S3 read-write access to a certain bucket

https://aws.amazon.com/premiumsupport/knowledge-center/s3-console-access-certain-bucket/

Read and write permissions:

 {
  "Version":"2012-10-17",
  "Statement":[
     {
        "Effect":"Allow",
        "Action":[
           "s3:ListBucket"
        ],
        "Resource":"arn:aws:s3:::DOC-EXAMPLE-BUCKET"
     },
     {
        "Effect":"Allow",
        "Action":[
           "s3:PutObject",
           "s3:GetObject"
        ],
        "Resource":"arn:aws:s3:::DOC-EXAMPLE-BUCKET/*"
     }
  ]
}

Read only[edit]

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": [
                "s3:ListAllMyBuckets"
            ],
            "Resource": "*"
        },
        {
            "Effect": "Allow",
            "Action": [
                "s3:ListBucket"
            ],
            "Resource": "arn:aws:s3:::YourBucketName"
        },
        {
            "Effect": "Allow",
            "Action": [
                "s3:GetObject"
            ],
            "Resource": "arn:aws:s3:::YourBucketName/*"
        }
    ]
}

Related[edit]

• AWS managed policy: AmazonS3ReadOnlyAccess

Errors[edit]

• An error occurred (AccessDenied) when calling the ListBuckets operation: Access Denied
• An error occurred (InvalidToken) when calling the ListBuckets operation: The provided token is malformed or otherwise invalid.
• Error: Failed to get existing workspaces: S3 bucket does not exist.

See also[edit]

• AWS S3 policies: s3:, S3 read-write access to a certain bucket, s3:ListBucket, s3:ListAllMyBuckets
• AWS S3, aws s3, aws s3api, aws s3control, Amazon S3 Storage Lens, AWS S3 replication, CRR, SSR, CAR, S3 Replication Time Control (S3 RTC), Website endpoint, Amazon Macie, Versioning, Lifecycle, Amazon S3 Inventory, Amazon S3 Batch Operations, Storage Classes, Amazon S3 clients, Terraform S3, AWS canned ACLs