{"id":2463,"date":"2021-11-05T22:47:56","date_gmt":"2021-11-05T13:47:56","guid":{"rendered":"https:\/\/kazu.tv\/blog\/?p=2463"},"modified":"2021-11-05T22:48:00","modified_gmt":"2021-11-05T13:48:00","slug":"s3-%e3%81%ae-listobjects-listbucket-%e3%81%aa%e3%81%a9%e3%81%ab%e3%81%a4%e3%81%84%e3%81%a6%e3%81%ae%e3%81%82%e3%82%8c%e3%81%93%e3%82%8c","status":"publish","type":"post","link":"https:\/\/kazu.tv\/blog\/2021\/11\/05\/s3-%e3%81%ae-listobjects-listbucket-%e3%81%aa%e3%81%a9%e3%81%ab%e3%81%a4%e3%81%84%e3%81%a6%e3%81%ae%e3%81%82%e3%82%8c%e3%81%93%e3%82%8c\/","title":{"rendered":"S3 \u306e ListObjects, ListBucket \u306a\u3069\u306b\u3064\u3044\u3066\u306e\u3042\u308c\u3053\u308c"},"content":{"rendered":"\n

S3 \u3092\u8272\u3005\u89e6\u3063\u3066\u3044\u3066\u6c17\u306b\u306a\u308b\u4e8b\u30fb\u3061\u3087\u3063\u3068\u30cf\u30de\u3063\u305f\u4e8b\u306a\u3069\u304c\u3044\u304f\u3064\u304b\u3042\u3063\u305f\u306e\u3067\u3001\u305d\u308c\u306b\u3064\u3044\u3066\u66f8\u304f\u3002<\/p>\n\n\n\n

s3:ListObjects \u3068\u3044\u3046 action \u306f\u5b58\u5728\u3057\u306a\u3044<\/h2>\n\n\n\n

S3 API \u306b\u306f\u3001ListObjects<\/code> \u3068\u3044\u3046 API \u304c\u3042\u308b\u3002\u3042\u308b\u30d0\u30b1\u30c3\u30c8\u306e\u3042\u308b\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\uff08\u6b63\u78ba\u306b\u306f prefix \u3060\u3051\u3069\uff09\u914d\u4e0b\u306e\u30aa\u30d6\u30b8\u30a7\u30af\u30c8\u4e00\u89a7\u3092\u8fd4\u3059\u3068\u3044\u3046\u3082\u306e\u3002<\/p>\n\n\n\n

ListObjects – Amazon Simple Storage Service<\/a><\/p>\n\n\n\n

\u3067\u3001\u3053\u306e\u64cd\u4f5c\u3092\u7279\u5b9a\u306e\u4eba\u306b\u8a31\u53ef\u3059\u308b\u30d0\u30b1\u30c3\u30c8\u30dd\u30ea\u30b7\u30fc\u3092\u4f5c\u6210\u3057\u3088\u3046\u3068\u3057\u3066\u3001s3:ListObjects<\/code> \u3068\u3044\u3046 action \u3092\u8a31\u53ef\u3057\u3088\u3046\u3068\u3057\u305f\u3089 “S3 policy has invalid action” \u307f\u305f\u3044\u306a\u30a8\u30e9\u30fc\u304c\u51fa\u305f\u3002<\/p>\n\n\n\n

\u7d50\u8ad6\u304b\u3089\u3059\u308b\u3068\u3001 s3:ListObjects<\/code> \u3068\u3044\u3046 action \u306f\u5b58\u5728\u3057\u306a\u3044\u3002ListObjects<\/code> \u3068\u3044\u3046\u64cd\u4f5c\u3092\u3092\u8a31\u53ef\u3059\u308b\u305f\u3081\u306b\u306f s3:ListBucket<\/code> \u3068\u3044\u3046 action \u3092\u8a31\u53ef\u3059\u308b\u5fc5\u8981\u304c\u3042\u308b\u3002<\/p>\n\n\n\n

\u4ee5\u4e0b\u306e SO \u304c\u7c21\u6f54\u306b\u307e\u3068\u307e\u3063\u3066\u308b\u3002<\/p>\n\n\n\n

amazon web services – AWS Bucket Policy Error: Policy has invalid action – Stack Overflow<\/a><\/p>\n\n\n\n

