Topic 1 Question 422
A developer is automating a new application deployment with AWS Serverless Application Model (AWS SAM). The new application has one AWS Lambda function and one Amazon S3 bucket. The Lambda function must access the S3 bucket to only read objects.
How should the developer configure AWS SAM to grant the necessary read privilege to the S3 bucket?
Reference a second Lambda authorizer function.
Add a custom S3 bucket policy to the Lambda function.
Create an Amazon Simple Queue Service (SQS) topic for only S3 object reads. Reference the topic in the template.
Add the S3ReadPolicy template to the Lambda function's execution role.
ユーザの投票
コメント(3)
- 正解だと思う選択肢: D
ans is D
👍 1Saudis2024/11/07 - 正解だと思う選択肢: D
The correct answer is D. AWS SAM simplifies infrastructure-as-code deployments. To grant the Lambda function read access to the S3 bucket, you should define an IAM role for the Lambda function that includes the necessary S3 read permissions. AWS SAM provides pre-defined policy templates, including S3ReadPolicy, which grants read-only access to S3. This is the most efficient way to handle permissions within the SAM template.
👍 1examuserss2025/01/02 - 正解だと思う選択肢: D
D is correct. S3 and role is coupled.
👍 1tullio852025/01/13
シャッフルモード