→ Go into AWS > Cloudformation
→ Create Stack > WIth new ressources
→ Chose Template is ready
and Upload a template file
→ Upload the following file on your computer:
{
"AWSTemplateFormatVersion": "2010-09-09",
"Description": "This policy allows Flaneer to mount Buckets from your account.",
"Resources": {
"FlaneerUser": {
"Type": "AWS::IAM::User",
"Properties": {
"Path": "/flaneer/",
"Policies": [
{
"PolicyName": "FlaneerPolicy",
"PolicyDocument": {
"Version": "2012-10-17",
"Statement": [
{
"Sid": "ManageListAllBucketsForLsd",
"Effect": "Allow",
"Action": "s3:ListAllMyBuckets",
"Resource": "arn:aws:s3:::*"
},
{
"Sid": "ManageMountBucketUtils",
"Effect": "Allow",
"Action": [
"s3:ListBucket",
"s3:DeleteObject",
"s3:GetObject",
"s3:PutObject",
"s3:PutObjectAcl"
],
"Resource": [
"arn:aws:s3:::{{BUCKET_NAME}}/*",
"arn:aws:s3:::{{BUCKET_NAME}}"
]
}
]
}
}
]
}
},
"FlaneerUserKeys": {
"Type": "AWS::IAM::AccessKey",
"Properties": {
"UserName": {
"Ref": "FlaneerUser"
}
}
}
},
"Outputs": {
"AccessKey": {
"Value": {
"Ref": "FlaneerUserKeys"
},
"Description": "Access Key ID of a Flaneer User"
},
"SecretKey": {
"Value": {
"Fn::GetAtt": [
"FlaneerUserKeys",
"SecretAccessKey"
]
},
"Description": "Secret Key of a Flaneer User"
}
}
}
→ Replace the variable {{BUCKET_NAME}}
with the name of the bucket you want to give access to and upload this file on AWS.
→ Chose next, give the stack a name
→ Select the I acknowledge that AWS CloudFormation might create IAM resources checkbox and hit the Create button at the bottom of the page.
→ Wait for the stack to complete creating
→ Expand the Output section, copy the AccessKey and SecretKey, and send them to us!