I hate AWS sometimes, their error codes and messages for s3 is a whole load of bullshit.

do getObject on a file that doesn't exist that's 403: AccessDenied: Access Denied

do a headObject on a file that doesn't exist
4.3: Forbidden: null

S3 is not a file server, it's a document store (a special type of database). Just like you don't let unauthenticated people check whether an user exists in your database, S3 doesn't let you see 404 unless you have permission to check if a document exists in a bucket.

@hitko but i do have permission to check :(