Skip to content

Commit 1076fa2

Browse files
SamyOubouazizSamyOubouaziz
committed
docs(obj): update - only full access is ok
1 parent 580b502 commit 1076fa2

File tree

1 file changed

+58
-58
lines changed

1 file changed

+58
-58
lines changed

pages/object-storage/reference-content/s3-iam-permissions-equivalence.mdx

Lines changed: 58 additions & 58 deletions
Original file line numberDiff line numberDiff line change
@@ -4,67 +4,67 @@ description: Understand how IAM permissions in Amazon S3 relate to Scaleway Obje
44
tags: object-storage amazon-s3 aws action equivalent iam permission set
55
---
66

7-
Below is a list of Object Storage API actions authorized for each [permission set](/iam/reference-content/permission-sets/).
7+
Below is a list of Object Storage API actions authorized for each [permission set](/iam/reference-content/permission-sets/). Actions that are not explicitly authorized in a permission set are denied by default.
88

99
## ObjectStorageFullAccess
1010

11-
| Amazon S3 action | Bucket Policy Action |
12-
|---------------------------------|------------------------------|
13-
| AbortMultipartUpload | s3:AbortMultipartUpload |
14-
| CompleteMultipartUpload | s3:PutObject |
15-
| CopyObject | s3:CopyObject |
16-
| CreateBucket | s3:CreateBucket |
17-
| CreateMultipartUpload | s3:PutObject |
18-
| DeleteBucket | s3:DeleteBucket |
19-
| DeleteBucketCors | s3:PutBucketCors |
20-
| DeleteBucketLifecycle | s3:PutLifecycleConfiguration |
21-
| DeleteBucketPolicy | s3:DeleteBucketPolicy |
22-
| DeleteBucketTagging | s3:PutBucketTagging |
23-
| DeleteBucketWebsite | s3:DeleteBucketWebsite |
24-
| DeleteObject | s3:DeleteObject |
25-
| DeleteObjects | s3:DeleteObjects |
26-
| DeleteObjectTagging | s3:DeleteObjectTagging |
27-
| GetBucketAcl | s3:GetBucketAcl |
28-
| GetBucketCors | s3:GetBucketCors |
29-
| GetBucketLifecycleConfiguration | s3:GetBucketLifecycle |
30-
| GetBucketLocation | s3:GetBucketLocation |
31-
| GetBucketPolicy | s3:GetBucketPolicy |
32-
| GetBucketPolicyStatus | s3:GetBucketPolicyStatus |
33-
| GetBucketTagging | s3:GetBucketTagging |
34-
| GetBucketVersioning | s3:GetBucketVersioning |
35-
| GetBucketWebsite | s3:GetBucketWebsite |
36-
| GetObject | s3:GetObject |
37-
| GetObjectAcl | s3:GetObjectAcl |
38-
| GetObjectLegalHold | s3:GetObjectLegalHold |
39-
| GetObjectLockConfiguration | s3:GetObjectLockConfiguration|
40-
| GetObjectRetention | s3:GetObjectRetention |
41-
| GetObjectTagging | s3:GetObjectTagging |
42-
| HeadBucket | s3:HeadBucket |
43-
| HeadObject | s3:HeadObject |
44-
| ListBuckets | s3:ListBucket |
45-
| ListMultipartUploads | s3:ListMultipartUploads |
46-
| ListObjects | s3:ListBucket |
47-
| ListObjectsV2 | s3:ListBucket |
48-
| ListObjectVersions | s3:ListBucket |
49-
| ListParts | s3:ListMultipartUploadParts |
50-
| PostObject | s3:PostObject |
51-
| PutBucketAcl | s3:PutBucketAcl |
52-
| PutBucketCors | s3:PutBucketCors |
53-
| PutBucketLifecycleConfiguration | s3:PutBucketLifecycle |
54-
| PutBucketPolicy | s3:PutBucketPolicy |
55-
| PutBucketTagging | s3:PutBucketTagging |
56-
| PutBucketVersioning | s3:PutBucketVersioning |
57-
| PutBucketWebsite | s3:PutBucketWebsite |
58-
| PutObject | s3:PutObject |
59-
| PutObjectAcl | s3:PutObjectAcl |
60-
| PutObjectLegalHold | s3:PutObjectLegalHold |
61-
