如何找出谁在S3存储桶中上传了数据
我与团队中的其他成员共享了一个S3存储桶.有没有办法找出谁在存储桶中上传了特定文件?
I have a shared S3 bucket with other members in the team. Is there a way to find out who uploaded a particular file in the bucket?
存储桶由一个AWS账户拥有,而不是单个用户拥有.当用户进行API调用时,AWS会对用户进行身份验证并验证他们是否有权进行调用.之后,是拥有内容的帐户.(尽管对象有时可以具有特定的所有者,这会更加令人困惑.)
Buckets are owned by an AWS Account, not individual users. When a user makes an API call, AWS authenticates the user and verifies that they have permission to make the call. After that, it is the Account that owns the content. (Although objects can sometimes have a specific owner, which gets even more confusing.)
您现在可以使用AWS CloudTrail来跟踪Amazon S3上的数据事件:
You can now use AWS CloudTrail to track data events on Amazon S3:
AWS CloudTrail现在支持 Amazon S3数据事件.现在,您可以在S3对象上记录所有API操作,并接收详细信息,例如调用者的AWS帐户,调用者的IAM用户角色,API调用的时间,API的IP地址以及其他详细信息.
AWS CloudTrail now supports Amazon S3 Data Events. You can now record all API actions on S3 Objects and receive detailed information such as the AWS account of the caller, IAM user role of the caller, time of the API call, IP address of the API, and other details.