Why am I getting an access denied error when I open the link to an Amazon s3 object that I have access to?

I am new to aws..
I uploaded a image in the bucket

if i try to open the object url in browser im getting the following error.

below are the bucket policies i have configured my bucket with

and Below are the CORS Configurations

The Block all public access is set to Off as suggested by the support team.

I want the object link to be accessible in the browser..(Read only)

need help to configure the Bucket ?

Fix it in under 3 minutes

So you are probably using an S3 bucket to host a react website or want to serve images to the public.

However, nothing seems to make sense, and you get access denied when trying to view an object using its URL.

Don't worry; fixing this is very simple.

Let's begin.

1. Unchecking "block all public access."

This check-box appears when you first create your bucket, so if you missed it, head to the S3 dashboard, click on your bucket and go to the permissions tab.

Scroll down until you find the section shown above, click edit, uncheck the box, and hit the save button.

We are halfway there, and this is probably not your issue, but it is a good idea to make sure just in case.

It's always the tiny careless mistakes that give us the worst headaches.

2. Not Setting a permission policy for the bucket

Let me break it to you, in AWS, everything, and I mean absolutely everything requires permissions.

Permissions are excellent and help us build secure applications, but it can be an easy thing to forget and a bit weird as a beginner.

If you stay in the permissions tab, scroll down until you find the section below.

Hit edit, so we can start editing the policy.

Note that you can easily copy your bucket name (ARN), which you will need in a bit.

If anything, delete whatever you have in the editor and copy the code snippet below.

Let's get a better understanding of what this policy is doing.

Effect: what we want to do with our action (could also be deny)

Principal: Who can perform the action (*) means anyone, so its public

Action: What action we want to allow to be performed. GetObject allows read access

Resource: What S3 bucket’s path do we want this rule to be applied to.

/* means all routes in our bucket

Remember your bucket ARN right above the editor? Click the copy icon and replace assets.tudicuando.com with your bucket's ARN.

Hit save.

When you scroll up and see your bucket name, The Ddashobard should display a red badge.

Either way, upload an image and test its "publicness" by going to the properties tab (of the picture) and copying the Object URL.

Now paste it into your browser, and Viola! You have served an image.

That's it; your bucket is now officially public 😎 and ready to serve some awesome pics. 📸

If you want to learn more about different AWS services, follow me for future content where I share insight and tutorials while building a production-ready web app using AWS.

Why is my s3 URL Access Denied?

Why am I getting an access denied error from the Amazon s3 console when I try to modify a bucket policy?

When accessing a s3 bucket you get 403 Forbidden error What does it mean?