From 2792568fe181512d6470b3eb392d3d065ecdf62d Mon Sep 17 00:00:00 2001 From: SamyOubouaziz Date: Thu, 23 May 2024 15:35:12 +0200 Subject: [PATCH 01/10] docs(s3): add BP in console documentation MTA-4603 --- storage/object/how-to/create-bucket-policy.mdx | 18 ++++++++++++++++++ 1 file changed, 18 insertions(+) create mode 100644 storage/object/how-to/create-bucket-policy.mdx diff --git a/storage/object/how-to/create-bucket-policy.mdx b/storage/object/how-to/create-bucket-policy.mdx new file mode 100644 index 0000000000..3198b284bf --- /dev/null +++ b/storage/object/how-to/create-bucket-policy.mdx @@ -0,0 +1,18 @@ +--- +meta: + title: Creating a bucket policy using the console + description: This page shows how to create and apply a bucket policy to a specific bucket using the Scaleway console +content: + h1: Creating a bucket policy using the console + paragraph: This page shows how to create and apply a bucket policy to a specific bucket using the Scaleway console +tags: bucket policy bucket console object storage s3 access +dates: + validation: 2024-05-14 + posted: 2021-01-17 +categories: + - storage + - object-storage +--- + +Scaleway Object Storage allows you to create [bucket policies](/storage/object/concepts/#bucket-policy) directly from the [Scaleway console](https://console.scaleway.com). + From fc26daa934020a80f8beff764c50c229d92de9e6 Mon Sep 17 00:00:00 2001 From: SamyOubouaziz Date: Mon, 27 May 2024 17:32:58 +0200 Subject: [PATCH 02/10] docs(s3): update --- .../object/how-to/create-bucket-policy.mdx | 40 ++++++++++++++++--- 1 file changed, 34 insertions(+), 6 deletions(-) diff --git a/storage/object/how-to/create-bucket-policy.mdx b/storage/object/how-to/create-bucket-policy.mdx index 3198b284bf..5d45505a84 100644 --- a/storage/object/how-to/create-bucket-policy.mdx +++ b/storage/object/how-to/create-bucket-policy.mdx @@ -1,18 +1,46 @@ --- meta: - title: Creating a bucket policy using the console - description: This page shows how to create and apply a bucket policy to a specific bucket using the Scaleway console + title: How to create and manage bucket policies using the console + description: This page shows how to create and manage bucket policies using the Scaleway console content: - h1: Creating a bucket policy using the console - paragraph: This page shows how to create and apply a bucket policy to a specific bucket using the Scaleway console + h1: How to create and manage bucket policies using the console + paragraph: This page shows how to create and manage bucket policies using the Scaleway console tags: bucket policy bucket console object storage s3 access dates: validation: 2024-05-14 - posted: 2021-01-17 + posted: 2024-05-27 categories: - storage - object-storage --- -Scaleway Object Storage allows you to create [bucket policies](/storage/object/concepts/#bucket-policy) directly from the [Scaleway console](https://console.scaleway.com). +Scaleway Object Storage allows you to create [bucket policies](/storage/object/concepts/#bucket-policy) directly from the [Scaleway console](https://console.scaleway.com). To create a bucket policy from the AWS CLI, refer to the [dedicated documentation](/storage/object/api-cli/create-bucket-policy/). + + + +- A Scaleway account logged into the [console](https://console.scaleway.com) +- [Owner](/identity-and-access-management/iam/concepts/#owner) status or [IAM permissions](/identity-and-access-management/iam/concepts/#permission) allowing you to perform actions in the intended Organization +- [Created a bucket](/storage/object/how-to/create-a-bucket/) + +## How to create a bucket policy + +1. Click **Object Storage** on the left side menu of the console. The Object Storage dashboard displays. + +2. Click the **Bucket policies** tab. + +3. Click **+ Create bucket policy**. A creation form displays. + +4. Enter a name for your bucket policy. + +5. Select a bucket to apply the policy to. + + + You can only apply a policy to a single bucket, but you can [duplicate an existing policy]() and apply it to another bucket. + + +6. Select your preferred creation method: + + - the **policy generator** to add [statements](/storage/object/api-cli/bucket-policy/#statement) using a form + + - the **JSON editor** to manually write or paste your bucket policy in a code editor. From 2a86a53d5191fba276a3db94a70215a88f1f42aa Mon Sep 17 00:00:00 2001 From: SamyOubouaziz Date: Tue, 28 May 2024 14:02:10 +0200 Subject: [PATCH 03/10] docs(s3): update --- .../object/how-to/create-bucket-policy.mdx | 33 ++++++++++++++----- 1 file changed, 25 insertions(+), 8 deletions(-) diff --git a/storage/object/how-to/create-bucket-policy.mdx b/storage/object/how-to/create-bucket-policy.mdx index 5d45505a84..8935caefa4 100644 --- a/storage/object/how-to/create-bucket-policy.mdx +++ b/storage/object/how-to/create-bucket-policy.mdx @@ -25,22 +25,39 @@ Scaleway Object Storage allows you to create [bucket policies](/storage/object/c ## How to create a bucket policy -1. Click **Object Storage** on the left side menu of the console. The Object Storage dashboard displays. + + -2. Click the **Bucket policies** tab. +1. Click **Object Storage** on the left side menu of the console. The Object Storage dashboard displays. -3. Click **+ Create bucket policy**. A creation form displays. +2. Click the **Bucket policies** tab, then click **+ Create bucket policy**. A creation form displays. -4. Enter a name for your bucket policy. +3. Enter a name for your bucket policy. -5. Select a bucket to apply the policy to. +4. Select a bucket to apply the policy to. You can only apply a policy to a single bucket, but you can [duplicate an existing policy]() and apply it to another bucket. -6. Select your preferred creation method: +5. Select the **policy generator** to add [statements](/storage/object/api-cli/bucket-policy/#statement) using a form. + + + + +1. Click **Object Storage** on the left side menu of the console. The Object Storage dashboard displays. + +2. Click the **Bucket policies** tab, then click **+ Create bucket policy**. A creation form displays. + +3. Enter a name for your bucket policy. + +4. Select a bucket to apply the policy to. + + + You can only apply a policy to a single bucket, but you can [duplicate an existing policy]() and apply it to another bucket. + - - the **policy generator** to add [statements](/storage/object/api-cli/bucket-policy/#statement) using a form +5. Select the **JSON editor** to manually write or paste your bucket policy in a code editor. - - the **JSON editor** to manually write or paste your bucket policy in a code editor. + + \ No newline at end of file From 2613af4316729c26d04acc68d4ea7ad5270f4042 Mon Sep 17 00:00:00 2001 From: SamyOubouaziz Date: Wed, 29 May 2024 14:18:30 +0200 Subject: [PATCH 04/10] docs(s3): update --- storage/object/how-to/create-bucket-policy.mdx | 3 +++ 1 file changed, 3 insertions(+) diff --git a/storage/object/how-to/create-bucket-policy.mdx b/storage/object/how-to/create-bucket-policy.mdx index 8935caefa4..84a836766b 100644 --- a/storage/object/how-to/create-bucket-policy.mdx +++ b/storage/object/how-to/create-bucket-policy.mdx @@ -42,6 +42,9 @@ Scaleway Object Storage allows you to create [bucket policies](/storage/object/c 5. Select the **policy generator** to add [statements](/storage/object/api-cli/bucket-policy/#statement) using a form. +6. Enter a unique [statement ID](/storage/object/api-cli/bucket-policy/#sid) (also called **Sid**) describing the purpose of the statement. + +7. Select the types of [principals](/storage/object/api-cli/bucket-policy/#principal) of your bucket policy from the drop-down menu. From 7b617e29c6e5879a12a88324d43c1c341cc9c6eb Mon Sep 17 00:00:00 2001 From: SamyOubouaziz Date: Wed, 29 May 2024 18:21:40 +0200 Subject: [PATCH 05/10] docs(s3): update --- .../object/how-to/create-bucket-policy.mdx | 140 +++++++++++++++--- 1 file changed, 122 insertions(+), 18 deletions(-) diff --git a/storage/object/how-to/create-bucket-policy.mdx b/storage/object/how-to/create-bucket-policy.mdx index 84a836766b..3fa8a27be1 100644 --- a/storage/object/how-to/create-bucket-policy.mdx +++ b/storage/object/how-to/create-bucket-policy.mdx @@ -14,7 +14,9 @@ categories: - object-storage --- -Scaleway Object Storage allows you to create [bucket policies](/storage/object/concepts/#bucket-policy) directly from the [Scaleway console](https://console.scaleway.com). To create a bucket policy from the AWS CLI, refer to the [dedicated documentation](/storage/object/api-cli/create-bucket-policy/). +Scaleway Object Storage allows you to create [bucket policies](/storage/object/concepts/#bucket-policy) directly from the [Scaleway console](https://console.scaleway.com). + +To create and apply a bucket policy from the AWS CLI, refer to the [dedicated documentation](/storage/object/api-cli/create-bucket-policy/). @@ -25,9 +27,6 @@ Scaleway Object Storage allows you to create [bucket policies](/storage/object/c ## How to create a bucket policy - - - 1. Click **Object Storage** on the left side menu of the console. The Object Storage dashboard displays. 2. Click the **Bucket policies** tab, then click **+ Create bucket policy**. A creation form displays. @@ -40,27 +39,132 @@ Scaleway Object Storage allows you to create [bucket policies](/storage/object/c You can only apply a policy to a single bucket, but you can [duplicate an existing policy]() and apply it to another bucket. -5. Select the **policy generator** to add [statements](/storage/object/api-cli/bucket-policy/#statement) using a form. +5. Select your preferred creation method: -6. Enter a unique [statement ID](/storage/object/api-cli/bucket-policy/#sid) (also called **Sid**) describing the purpose of the statement. + - The **policy generator** to add [statements](/storage/object/api-cli/bucket-policy/#statement) using a form. + + - The **JSON editor** to manually write or paste your bucket policy in a code editor. -7. Select the types of [principals](/storage/object/api-cli/bucket-policy/#principal) of your bucket policy from the drop-down menu. + + Refer to the dedicated documentation on [bucket policies overview](/storage/object/api-cli/bucket-policy/) and [combining IAM and bucket policies](/storage/object/api-cli/combining-iam-and-object-storage/) for more information on how to build a bucket policy. + + +6. Create a [statement](/storage/object/api-cli/bucket-policy/#statement) by entering the following information: + + + + - Enter a unique [statement ID](/storage/object/api-cli/bucket-policy/#sid) (also called **Sid**) describing the purpose of the statement. + - Select the types of [principals](/storage/object/api-cli/bucket-policy/#principal) of your bucket policy from the drop-down menu. + - Select the **users** and **applications** you want to grant access to. + - Select the [Actions](/storage/object/api-cli/bucket-policy/#action) to allow to the principal(s). + + To allow different action sets to the different principals, create multiple statements. + + - Select [resources](/storage/object/api-cli/bucket-policy/#resource) by entering the prefix of the objects, followed by `/*`. Enter `*` to select every object in the bucket. + - Add [conditions](/storage/object/api-cli/bucket-policy/#condition) by selecting by selecting them from the drop-down menu, and adding a supported key-value pair. + + + - Enter a unique [statement ID](/storage/object/api-cli/bucket-policy/#sid) (also called **Sid**) describing the purpose of the statement. + - Enter the types of [principals](/storage/object/api-cli/bucket-policy/#principal) and the user/application ID you want to grant access as shown below: + ```json + "Principal":{ + "SCW":[ + "user_id:", + "application_id:" + ] + }, + ``` + - Enter the [Actions](/storage/object/api-cli/bucket-policy/#action) to allow to the principal(s) as shown below. Enter `s3:*` to allow all actions. + ```json + "Action":[ + "s3:ListBucket", + "s3:GetObject" + ], + ``` + + To allow different action sets to the different principals, create multiple statements. + + - Grant access to [resources](/storage/object/api-cli/bucket-policy/#resource) by entering the prefix of the objects as shown below. Enter `*` to select every object in the bucket. + ```json + "Resource":[ + "", + "/photos/*" + ] + ``` + + Add the bucket as a resource to allow operations on the bucket, such as `s3:ListBucket`. + + - Add [conditions](/storage/object/api-cli/bucket-policy/#condition) as shown below: + ```json + "Condition": { + "DateGreaterThan": { + "aws:CurrentTime": "2020-01-01T00:00:00Z" + }, + "StringLike": { + "aws:Referer": "https://console.scaleway.com/*" + }, + "IpAddress": { + "aws:SourceIp": "192.0.2.0/24" + } + } + ``` + + + +7. (Optional) click **+ Add statement**, and repeat step 6 to add multiple statements to your bucket policy. + +8. Review your bucket policy using the JSON preview. + +9. Click **Create bucket policy** to create, it and apply it to the selected bucket. + + + +## How to edit a bucket policy - - 1. Click **Object Storage** on the left side menu of the console. The Object Storage dashboard displays. -2. Click the **Bucket policies** tab, then click **+ Create bucket policy**. A creation form displays. +2. Click the **Bucket policies** tab. -3. Enter a name for your bucket policy. +3. Click the name of the bucket policy you want to edit. -4. Select a bucket to apply the policy to. +4. Click **Edit policy**. - - You can only apply a policy to a single bucket, but you can [duplicate an existing policy]() and apply it to another bucket. - + +Alternatively, you can also edit a bucket policy from the **Settings tab** of your bucket, or by clicking next to its name in the **Bucket policies** tab. + + +## How to apply an existing policy to another bucket + +The [Scaleway console](https://console/scaleway.com) allows you to duplicate an existing policy, and apply it to another bucket. + +1. Click **Object Storage** on the left side menu of the console. The Object Storage dashboard displays. + +2. Click the **Bucket policies** tab. + +3. Click the name of the bucket policy you want to apply to another bucket. + +4. Click **Apply to another bucket**. A pop-up apprears. + +5. Select a bucket from the drop-down menu, then enter a name for the policy. + +6. Click **Apply policy**. + + + +## How to delete a bucket policy + +1. Click **Object Storage** on the left side menu of the console. The Object Storage dashboard displays. + +2. Click the **Bucket policies** tab. + +3. Click the name of the bucket policy you want to delete. + +4. Click **Delete policy** to permanently delete it. + + +Alternatively, you can also delete a bucket policy by clicking next to its name in the **Bucket policies** tab. + -5. Select the **JSON editor** to manually write or paste your bucket policy in a code editor. +## Troubleshooting - - \ No newline at end of file +TODO \ No newline at end of file From d68dc3ab3e45b2c27f1a0c8494f3cdef4e4e1479 Mon Sep 17 00:00:00 2001 From: SamyOubouaziz Date: Thu, 30 May 2024 12:42:20 +0200 Subject: [PATCH 06/10] docs(s3): update --- .../object/api-cli/create-bucket-policy.mdx | 2 + storage/object/concepts.mdx | 2 +- .../object/how-to/create-bucket-policy.mdx | 76 +++++++++++++++++-- .../lost-bucket-access-bucket-policy.mdx | 20 ++++- 4 files changed, 91 insertions(+), 9 deletions(-) diff --git a/storage/object/api-cli/create-bucket-policy.mdx b/storage/object/api-cli/create-bucket-policy.mdx index 14c9d935b6..f3b24ad72b 100644 --- a/storage/object/api-cli/create-bucket-policy.mdx +++ b/storage/object/api-cli/create-bucket-policy.mdx @@ -16,6 +16,8 @@ categories: +To create and apply a bucket policy from the [Scaleway console](https://console/scaleway.com), refer to the [dedicated documentation](/storage/object/how-to/create-bucket-policy/). + - A Scaleway account logged into the [console](https://console.scaleway.com) diff --git a/storage/object/concepts.mdx b/storage/object/concepts.mdx index 380e87de7b..aca5793d23 100644 --- a/storage/object/concepts.mdx +++ b/storage/object/concepts.mdx @@ -25,7 +25,7 @@ A group of objects sharing a common denominator. It can contain as many objects -Bucket policies are assigned to [principals](#principal), who will be allowed or denied access to resources and actions. +Bucket policies are assigned to [principals](#principal), who will be allowed or denied access to resources and actions. They can be created and applied using the [CLI](/storage/object/api-cli/create-bucket-policy/) or via the [Scaleway