My wcms team is attempting to move our multisite environment from the AmazonS3 module to this S3FS module. However, during our transfer we came across an issue with the refresh-metadata button to build the database reference tables. Doing this action through the site's GUI or through drush will both create an access denied exception with AWS.
The principal reason this error is thrown is because we changed the suggested IAM user policy from:
"Resource": [
"arn:aws:s3:::<bucket_name>",
"arn:aws:s3:::<bucket_name>/*"
]
to,
"Resource": [
"arn:aws:s3:::<bucket_name>/site_name/*"
]
We also edited the root-folder setting to point to this site_name. Because we have multiple sites in the one bucket, we cannot allow an IAM user to have access to the entire thing for security implications. Through messing around with the module we have determined changing the _s3fs_refresh_cache method's mention of "ListObjectVersions" to ListObjects" will fix the problem but without extensive knowledge why.
Any pointers/offered solutions would be greatly appreciated! Thanks,
-Bryce
Closed: outdated
2.10
Code
Not all content is available!
It's likely this issue predates Contrib.social: some issue and comment data are missing.
Drupal 7 end-of-life triage:
Drupal 7 reached end of life on January 5th.
The 7.x branches of S3FS do not have any additional planned releases.
The requests in this issue do not appear to exist in the 8.x-3.x and newer branches.