AWS Hosting

Resoures

AWS Management Console
AWS: Installing the AWS SDK for Ruby
AWS: Configuring the AWS SDK for Ruby
Heroku: Using AWS S3 to Store Static Assets and File Uploads
Heroku: Directo to S3 Image Uploads in Rails
Possible improvement?

S3 Development Bucket

bucket_name

yenius--rails6-api--s3-bucket-dev

region

us-east-2

access

Objects can be public

bucket_policy

{
  "Version": "2012-10-17",
  "Id": "DevBucketAdminPolicy",
  "Statement": [
    {
      "Sid": "DevAdminStatement",
      "Effect": "Allow",
      "Principal": {
        "AWS": "arn:aws:iam::157703510654:user/yenius--rails6-api--s3-admin-user"
      },
      "Action": "s3:*",
      "Resource": [
        "arn:aws:s3:::yenius--rails6-api--s3-bucket-dev/*",
        "arn:aws:s3:::yenius--rails6-api--s3-bucket-dev"
       ]
     }
   ]
}

bucket_CORS

[
    {
        "AllowedHeaders": [
            "Authorization"
        ],
        "AllowedMethods": [
            "GET",
            "POST",
            "PUT"
        ],
        "AllowedOrigins": [
            "*"
        ],
        "ExposeHeaders": [],
        "MaxAgeSeconds": 3000
    }
]

S3 Production Bucket

bucket_name

yenius--rails6-api--s3-bucket-prod

region

us-east-2

access

Objects can be public

bucket_policy

{
  "Version": "2012-10-17",
  "Id": "ProdBucketAdminPolicy",
  "Statement": [
    {
      "Sid": "ProdAdminStatement",
      "Effect": "Allow",
      "Principal": {
        "AWS": "arn:aws:iam::157703510654:user/yenius--rails6-api--s3-admin-user"
      },
      "Action": "s3:*",
      "Resource": [
        "arn:aws:s3:::yenius--rails6-api--s3-bucket-prod/*",
        "arn:aws:s3:::yenius--rails6-api--s3-bucket-prod"
       ]
     }
   ]
}

bucket_CORS

[
    {
        "AllowedHeaders": [
            "Authorization"
        ],
        "AllowedMethods": [
            "GET",
            "POST",
            "PUT"
        ],
        "AllowedOrigins": [
            "*"
        ],
        "ExposeHeaders": [],
        "MaxAgeSeconds": 3000
    }
]

IAM

IAM User Name

yenius--rails6-api--s3-admin-user

IAM Group Name

yenius--rails6-api--s3-admin-group

IAM Policy Name

yenius--rails6-api--s3-admin-group-policy

the managed policy is attached to the group, and the user is a member of the group

IAM Policy

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "YeniusRails6ApiS3AdminGroupPolicy",
      "Effect": "Allow",
      "Action": "s3:*",
      "Resource": [
        "arn:aws:s3:::yenius--rails6-api--s3-bucket-dev",
        "arn:aws:s3:::yenius--rails6-api--s3-bucket-dev/*",
        "arn:aws:s3:::yenius--rails6-api--s3-bucket-prod",
        "arn:aws:s3:::yenius--rails6-api--s3-bucket-prod/*"
      ]
    }
  ]
}

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

AWS_Hosting.md

AWS_Hosting.md

AWS Hosting

Resoures

S3 Development Bucket

bucket_name

region

access

bucket_policy

bucket_CORS

S3 Production Bucket

bucket_name

region

access

bucket_policy

bucket_CORS

IAM

IAM User Name

IAM Group Name

IAM Policy Name

IAM Policy

Files

AWS_Hosting.md

Latest commit

History

AWS_Hosting.md

File metadata and controls

AWS Hosting

Resoures

S3 Development Bucket

bucket_name

region

access

bucket_policy

bucket_CORS

S3 Production Bucket

bucket_name

region

access

bucket_policy

bucket_CORS

IAM

IAM User Name

IAM Group Name

IAM Policy Name

IAM Policy