deeno james
Reputation: 27
How to create an IAM Policy for a specific Role and give access to s3bucket get and put operations
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": "s3:*",
"Resource": "*"
}
]
}
this is my amazons3fullaccess policy but now i want to give only get put and delete access not full access
Upvotes: 1
Views: 17
Answers (1)
Marcin
Reputation: 238051
You could do the following using wildcards:
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": ["s3:put*", "s3:delete*", "s3:get*"],
"Resource": "*"
}
]
}
Or if you want to be more specific (good practice!):
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": ["s3:putObject", "s3:deleteObject", "s3:getObject"],
"Resource": "*"
}
]
}
Upvotes: 1
Related Questions
- How to grant access only to the Root Account User for an S3 bucket with IAM Policy AWS?
- AWS IAM Policy to allow user access to specific S3 bucket for backup
- IAM Role policy for cross account access to S3 bucket in a specific AWS account
- how I grant s3 bucket access with this particular role?
- Granting access to S3 resources based on role name
- How to write AWS Bucket Policy with SES principal and IAM role principal
- AWS IAM Policy: Restrict Bucket/Folder Access By User/Role?
- S3 Principal Bucket Policy Permissions
- How do I limit access to S3 Bucket for particular IAM Role?
- creating IAM policy for Amazon S3