S3 Bucket Policy for Hosted Static Website


I have an S3 bucket that is being used to host a static website. This example shows a policy that grants everyone access to the objects in the specified bucket (i.e. making the website public):

However, I want to make the website accessible to only specific Amazon users. So following this documentation, I specify these users in Principal:

While this correctly enables permissions for who can access the resource via the S3 console, it results in a 403 for everybody trying to access the hosted website.

Is it possible to have user-level permissions restricting access to a hosted bucket?


No, it is not possible to apply user-level permissions to a static web site bucket in S3. From Permissions Required for Website Access:

When you configure a bucket as a website, you must make the objects that you want to serve publicly readable.

Leave a Reply