Can't do basic things like specify the destination bucket.
I wanted to use this to skip the maintenance of SFTP -> S3 connection, without the ability to even specify the destination S3 bucket! It expects you to just give it full S3 IAM permissions, which seems sloppy/lazy. This lack of basic functionality makes this product a no-go for our reasons.
Hi Ben, thanks for giving SFTP Gateway a go! You can specify the destination S3 bucket on a per-user basis. When running "sudo addsftpuser", say "yes" when asked to specify an S3 bucket destination. Please see this knowledge base article for more details: https://help.thorntech.com/knowledge_base/topics/add-and-configure-users/#customize-s3-bucket-and-path We've also added the ability to specify the default S3 bucket name. You can do this by running the command "sudo sftpgatewaysetup --bucket your-s3-bucket-name". You are correct in that the S3 permissions on the CloudFormation template are open; this is so you can organically determine your S3 buckets or naming convention while testing the product. In production, you would want to tailor down permissions to meet your specific requirements. Here's a knowledge base article that provides some example syntax to do so: https://help.thorntech.com/knowledge_base/topics/restrict-s3-access-on-your-iam-policy In light of this information, we hope you'll give SFTP Gateway another shot. Thanks again!