首页 文章

如何将Amazon SES权限写入您的Amazon S3存储桶

提问于
浏览
4

我希望我的SES(AWS)可以接收电子邮件,所以我按照以下教程,http://docs.aws.amazon.com/ses/latest/DeveloperGuide/receiving-email-getting-started-receipt-rule.html

当我在最后一步 - 创建规则时,它会出现以下错误, Could not write to bucket: "email-receiving"

我谷歌并发现此信息(http://docs.aws.amazon.com/ses/latest/DeveloperGuide/receiving-email-permissions.html)可以解决问题 .

但是,在添加我的策略语句时,它会出现错误 - 此策略包含以下错误:已禁止字段Principal有关IAM策略语法的详细信息,请参阅AWS IAM策略 .

我的政策声明是,

{“Version”:“2012-10-17”,“Statement”:[{“Sid”:“GiveSESPermissionToWriteEmail”,“Effect”:“Allow”,“Principal”:{“Service”:[“ses.amazonaws . com“]},”Action“:[”s3:PutObject“],”Resource“:”arn:aws:s3 ::: mybulketname / *“,”Condition“:{”StringEquals“:{”aws:Referer“ :“my12accountId”}}}]}

如果我起飞

“校长”:{“服务”:[“ses.amazonaws.com”]}

验证政策将通过 .

谢谢

amazon-web-services amazon-s3

3 回答

  • 3

    找到bucket-> permission-> bucketPolicy

    {
    "Version": "2012-10-17",
    "Statement": [
       {
           "Sid": "AllowSESPuts",
           "Effect": "Allow",
           "Principal": {
               "Service": "ses.amazonaws.com"
           },
           "Action": "s3:PutObject",
           "Resource": "arn:aws:s3:::BUCKEN_NAME/*",
           "Condition": {
            "StringEquals": {
                   "aws:Referer": "YOUR ID"
                }
           }
       }
   ]
}

    在这里阅读更多https://docs.aws.amazon.com/ses/latest/DeveloperGuide/receiving-email-permissions.html

    要在AWS管理控制台上查找您的AWS账户ID号,请选择右上方导航栏上的Support,然后选择Support Center . 您当前登录的帐户ID显示在“支持”菜单下方的右上角 .

    在这里阅读更多https://docs.aws.amazon.com/IAM/latest/UserGuide/console_account-alias.html

    回复于
  • -1

    这个问题已被解决 .
    在要授予SES权限的存储桶上创建策略,而不是在IAM中

    回复于
  • 1

    我有同样的问题,如果我只删除策略通过的“条件”并且“RuleSet”为Ok:

    {“Version”:“2012-10-17”,“Statement”:[{“Sid”:“GiveSESPermissionToWriteEmail”,“Effect”:“Allow”,“Principal”:{“Service”:“ses.amazonaws.com “},”动作“:”s3:PutObject“,”资源“:”arn:aws:s3 ::: mybulketname / *“}]}

    回复于

相关问题