2

when I use firehose and enable logging it automatically generate the following lines for IAM policy:

            Statement:
          - Sid: ''
            Effect: Allow
            Action:
            - s3:AbortMultipartUpload
            - s3:GetBucketLocation
            - s3:GetObject
            - s3:ListBucket
            - s3:ListBucketMultipartUploads
            - s3:PutObject
            Resource:
            - arn:aws:s3:::%FIREHOSE_BUCKET_NAME%
            - arn:aws:s3:::%FIREHOSE_BUCKET_NAME%/*

What I cannot understand is what % means in the above? I mean this%FIREHOSE_BUCKET_NAME%. Can anyone explain it?

Ahmed Fasih
  • 6,458
  • 7
  • 54
  • 95
Hamed Minaee
  • 2,480
  • 4
  • 35
  • 63
  • `%FIREHOSE_BUCKET_NAME%` means it's a variable name: Firehose will replace that with the bucket name you specify. – Ahmed Fasih Feb 16 '18 at 19:59

1 Answers1

2

According to the documentation, these lines can be removed.

https://docs.aws.amazon.com/firehose/latest/dev/create-configure.html

Robert Chevallier
  • 38
  • 4
  • 1
    ...to be complete, nt have read the question, ... I have one question you should answer by modifying your answer .... "which lines" are you talking about? And using referral is fine..but shortly explain to what you are referring. Links have expiration dates set by webmasters, clients or wordpress execution style! – ZF007 Mar 03 '18 at 13:49