| PutObjectLockConfiguration | s3:PutObjectLockConfiguration|
62-
| PutObjectRetention | s3:PutObjectRetention |
63-
| PutObjectTagging | s3:PutObjectTagging |
64-
| RestoreObject | s3:RestoreObject |
65-
| UploadPart | s3:UploadPart |
66-
| UploadPartCopy | s3:UploadPartCopy |
67-
11+
| Amazon S3 action | Bucket policy action required |
12+
|------------------------------------------------|------------------------------------|
13+
| AbortMultipartUpload | s3:AbortMultipartUpload |
14+
| CompleteMultipartUpload | s3:PutObject |
15+
| CopyObject | s3:PutObject |
16+
| CreateMultipartUpload | s3:PutObject |
17+
| DeleteBucketCors | s3:PutBucketCORS |
18+
| DeleteBucketLifecycleConfiguration | s3:PutLifecycleConfiguration |
19+
| DeleteBucketTagging | s3:PutBucketTagging |
20+
| DeleteBucketWebsite | s3:DeleteBucketWebsite |
21+
| DeleteObject (versionId required) | s3:DeleteObjectVersion |
22+
| DeleteObject | s3:DeleteObject |
23+
| DeleteObjects (versionId required) | s3:DeleteObjectVersion |
24+
| DeleteObjects | s3:DeleteObject |
25+
| DeleteObjectTagging (versionId required) | s3:DeleteObjectVersionTagging |
26+
| DeleteObjectTagging | s3:DeleteObjectTagging |
27+
| GetBucketAcl | s3:GetBucketAcl |
28+
| GetBucketCors | s3:GetBucketCORS |
29+
| GetBucketLifecycleConfiguration | s3:GetLifecycleConfiguration |
30+
| GetBucketLocation | s3:GetBucketLocation |
31+
| GetBucketTagging | s3:GetBucketTagging |
32+
| GetBucketVersioning | s3:GetBucketVersioning |
33+
| GetBucketWebsite | s3:GetBucketWebsite |
34+
| GetObject (versionId required) | s3:GetObjectVersion |
35+
| GetObject | s3:GetObject |
36+
| GetObjectAcl | s3:GetObjectAcl |
37+
| GetObjectAttributes (versionId required) | s3:GetObjectVersionAttributes |
38+
| GetObjectAttributes | s3:GetObjectAttributes |
39+
| GetObjectLegalHold | s3:GetObjectLegalHold |
40+
| GetObjectLockConfiguration | s3:GetBucketObjectLockConfiguration|
41+
| GetObjectRetention | s3:GetObjectRetention |
42+
| GetObjectTagging (versionId required) | s3:GetObjectVersionTagging |
43+
| GetObjectTagging | s3:GetObjectTagging |
44+
| HeadBucket | s3:ListBucket |
45+
| HeadObject | s3:GetObject |
46+
| ListMultipartUploads | s3:ListBucketMultipartUploads |
47+
| ListObjects | s3:ListBucket |
48+
| ListObjectsV2 | s3:ListBucket |
49+
| ListObjectVersions | s3:ListBucketVersions |
50+
| ListParts | s3:ListMultipartUploadParts |
51+
| PostObject | s3:PutObject |
52+
| PutBucketAcl | s3:PutBucketAcl |
53+
| PutBucketCors | s3:PutBucketCORS |
54+
| PutBucketLifecycleConfiguration | s3:PutLifecycleConfiguration |
55+
| PutBucketTagging | s3:PutBucketTagging |
56+
| PutBucketVersioning | s3:PutBucketVersioning |
57+
| PutBucketWebsite | s3:PutBucketWebsite |
58+
| PutObject | s3:PutObject |
59+
| PutObjectAcl | s3:PutObjectAcl |
60+
| PutObjectLegalHold | s3:PutObjectLegalHold |
61+
| PutObjectLockConfiguration | s3:PutBucketObjectLockConfiguration|
62+
| PutObjectRetention | s3:PutObjectRetention |
63+
| PutObjectTagging (versionId required) | s3:PutObjectVersionTagging |
64+
| PutObjectTagging | s3:PutObjectTagging |
65+
| RestoreObject | s3:RestoreObject |
66+
| UploadPart | s3:PutObject |
67+
| UploadPartCopy | s3:PutObject |
6868
## ObjectStorageReadOnly
6969

7070
| Amazon S3 Action | Bucket Policy Action |

0 commit comments

Comments
 (0)