move AbortMultipartUpload and ListMultipartUploadParts to the object-level IAM policy statement

Signed-off-by: Thomas Hopkins <hopkinsth@gmail.com>
2018-04-10 20:26:48 -04:00 · 2018-04-10 20:26:48 -04:00 · 612fe31bff
parent 258f3e011e
commit 612fe31bff
1 changed files with 4 additions and 4 deletions
--- a/docs/aws-config.md
+++ b/docs/aws-config.md
@ -62,7 +62,9 @@ For more information, see [the AWS documentation on IAM users][14].
                "Action": [
                    "s3:GetObject",
                    "s3:DeleteObject",
-                    "s3:PutObject"
+                    "s3:PutObject",
+                    "s3:AbortMultipartUpload",
+                    "s3:ListMultipartUploadParts"
                ],
                "Resource": [
                    "arn:aws:s3:::${BUCKET}/*"
@ -71,9 +73,7 @@ For more information, see [the AWS documentation on IAM users][14].
            {
                "Effect": "Allow",
                "Action": [
-                    "s3:ListBucket",
-                    "s3:AbortMultipartUpload",
-                    "s3:ListMultipartUploadParts"
+                    "s3:ListBucket"
                ],
                "Resource": [
                    "arn:aws:s3:::${BUCKET}"