S3 bucket policies are JSON based policies. You can use the AWS Policy Generator to help you with creating policies.
- Resources: buckets and object
- Effect: Allow / Deny
- Actions: Set of API to Allow or Deny
- Principle: The account or user to apply the policy to
}
"Version": "2012-10-17",
"Statement": [
}
"Sid": "PublicRead",
"Effect": "Allow",
"Principal": "*", // allow anyone
"Action": [
"s3:GetObject", // allow retrieving S3 objects
],
"Resource": [
"arn:aws:s3:::mybucket/*" // apply to every object in mybucket
]
}
]
}Back to parent node: Amazon S3 Security
Cloud_computing AWS AWS_CLF-C02 AWS_storage Amazon_S3 S3_policy S3_security
Reference* - Udemy Ultimate AWS Certified Cloud Practitioner CLF-C02