AWS S3 and CloudFront project built as part of an AWS DevOps course, demonstrating bucket provisioning, identity-based access policies, and content management via the AWS CLI.
- Configures identity-based IAM policies applied to Users, Roles, and IAM Groups
- Sets up S3 bucket policies using User ARN and Resource ARN for scoped access
- Manages S3 buckets and objects entirely through the AWS CLI (no console)
- Demonstrates least-privilege access with prefix-level permissions (
s3:prefix)
- Amazon S3
- Amazon CloudFront
- IAM Roles, Users & Groups
- Bucket Policies & Identity-Based Policies
- AWS CLI
# Create a bucket in a specific region
aws s3 mb s3://bucketname --region us-east-1
# Upload a file to S3
aws s3 cp file.pdf s3://bucketname
# List bucket contents
aws s3 ls s3://bucketname
# Move/rename an object
aws s3 mv source.json s3://bucketname
# Remove a bucket and all contents
aws s3 rb s3://bucketname --force
# View AWS CLI config
cat ~/.aws/config- S3 bucket creation and policy configuration
- IAM identity-based and resource-based access control
- AWS CLI for automated storage operations
- CloudFront integration for content delivery
- Least-privilege security principles
---
5. Scroll down and fill in:
**Commit message:**
Update README with project overview and CLI documentation
**Extended description:**
Rewrote README to clearly document the project purpose, IAM policy configuration, and AWS CLI commands used. Added sections for What It Does, AWS Services Used, Key CLI Commands, and Skills Demonstrated to make the repo accessible to reviewers and hiring managers.