Serverless
Serverless
AWS Lambda function that does all the work.
Simplify S3 Access
Simplify S3 Access
AWS S3 permissions are hard. Cross-account permissions are harder. Bucket Snake simplifies the provisioning of this.
Eliminate Cross-Account S3 Issues
Eliminate Cross-Account S3 Issues
Creates assumable roles in the bucket residing account. Applications assume these app-specific roles for S3 access.
Permanently resolve cross-account S3 access problems
By relying on IAM for all S3 access, Bucket Snake resolves access issues by completely avoiding bucket and object ACLs.
Granting the Right Permissions
Granting the Right Permissions
Bucket Snake receives a JSON payload on lambda invocation with details on which S3 buckets an application needs. Bucket Snake figures out the correct IAM permissions to grant. The application then has the correct permissions to assume into the correct IAM roles to access a given bucket.
See the how it works docs for details.