console](/storage/object/how-to/create-bucket-policy/). ## Bucket website diff --git a/storage/object/how-to/create-bucket-policy.mdx b/storage/object/how-to/create-bucket-policy.mdx index 3fa8a27be1..b9174b6c6b 100644 --- a/storage/object/how-to/create-bucket-policy.mdx +++ b/storage/object/how-to/create-bucket-policy.mdx @@ -7,8 +7,8 @@ content: paragraph: This page shows how to create and manage bucket policies using the Scaleway console tags: bucket policy bucket console object storage s3 access dates: - validation: 2024-05-14 - posted: 2024-05-27 + validation: 2024-05-30 + posted: 2024-05-30 categories: - storage - object-storage @@ -33,7 +33,7 @@ To create and apply a bucket policy from the AWS CLI, refer to the [dedicated do 3. Enter a name for your bucket policy. -4. Select a bucket to apply the policy to. +4. Select the bucket to which you want to apply the policy. You can only apply a policy to a single bucket, but you can [duplicate an existing policy]() and apply it to another bucket. @@ -111,14 +111,73 @@ To create and apply a bucket policy from the AWS CLI, refer to the [dedicated do -7. (Optional) click **+ Add statement**, and repeat step 6 to add multiple statements to your bucket policy. +7. (Optional) Click **+ Add statement**, and repeat step 6 to add another statement to your bucket policy. 8. Review your bucket policy using the JSON preview. -9. Click **Create bucket policy** to create, it and apply it to the selected bucket. +9. Click **Create bucket policy** to create it, and apply it to the selected bucket. +## Bucket policy example + +```json +{ + "Id": "my-bucket-policy", + "Version": "2023-04-17", + "Statement": [ + { + "Principal": { + "SCW": [ + "user_id:example-c5cc-4862-8506-e09dfe5b9d1c", + "application_id:example-3967-f6rc-2064-b9d1ce09dfe5", + ] + }, + "Sid": "my-statement-1", + "Action": [ + "s3:DeleteObject", + "s3:DeleteObjectTagging", + "s3:GetBucketTagging", + "s3:GetObject" + ], + "Effect": "Allow", + "Resource": [ + "my-bucket", + "my-bucket/photos/*" + ], + "Condition": { + "IpAddress": { + "aws:SourceIp": "192.0.2.0/24" + } + } + }, + { + "Principal": { + "SCW": [ + "application_id:example-c5cc-4862-8506-e0969drses3d" + ] + }, + "Sid": "my-statement-2", + "Action": [ + "s3:PutObject", + "s3:PutBucketTagging", + "s3:PutBucketVersioning" + ], + "Effect": "Allow", + "Resource": [ + "my-bucket", + "my-bucket/documents/*" + ], + "Condition": { + "StringLike": { + "aws:Referer": "https://console.scaleway.com/*" + } + } + } + ] +} +``` + ## How to edit a bucket policy 1. Click **Object Storage** on the left side menu of the console. The Object Storage dashboard displays. @@ -143,7 +202,7 @@ The [Scaleway console](https://console/scaleway.com) allows you to duplicate an 3. Click the name of the bucket policy you want to apply to another bucket. -4. Click **Apply to another bucket**. A pop-up apprears. +4. Click **Apply to another bucket**. A pop-up appears. 5. Select a bucket from the drop-down menu, then enter a name for the policy. @@ -167,4 +226,7 @@ Alternatively, you can also delete a bucket policy by clicking + + +If you have permission to apply a bucket policy, you can also edit it or delete it using the [Scaleway console](https://console.scaleway.com). + +1. Click **Object Storage** on the left side menu of the console. The Object Storage dashboard displays. + +2. Click the **Bucket policies** tab. + +3. Click the name of the bucket policy applied to the lost bucket. + +4. Either edit it to grant yourself access, or delete it and [create a new one](/storage/object/how-to/create-bucket-policy/) + + + If you have the permission to apply a bucket policy, you can also delete it. To regain access to the resources stored in your bucket, you can either: -- delete the current bucket policy using the command below. The bucket will become available to every users with [IAM permissions](/identity-and-access-management/iam/concepts/#permission). +- delete the current bucket policy using the command below. The bucket will become available to every user with [IAM permissions](/identity-and-access-management/iam/concepts/#permission). ``` aws s3api