限制只允许 HTTPS 连接你的资源

下面的策略要求仅通过 HTTPS(TLS)加密连接访问您的资源。这有助于防止潜在攻击者篡改网络流量。

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Sid": "EnforceSecureTransport",
            "Effect": "Deny",
            "Principal": "*",
            "Action": [
                "sts:*",
                "s3:*",
                "sqs:*",
                "secretsmanager:*",
                "kms:*"
            ],
            "Resource": "*",
            "Condition": {
                "BoolIfExists": {
                    "aws:SecureTransport": "false"
                }
            }
        }
    ]
}
上一页Cross-service confused deputy protection下一页一致的 Amazon S3 存储桶策略控制

最后更新于