Can we restrict the access of Cloudinary to certain sub-folders of s3 bucket?
Suppose I've got an upgrade plan in Cloudinary account and I need to restrict the access of Cloudinary to certain sub-folders of the s3 bucket because I used only root folders from an S3 bucket. Kindly do the needful
-
Hi Durga,
If you're asking about using your S3 bucket as the location where we store backups of your account's original resources (available on all paid plans), we do need access to the root folder of the bucket to validate our permission to write to the bucket. You shouldn't use this bucket for other purposes because the structure and content of the backup files may change, so we recommend that you create a new bucket specifically for storing backups.If you're taking files that exist in your S3 bucket and uploading them to Cloudinary either directly or with an auto upload folder mapping, we need to be able to read the folder containing the images you want us to read, but we don't need access to other folders.
If your bucket isn't publicly available (e.g. over HTTP/HTTPS) you'll need to set the bucket policy to allow us to access the folders in your bucket that contain the files you want to upload to Cloudinary and you'll also need to create a special file in your bucket to tell us which Cloudinary accounts should be allowed to access files in your bucket - we also need to access that file.
There's more information about that here: https://support.cloudinary.com/hc/en-us/articles/203276521-How-do-I-allow-Cloudinary-to-read-from-my-private-S3-bucket-
Please let me know if there's anything else I can help with
1 -
Thanks, Stephen.
0
Post is closed for comments.
Comments
2 comments