Skip to content

Instantly share code, notes, and snippets.

@lyoshenka

lyoshenka/aws_s3_single_bucket_policy.json

Created September 18, 2013 17:01
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save lyoshenka/6612180 to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save lyoshenka/6612180 to your computer and use it in GitHub Desktop.
Download ZIP
AWS S3 User Policy that limits access to just one bucket
Raw
aws_s3_single_bucket_policy.json
{
"Statement": [
{
"Effect": "Allow",
"Action": [
"s3:ListBucket",
"s3:GetBucketLocation",
"s3:ListBucketMultipartUploads"
],
"Resource": "arn:aws:s3:::BUCKETNAME",
"Condition": {}
},
{
"Effect": "Allow",
"Action": [
"s3:AbortMultipartUpload",
"s3:DeleteObject",
"s3:DeleteObjectVersion",
"s3:GetObject",
"s3:GetObjectAcl",
"s3:GetObjectVersion",
"s3:GetObjectVersionAcl",
"s3:PutObject",
"s3:PutObjectAcl",
"s3:PutObjectAclVersion"
],
"Resource": "arn:aws:s3:::BUCKETNAME/*",
"Condition": {}
},
{
"Effect": "Allow",
"Action": "s3:ListAllMyBuckets",
"Resource": "*",
"Condition": {}
}
]
}
@lyoshenka
Copy link
Author

lyoshenka commented May 5, 2014
edited
Loading

alternative:

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": "s3:ListAllMyBuckets",
      "Resource": "arn:aws:s3:::*"
    },
    {
      "Action": "s3:*",
      "Effect": "Allow",
      "Resource": [
          "arn:aws:s3:::BUCKETNAME",
          "arn:aws:s3:::BUCKETNAME/*"
      ]
    }
  ]
}

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment