Please enable JavaScript.

Coggle requires JavaScript to display documents.

S3 TE note (Glacier (3 ways to upload (CLI, API, life cycle), archival…

- - - - Some documents are frequently accessed for a limited period of time.
      - After that, you might not need real-time access to these objects, but your organization might require you to archive them for a longer period and then optionally delete them.
- - - - .Primary usage: t defines which AWS accounts s are granted basic read /write access
        
        and the type of access.
        
        Manage access to object and bucket
        
        Each bucket and object has ACL
        
        when request arrive on S3, it check the ACL and see if ACL grant the Access
        
        IS THE ONLY WAY that grant access for object that not own by bucket owner
      - resource based policy( M: same like router ACL)
        
        Apply to AWS resource
    - - IAM policies: With IAM policies, you can only grant users within your own AWS account permission to access your Amazon S3 resources.
    - - Policies can be attached to users, groups, or Amazon S3 buckets, enabling centralized management of permissions.
      - With bucket policies, you can grant users within your AWS account or another AWS account access to your Amazon S3 resources.
      - To add add or deny permissions across some or all of the objects within a single bucket.
      - resource based policy
        
        apply to AWS resources
- - - - source and target bucket can be same
      - source and target bucket should be in same region
      - can dump multiple source to target bucket
    - - Name of the bucket
      - Requester
      - Time
      - Action
      - request status
    - - record are delivered within few hour of time