\u7d30\u304b\u3044\u89e3\u8aac\u3092\u898b\u305f\u3051\u308c\u3070\u3001\u65e5\u672c\u8a9e\u306e\u4ee5\u4e0b\u306e\u8a18\u4e8b\u304c\u8a73\u3057\u3044\u3002<\/p>\n\n\n\n

S3\u306e\u7279\u5b9a\u30d1\u30b9\u306e\u307f\u306b\u5bfe\u3057\u3066\u5168\u3066\u306e\u64cd\u4f5c\u304c\u53ef\u80fd\u306aIAM\u30dd\u30ea\u30b7\u30fc | DevelopersIO<\/a><\/p>\n\n\n\n

S3 \u306e action \u306e\u4e00\u89a7\u306a\u3069\u306f\u3001\u4ee5\u4e0b\u306e\u30da\u30fc\u30b8\u3092\u53c2\u7167\u3002<\/p>\n\n\n\n

Actions, resources, and condition keys for Amazon S3 – Service Authorization Reference<\/a><\/p>\n\n\n\n

s3:ListBucket \u3068 s3:ListAllMyBuckets<\/h2>\n\n\n\n

\u524d\u8ff0\u306e\u901a\u308a s3:ListBucket<\/code> \u3068\u8a00\u3046\u306e\u306f\u3001\u30aa\u30d6\u30b8\u30a7\u30af\u30c8\u4e00\u89a7\u3092\u95b2\u89a7\u3059\u308b\u8a31\u53ef\u3059\u308b\u305f\u3081\u306e\u3082\u306e\u3067\u3042\u308a\u3001\u30d0\u30b1\u30c3\u30c8\u4e00\u89a7\u306e\u95b2\u89a7\u3092\u8a31\u53ef\u3057\u305f\u3044\u5834\u5408\u306f s3:ListAllMyBuckets<\/code> \u3068\u3044\u3046 action \u304c\u3042\u308b\u3002AWS\u3001S3 \u3092\u3042\u308b\u7a0b\u5ea6\u4f7f\u3063\u3066\u3044\u308b\u4eba\u3067\u3042\u308c\u3070\u3001\u3053\u306e\u540d\u524d\u306b\u30e2\u30e4\u30e2\u30e4\u3057\u3066\u3044\u308b\u4eba\u3082\u591a\u3044\u3068\u601d\u3046\u3002<\/p>\n\n\n\n

\u4ee5\u4e0b\u306e SO \u306e\u56de\u7b54\u306b\u3088\u308c\u3070\u3001S3 \u306f AWS \u6700\u53e4\u53c2\u306e\u30b5\u30fc\u30d3\u30b9\u3060\u304b\u3089\u3001\u305d\u306e\u8fba\u306e\u540d\u524d\u4ed8\u3051\u3068\u304b\u304c\u3061\u3083\u3093\u3068\u6c7a\u307e\u3063\u3066\u306a\u3044\u6642\u4ee3\u306e\u907a\u7523\u306a\u306e\u3067\u306f\u3001\u3068\u3044\u3046\u4e8b\u3060\u3063\u305f\u3002<\/p>\n\n\n\n

amazon web services – Invalid Action: The action s3:ListObjects does not exist – Stack Overflow<\/a><\/p>\n\n\n\n

\u3061\u306a\u307f\u306b\u3001 s3:ListBucket<\/code> \u306f\u3001”bucket” \u3068\u3044\u3046\u5358\u8a9e\u304c\u5358\u6570\u5f62\u306a\u306e\u306b\u6ce8\u610f\u3002\u3042\u308b1\u3064\u306e bucket \u306e\u4e2d\u8eab\u3092\u4e00\u89a7\u8868\u793a\u3059\u308b\u3001\u3068\u3044\u3046\u610f\u5473\u306a\u306e\u304c\u5206\u304b\u308b\u3068\u601d\u3046\u3002\u5b9f\u969b\u306b\u306f\u5b58\u5728\u3057\u306a\u3044\u304c s3:ListBuckets<\/code> \u3068\u3044\u3046\u540d\u524d\u3067\u3042\u308c\u3070\u3001bucket \u306e\u4e00\u89a7\u3092\u8868\u793a\u3059\u308b\u610f\u5473\u3060\u3051\u3069\u3002<\/p>\n\n\n\n

