Serverless Stack

Hey y'all, is anyone aware of whether or not granting read/write from an s3 bucket to another s3 bucket grants replications permissions?

I think you need a servicerole to do that. you need to allow s3 service to be able to read and write into both buckets.

<@U02RHMGU78C> i’m not sure.. but here are all the S3 IAM actions <https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazons3.html>

I see there’s an `InitiateReplication` action.. not sure if that’s relevant

Yeah it seems like they're completely separate permission grants, was hoping that the `grantReadWrite` type methods would be enough to get this type of thing working but seems like I need to dig into the CFN construct

The source bucket needs a few permissions attached to itself to allow itself to replicate its own objects, as well as given access to the destination source bucket, and the destination source bucket also needs specific permissions as well