These instructions for how to enable logging (https://docs.digitalocean.com/products/spaces/how-to/access-logs/) are very useful, except that they don’t mention access keys. I spent a bunch of time trying to figure out whether to use an access key for the source bucket or an access key for the logging destination bucket, before I eventually figured out that I could create an access key that had full access to both buckets, which worked.

So could you add a note in these instructions saying that the ./aws/credentials file needs to contain the access key ID and secret for an access key that has access to both buckets? (And it might also need to be full instead of limited, not sure.)

thanks,

--Jed