Header

S3 Bucket policy issues

Unfortunately, you may run into a connection issue when trying to add an S3 bucket to your DeployHQ project. You will more than likely see the generic error:

Access Denied

A common cause of this is an incorrectly set policy. As a minimum, DeployHQ requires the following policy to be set:

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Principal": {
                "AWS": "arn:aws:iam::your-policy-id:root"
            },
            "Action": [
                "s3:DeleteObject",
                "s3:PutObject"
            ],
            "Resource": [
                "arn:aws:s3:::bucket-name",
                "arn:aws:s3:::bucket-name/*"
            ]
        }
    ]
}

Just replace bucket-name in the Resource array to match the name of your bucket, and the ID of your policy which you can find here.