Starting to learn AWS services should begin with the basics.

Therefore, we will start with a service like S3, which is used by everyone, always. Even the images I include in this course are stored on S3, any media information, and sometimes code snippets or scripts that perform various functions.

Let's start with the definition:

Creating a Bucket

Now, let's start working with S3. First, we need to access this service by clicking on the "Services" button in the top left corner. Then, at the bottom, we'll see the "Storage" section, and after clicking on it, a menu will appear where we should select S3:

After that, we'll go to the menu, where you can see a short video guide from Amazon, which will tell you how to work with S3, as well as a lot of other information. You can review it if you want, but what we're interested in now is the "Create Bucket" button, which is shown in the screenshot below:

Now you need to configure your bucket. You can read about each of the settings yourself, or you can replicate my settings listed below.

If you've done everything correctly, you should see a picture like this in front of you:

Now let's configure our bucket so that users can only use GET requests, for example, to view the image on the screen or download it. To do this, we need to go to the bucket, navigate to the permissions section, and scroll down to the Bucket Policy section.

Then we need to add this code there:

Este JSON es una política de acceso de Amazon S3 que define permisos para acceder a objetos en el bucket S3. En AWS, estas políticas se utilizan para gestionar el acceso a recursos en servicios en la nube. En este caso, la política describe los siguientes permisos:

• Version: Esto indica la versión de sintaxis de la política. "2012-10-17" es la versión más reciente y más utilizada de políticas;

• Statement: Este es el elemento principal de la política, que contiene un array de declaraciones individuales.

Cada declaración (en este caso, una) contiene:

• Effect: Determina si la acción está permitida o no. En este caso, "Allow" significa que la acción está permitida;

• Principal: Especifica quién recibe el permiso. Aquí, "*" significa que el permiso se otorga a todos los usuarios;

• Action: Especifica qué acción está permitida. "s3:GetObject" permite a los usuarios acceder (descargar) objetos (archivos) en el bucket S3;

• Resource: Indica el recurso específico al que se aplican los permisos. "arn:aws:s3:::codefinity-aws-course/*" se refiere a todos los objetos (indicado por el asterisco *) en el bucket S3 llamado "codefinity-aws-course".

Your permission file should look like this:

Note

Ignore any warnings from AWS because we are learning. We need the files in the bucket to be public so that we can visually see how the storage works through the code.

Great, we have successfully created a bucket and configured it for our needs. In the upcoming chapters, we will learn how to upload media files into it and use it in our code and applications.