Hello, along with my backups im learning a bit of minio, s3 and policies. I want to receive backups from multiple devices and need to place them inside directories of the bucket because the policy uses username as a wildcard after the bucketname. Kopia was working excellent before using policies…
When using Duplicati I’ve noticed I need to allow ListAllMyBuckets when creating the job and then it can be removed. However in kopia I keep receiving an error…
sudo /usr/bin/kopia --config-file=/home/myself/.config/kopia/repository.config repository connect s3 --access-key=user_asas --bucket=repo-tepetrab --description=“el repo” --endpoint=my.server.com --secret-access-key=trytrytrytry --prefix=user_asas/
ERROR can’t connect to storage: unable to determine if bucket “repo-tepetrab” exists: Access Denied.
How can this be achieved?
thanks!
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "AllowGroupToSeeBucketListInTheConsole",
"Effect": "Allow",
"Action": [
"s3:GetBucketLocation",
"s3:ListAllMyBuckets"
],
"Resource": [
"arn:aws:s3:::*"
]
},
{
"Effect": "Allow",
"Action": [
"s3:ListBucket"
],
"Resource": [
"arn:aws:s3:::repo-tepetrab"
],
"Condition": {
"StringLike": {
"s3:prefix": [
"${aws:username}",
"${aws:username}/*"
]
}
}
},
{
"Effect": "Allow",
"Action": [
"s3:GetObject",
"s3:PutObject",
"s3:*"
],
"Resource": [
"arn:aws:s3:::repo-tepetrab/${aws:username}/*"
]
}
]
}