S3 및 IAM 예제
S3 버킷 생성
apiVersion: s3.services.k8s.aws/v1alpha1
kind: Bucket
metadata:
name: my-sample-bucket
spec:
name: my-unique-bucket-name-123
tagging:
tagSet:
- key: Environment
value: Development
- key: Project
value: ACK-Demo
createBucketConfiguration:
locationConstraint: us-west-2S3 버킷 정책 설정
apiVersion: s3.services.k8s.aws/v1alpha1
kind: BucketPolicy
metadata:
name: my-bucket-policy
spec:
bucket: my-unique-bucket-name-123
policy: |
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Principal": {
"AWS": "arn:aws:iam::123456789012:role/MyRole"
},
"Action": [
"s3:GetObject"
],
"Resource": [
"arn:aws:s3:::my-unique-bucket-name-123/*"
]
}
]
}IAM 역할 생성
IAM 정책 생성 및 연결
마지막 업데이트