Transfer-Encoding: chunked
Date: Tue, 20 Oct 2015 12:47:07 GMT

@cyberduck
Copy link
Collaborator Author

@dkocher commented

Duplicate for #9000.

@iterate-ch iterate-ch locked as resolved and limited conversation to collaborators Nov 26, 2021
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
bug duplicate s3 AWS S3 Protocol Implementation
Projects
None yet
Development

No branches or pull requests

1 participant