\u30d0\u30b1\u30c3\u30c8\u3078\u306e\u64cd\u4f5c\u3068\u30aa\u30d6\u30b8\u30a7\u30af\u30c8\u3078\u306e\u64cd\u4f5c<\/h2>\n\n\n\n

S3 \u306e action \u306b\u306f\u3001\u4e3b\u306b\u30d0\u30b1\u30c3\u30c8\u3078\u306e\u64cd\u4f5c\u3068\u30aa\u30d6\u30b8\u30a7\u30af\u30c8\u3078\u306e\u64cd\u4f5c\u306e2\u3064\u306b\u5927\u5225\u3055\u308c\u308b\u3002\u4f8b\u3048\u3070\u3001s3:ListObject<\/code> \u306f\u30d0\u30b1\u30c3\u30c8\u3078\u306e\u64cd\u4f5c\u3067\u3042\u308a\u3001 s3:GetObject<\/code> \u306f\u30aa\u30d6\u30b8\u30a7\u30af\u30c8\u3078\u306e\u64cd\u4f5c\u3067\u3042\u308b\u3002<\/p>\n\n\n\n

\u826f\u304f\u3042\u308b\u30e6\u30fc\u30b9\u30b1\u30fc\u30b9\u3068\u3057\u3066\u3001some_role<\/code> \u306b\u5bfe\u3057\u3066 example-bucket<\/code> \u3068\u3044\u3046\u30d0\u30b1\u30c3\u30c8\u306e dir-a<\/code> \u3068\u3044\u3046\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u914d\u4e0b\u3078\u306e\u8aad\u307f\u8fbc\u307f\u6a29\u9650\u3092\u4ed8\u4e0e\u3059\u308b\u3068\u3044\u3046\u4f8b\u3092\u8003\u3048\u308b\u3002\u3053\u306e\u5834\u5408\u3001<\/p>\n\n\n\n

  • arn:aws:s3:::example-bucket<\/code> \u306b\u5bfe\u3057\u3066 s3:ListBucket<\/code> \u3092\u8a31\u53ef<\/li>
  • arn:aws:s3:::example-bucket\/dir-a\/*<\/code> \u306b\u5bfe\u3057\u3066 s3:GetObject<\/code> \u3092\u8a31\u53ef<\/li><\/ul>\n\n\n\n

    \u3068\u3044\u3046\u5f62\u3067\u6a29\u9650\u8a2d\u5b9a\u3092\u884c\u3046\u4e8b\u306b\u306a\u308b\u3002<\/p>\n\n\n\n

    CloudFormation \u306e\u8a2d\u5b9a\u3092\u629c\u7c8b\u3059\u308b\u3068\u4ee5\u4e0b\u306e\u3088\u3046\u306a\u611f\u3058\u306b\u306a\u308b\u3002<\/p>\n\n\n

