Hey everyone,
I’m working on safely setting up AWS S3 buckets for our apps.
I want to stop people from accessing the apps and make sure that they are encrypted, but some of our apps need IAM roles to access them programmatically.
I’m worried about how to strike the right balance between security and usefulness.
Has anyone else had problems like these? How can you make sure that applications keep working well while still controlling who can access S3 buckets?