Set up user permissions

Follow the steps below to set up user permissions to view the S3 bucket that reports are exported to.

Create policy

1. Log into your AWS account and navigate to the IAM page. From there click Policies, then Create Policy as shown below:

   

2. On the policy page, switch to the JSON policy editor and paste the following policy as shown in the image below:

   JSON for policy

   {
     "Version": "2012-10-17",
     "Statement": [
         {
             "Effect": "Allow",
             "Action": [
                 "s3:GetObject"
             ],
             "Resource": [
             "arn:aws:s3:::reports.wicketlabs.com/*"
             ]
         },
         {
             "Effect": "Allow",
             "Action": "s3:ListBucket",
             "Resource": "arn:aws:s3:::reports.wicketlabs.com"
         }
     ]
   }

   

3. Name the policy, add a description, and create the policy:

   

Attach policy to users

1. From the IAM page, click on the Users tab and select the user to be updated. From the user details page pictured below, click Add Permissions:

   

2. From the permissions page, click on the button to Attach existing policies directly. Use the filter to find the policy created earlier. Attach this policy and save the user. The user will now have access to the Wicket Labs report s3 bucket: