Your AWS security policy is definitely wrong - you need to allow the PutObjectACL
action. Filepicker sets an ACL for each object it uploads. You also need to allow the DeleteObject
action if you want to use filepicker to remove uploaded files.
You can edit your AWS security policy in the AWS Console. Got to Services -> IAM -> Users and select your filepicker user. Then select the Permissions tab, select the policy you are using and click Manage Policy. You can then manually edit the policy and apply the changes.
This is what my policy looks like:
{
"Version": "2012-10-17",
"Statement": [
{
"Action": [
"s3:DeleteObject",
"s3:GetObject",
"s3:PutObject",
"s3:PutObjectAcl"
],
"Sid": "Stmt1370702252000",
"Resource": [
"arn:aws:s3:::<my bucket name here>/*"
],
"Effect": "Allow"
}
]
}
There's a Test S3 settings button on filepicke's S3 Settings page that might by useful as well.