Back

Explore Courses Blog Tutorials Interview Questions

AWS SDK throws 403 when checking for non-existing S3 key, but returns true for existing key

0 votes
2 views
in AWS by (19.1k points)

I use the AmazonS3Client from the AWS SDK for Java in version 1.11.66 to check for the existence of a key in S3:

s3client.doesObjectExist(bucketName, key);

If I give it an existing key name, it properly returns true. For non-existing keys I always get an AmazonS3Exception informing me about a 403 coming back from the API.

What do I have to change to make it return false?

The IAM policy for the service looks like this:

{

  "Version": "2012-10-17",

  "Statement": [

    {

      "Action": [

        "s3:*"

      ],

      "Effect": "Allow",

      "Resource": "arn:aws:s3:::MY_BUCKET/*"

    }

  ]

}

1 Answer

0 votes
by (44.4k points)

Seems like you've granted permissions to objects, not the bucket. Your policy should allow listing the bucket. Try specifying the bucket name in policy:

{

  "Version": "2012-10-17",

  "Statement": [

    {

      "Action": [

        "s3:*"

      ],

      "Effect": "Allow",

      "Resource": "arn:aws:s3:::MY_BUCKET"

    }

  ]

}

Note MY_BUCKET instead of MY_BUCKET/*.

Related questions

Want to get 50% Hike on your Salary?

Learn how we helped 50,000+ professionals like you !

0 votes
1 answer
AWS Cloud Map with AWS S3 SDK
asked Jan 16, 2021 in AWS by devin (5.6k points)
0 votes
1 answer
How to upload a UIImage to S3 with AWS iOS SDK v2?
asked Dec 29, 2020 in AWS by devin (5.6k points)

Browse Categories

© COPYRIGHT 2011-2023 INTELLIPAAT.COM. ALL RIGHTS RESERVED.

Download Salary Trends Now !

Learn how professionals like you got up to 100% Salary Hike.

...