    \n  ExampleBucketPolicy:\n    Type: AWS::S3::BucketPolicy\n    Properties:\n      Bucket: !Ref ExampleBucket\n      PolicyDocument:\n        Id: ExampleBucketPolicy\n        Statement:\n          - Sid: SomeRoleReadOnly\n            Effect: Allow\n            Action:\n              - s3:GetObject\n              - s3:ListBucket\n            Resource:\n              - "arn:aws:s3:::example-bucket"\n              - "arn:aws:s3:::example-bucket\/dir-a\/*"\n            Principal:\n              AWS: "arn:aws:iam::1234567890:role\/some_role"\n<\/pre><\/div>\n\n\n
    \u3061\u3087\u3063\u3068\u9762\u767d\u3044\uff08\u5206\u304b\u308a\u3065\u3089\u3044\uff09\u306e\u306f \u3001action \u3068\u3057\u3066 s3:GetObject<\/code> \u3068 s3:ListBucket<\/code> \u306e2\u3064\u3092\u6307\u5b9a\u3057\u3001resource \u306b arn:aws:s3:::example-bucket<\/code> \u3068 arn:aws:s3:::example-bucket\/dir-a\/*<\/code> \u306e2\u3064\u3092\u6307\u5b9a\u3057\u3066\u3044\u308b\u304c\u3001\u30d0\u30b1\u30c3\u30c8\u306b\u5bfe\u3059\u308b action \uff08s3:ListBucket<\/code>\uff09\u306f\u30d0\u30b1\u30c3\u30c8\u306b\u5bfe\u3057\u3066\u306e\u307f\u9069\u7528\u3055\u308c\u3001\u30aa\u30d6\u30b8\u30a7\u30af\u30c8\u306b\u5bfe\u3059\u308b action \uff08s3:GetObject<\/code>\uff09\u306f\u30aa\u30d6\u30b8\u30a7\u30af\u30c8\u306b\u5bfe\u3057\u3066\u306e\u307f\u9069\u7528\u3055\u308c\u308b\u3068\u3044\u3046\u3053\u3068\u3002\uff08\u5f53\u305f\u308a\u524d\u3068\u3044\u3048\u3070\u5f53\u305f\u308a\u524d\u3060\u3051\u3069\u3002\uff09<\/p>\n\n\n\n
    S3 \u306e action \u3068\u3057\u3066\uff08\u4e3b\u306b\uff09\u30d0\u30b1\u30c3\u30c8\u3078\u306e\u64cd\u4f5c\u3068\u30aa\u30d6\u30b8\u30a7\u30af\u30c8\u3078\u306e\u64cd\u4f5c\u306e2\u7a2e\u985e\u304c\u3042\u308b\u3068\u3044\u3046\u3053\u3068\u3092\u77e5\u3089\u306a\u3044\u3068\u3001\u4e0a\u306e CloudFormation \u306e\u8a2d\u5b9a\u3092\u898b\u305f\u3068\u304d\u306b\u3001<\/p>\n\n\n\n
    \u300c\u3048\uff1f dir-a<\/code> \u4ee5\u5916\u306e\u8aad\u307f\u8fbc\u307f\u3082\u8a31\u53ef\u3055\u308c\u3066\u3057\u307e\u3046\u3093\u3058\u3083\u306a\u3044\uff1f\u300d<\/p>\n\n\n\n
    \u3068\u601d\u3046\u304b\u3082\u3057\u308c\u306a\u3044\u3002<\/p>\n\n\n\n
    \u307e\u3068\u3081<\/h2>\n\n\n\n
    S3 \u306e\u6a29\u9650\u8a2d\u5b9a\u306f\u8907\u96d1\u3059\u304e\u308b\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"
    S3 \u3092\u8272\u3005\u89e6\u3063\u3066\u3044\u3066\u6c17\u306b\u306a\u308b\u4e8b\u30fb\u3061\u3087\u3063\u3068\u30cf\u30de\u3063\u305f\u4e8b\u306a\u3069\u304c\u3044\u304f\u3064\u304b\u3042\u3063\u305f\u306e\u3067\u3001\u305d\u308c\u306b\u3064\u3044\u3066\u66f8\u304f\u3002 s3:ListObjects \u3068\u3044\u3046 action \u306f\u5b58\u5728\u3057\u306a\u3044 S3 API \u306b\u306f\u3001ListObjects \u3068\u3044\u3046 AP…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[906],"tags":[912],"class_list":["post-2463","post","type-post","status-publish","format-standard","hentry","category-906","tag-s3"],"_links":{"self":[{"href":"https:\/\/kazu.tv\/blog\/wp-json\/wp\/v2\/posts\/2463","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/kazu.tv\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/kazu.tv\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/kazu.tv\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/kazu.tv\/blog\/wp-json\/wp\/v2\/comments?post=2463"}],"version-history":[{"count":2,"href":"https:\/\/kazu.tv\/blog\/wp-json\/wp\/v2\/posts\/2463\/revisions"}],"predecessor-version":[{"id":2465,"href":"https:\/\/kazu.tv\/blog\/wp-json\/wp\/v2\/posts\/2463\/revisions\/2465"}],"wp:attachment":[{"href":"https:\/\/kazu.tv\/blog\/wp-json\/wp\/v2\/media?parent=2463"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/kazu.tv\/blog\/wp-json\/wp\/v2\/categories?post=2463"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/kazu.tv\/blog\/wp-json\/wp\/v2\/tags?post=2463"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}