Overview
Manage AWS S3 data stores with Appian! Users can access their S3 objects directly from an Appian interface. Appian documents can be uploaded to a S3 bucket with Server-Side Encryption and be configured as Public or Private. The AWS S3 Connected System Plug-in uses the AWS Java SDK to connect to S3.
Key Features & FunctionalityThe following operations are included:
Requirements:
Access Key Id: the access key id for connecting to S3 can be retrieved from AWS Management Console Navigate to the Users > Summary page and click the “Security credentials” tab
Secret Access Key: the secret access key can only be viewed once upon the creation of an access key, see AWS Access Keys documentation for more information.
Note: Users that want to upload objects as 'Public' must have the correct IAM privileges or an "Access Denied" error will return. The s3:ListAllMyBuckets Action is needed to establish a Test Connection. Additionally, your IAM User will need the respective Action for each operation (i.e Upload File -> PutObject, Download Object -> GetObject) in their IAM Policy.
Role ARN (Optional): The Role ARN is the Amazon Resource Name for connection's role. The Role session name identifies the session to S3 administrators. For example, your IAM username. e.g. <role ARN>:role/<assumed rule>. See the AWS documentation for more details.
Assumed Role (Optional): An identifier for the assumed role session. Use the role session name to uniquely identify a session when the same role is assumed by different principals or for different reasons. In cross-account scenarios, the role session name is visible to, and can be logged by the account that owns the role. E.g. arn:aws:iam::12345678990:role/<assumed role>. For more details, please go to AWS documentation.
Do we have have limitations on file size to be transferred? What is the maximum file size that it currently supports?
Hello. I'm having the same issue now with this connected system. Were you able to solve this?
We just update to to 1.0.6 and are now we getting an error when trying to test connection on a previously create CS
Unable to test connection and then tried with Integration object. Both are throwing the following error:
HTTP Code: 500 APNX-1-4198-000
Error Evaluating UI Expression Expression evaluation error [evaluation ID = 4a05f:46941] : [valid:false,syntaxError:false,value:Expression evaluation error: An error occurred while executing a save: Expression evaluation error at function fn!objectReadAction_appian_internal [line 4]: com.appiancorp.connectedsystems.templateframework.functions.pipeline.proxyDecoratorPipeline.TemplateInvocationException: Contact the developer of this template to resolve the following issue. com.amazonaws.services.s3.model.AmazonS3Exception: Access Denied (Service: Amazon S3; Status Code: 403; Error Code: AccessDenied; Request ID: 50NTVA6JXRHTGXYC; S3 Extended Request ID: dQvOVjGQneKxh8nJs/cwI/y5ZUWayvQGpUDGtAzz/FPDEJjzv5xTQxUXvkzc46E+L2FGZQQOjM4=; Proxy: null)]
Hi- I am getting Access Denied error when trying the Test connection, triaging this on AWS cloud watch, we could see that Test Connection is still using ListBucket method. from the comments below is it not supposed to ListBucket? I infact tried creating the connected service without testing, but in the integration for Download object i am again getting the same Access denied error. i have verified the IAM policy for the secretkey, they seems to be have allow access to putobject and getobject and listbucket only to the specific bucket. Can anyone suggest what should be the ideal security settings needed for this to work?