aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
-rw-r--r--policies/paste-bucket.json20
-rw-r--r--policies/paste-user.json39
2 files changed, 59 insertions, 0 deletions
diff --git a/policies/paste-bucket.json b/policies/paste-bucket.json
new file mode 100644
index 0000000..548ca95
--- /dev/null
+++ b/policies/paste-bucket.json
@@ -0,0 +1,20 @@
+{
+ "Version": "2012-10-17",
+ "Statement": [
+ {
+ "Action": [
+ "s3:GetObject"
+ ],
+ "Effect": "Allow",
+ "Principal": {
+ "AWS": [
+ "*"
+ ]
+ },
+ "Resource": [
+ "arn:aws:s3:::paste/*"
+ ],
+ "Sid": ""
+ }
+ ]
+}
diff --git a/policies/paste-user.json b/policies/paste-user.json
new file mode 100644
index 0000000..c785ae6
--- /dev/null
+++ b/policies/paste-user.json
@@ -0,0 +1,39 @@
+{
+ "Version": "2012-10-17",
+ "Statement": [
+ {
+ "Effect": "Allow",
+ "Principal": {
+ "AWS": [
+ "*"
+ ]
+ },
+ "Action": [
+ "s3:GetBucketLocation",
+ "s3:ListBucket",
+ "s3:ListBucketMultipartUploads"
+ ],
+ "Resource": [
+ "arn:aws:s3:::paste"
+ ]
+ },
+ {
+ "Effect": "Allow",
+ "Principal": {
+ "AWS": [
+ "*"
+ ]
+ },
+ "Action": [
+ "s3:AbortMultipartUpload",
+ "s3:DeleteObject",
+ "s3:GetObject",
+ "s3:ListMultipartUploadParts",
+ "s3:PutObject"
+ ],
+ "Resource": [
+ "arn:aws:s3:::paste/*"
+ ]
+ }
+ ]
+}