mirror of
https://github.com/minio/minio.git
synced 2024-12-25 22:55:54 -05:00
b408d0e87d
This change implements bucket policy enhancements required to restrict access based on HTTP referer. See https://docs.aws.amazon.com/AmazonS3/latest/dev/example-bucket-policies.html#example-bucket-policies-use-case-4 for more information. Fixes #3540 |
||
---|---|---|
.. | ||
README.md |
Access Policy
This package implements parsing and validating bucket access policies based on Access Policy Language specification - http://docs.aws.amazon.com/AmazonS3/latest/dev/access-policy-language-overview.html
Supports following effects.
Allow
Deny
Supports following set of operations.
s3:GetObject
s3:ListBucket
s3:PutObject
s3:GetBucketLocation
s3:DeleteObject
s3:AbortMultipartUpload
s3:ListBucketMultipartUploads
s3:ListMultipartUploadParts
Supports following conditions.
StringEquals
StringNotEquals
StringLike
StringNotLike
Supported applicable condition keys for each conditions.
s3:prefix
s3:max-keys
aws:Referer
Nested policy support.
Nested policies are not allowed.