mirror of
https://github.com/gravitational/teleport
synced 2024-10-21 01:34:01 +00:00
docs: Update example S3 policy in AWS Helm guide to follow best practices (#14014)
This commit is contained in:
parent
d0bde263be
commit
2a6a3d07cf
|
@ -115,27 +115,31 @@ You'll need to replace these values in the policy example below:
|
|||
"Version": "2012-10-17",
|
||||
"Statement": [
|
||||
{
|
||||
"Sid": "ClusterSessionsStorage",
|
||||
"Sid": "BucketActions",
|
||||
"Effect": "Allow",
|
||||
"Action": [
|
||||
"s3:PutEncryptionConfiguration",
|
||||
"s3:PutObject",
|
||||
"s3:GetObject",
|
||||
"s3:GetEncryptionConfiguration",
|
||||
"s3:GetObjectRetention",
|
||||
"s3:PutBucketVersioning",
|
||||
"s3:ListBucketVersions",
|
||||
"s3:ListBucketMultipartUploads",
|
||||
"s3:AbortMultipartUpload",
|
||||
"s3:CreateBucket",
|
||||
"s3:ListBucket",
|
||||
"s3:GetEncryptionConfiguration",
|
||||
"s3:GetBucketVersioning",
|
||||
"s3:PutBucketVersioning",
|
||||
"s3:GetObjectVersion"
|
||||
"s3:CreateBucket"
|
||||
],
|
||||
"Resource": [
|
||||
"arn:aws:s3:::teleport-helm-sessions/*",
|
||||
"arn:aws:s3:::teleport-helm-sessions"
|
||||
]
|
||||
"Resource": "arn:aws:s3:::teleport-helm-sessions"
|
||||
},
|
||||
{
|
||||
"Sid": "ObjectActions",
|
||||
"Effect": "Allow",
|
||||
"Action": [
|
||||
"s3:GetObjectVersion",
|
||||
"s3:GetObjectRetention",
|
||||
"s3:*Object",
|
||||
"s3:ListMultipartUploadParts",
|
||||
"s3:AbortMultipartUpload"
|
||||
],
|
||||
"Resource": "arn:aws:s3:::teleport-helm-sessions/*"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
|
Loading…
Reference in a new issue