delete-bucket-policy --bucket ``` - [apply a new bucket policy](/storage/object/api-cli/create-bucket-policy/) in the bucket to allow yourself (or the desired principal) to perform the desired [storage operations](/storage/object/api-cli/using-api-call-list/). + + + Refer to the [bucket policies overview](/storage/object/api-cli/bucket-policy/) for more information on the different elements of a bucket policy. \ No newline at end of file From 80c08b41bbda9f1b79b7eca37e72501f5b8cd006 Mon Sep 17 00:00:00 2001 From: SamyOubouaziz Date: Thu, 30 May 2024 15:20:31 +0200 Subject: [PATCH 07/10] docs(s3): add nav --- menu/navigation.json | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/menu/navigation.json b/menu/navigation.json index c8ca4a15a4..09fb3d87ee 100644 --- a/menu/navigation.json +++ b/menu/navigation.json @@ -2207,6 +2207,10 @@ "label": "Use bucket versioning", "slug": "use-bucket-versioning" }, + { + "label": "Create and manage bucket policies", + "slug": "create-bucket-policy" + }, { "label": "Manage lifecycle rules", "slug": "manage-lifecycle-rules" From 5b02e3fb41c79b68a60baa647547778aa2042b82 Mon Sep 17 00:00:00 2001 From: SamyOubouaziz Date: Tue, 18 Jun 2024 17:37:01 +0200 Subject: [PATCH 08/10] docs(s3): update --- storage/object/how-to/create-bucket-policy.mdx | 15 ++++++++++----- 1 file changed, 10 insertions(+), 5 deletions(-) diff --git a/storage/object/how-to/create-bucket-policy.mdx b/storage/object/how-to/create-bucket-policy.mdx index b9174b6c6b..cd0367f77f 100644 --- a/storage/object/how-to/create-bucket-policy.mdx +++ b/storage/object/how-to/create-bucket-policy.mdx @@ -36,7 +36,8 @@ To create and apply a bucket policy from the AWS CLI, refer to the [dedicated do 4. Select the bucket to which you want to apply the policy. - You can only apply a policy to a single bucket, but you can [duplicate an existing policy]() and apply it to another bucket. + - You can only apply a policy to a single bucket, but you can [duplicate an existing policy](/storage/object/how-to/create-bucket-policy/#how-to-apply-an-existing-policy-to-another-bucket) and apply it to another bucket. + - If you change the target bucket of an existing policy, the bucket policy will be removed from the original bucket, and applied to the selected bucket. 5. Select your preferred creation method: @@ -49,7 +50,9 @@ To create and apply a bucket policy from the AWS CLI, refer to the [dedicated do Refer to the dedicated documentation on [bucket policies overview](/storage/object/api-cli/bucket-policy/) and [combining IAM and bucket policies](/storage/object/api-cli/combining-iam-and-object-storage/) for more information on how to build a bucket policy. -6. Create a [statement](/storage/object/api-cli/bucket-policy/#statement) by entering the following information: +6. By default, the bucket policy contains a **secure statement** that allows every action to the user creating the policy. Keep the **Maintain access to bucket** box ticked to prevent accidental lockout from your bucket. + +7. Create a [statement](/storage/object/api-cli/bucket-policy/#statement) by entering the following information: @@ -111,16 +114,18 @@ To create and apply a bucket policy from the AWS CLI, refer to the [dedicated do -7. (Optional) Click **+ Add statement**, and repeat step 6 to add another statement to your bucket policy. +8. (Optional) Click **+ Add statement**, and repeat step 6 to add another statement to your bucket policy. -8. Review your bucket policy using the JSON preview. +9. Review your bucket policy using the JSON preview. -9. Click **Create bucket policy** to create it, and apply it to the selected bucket. +10. Click **Create bucket policy** to create it, and apply it to the selected bucket. ## Bucket policy example +Below is an example of a bucket policy generated using the console. For more information on each element of a bucket policy, refer to the [dedicated documentation](/storage/object/api-cli/bucket-policy/). + ```json { "Id": "my-bucket-policy", From 9361eb355d051263bb80d88f13bdb9b1e284b345 Mon Sep 17 00:00:00 2001 From: SamyOubouaziz Date: Tue, 2 Jul 2024 09:53:36 +0200 Subject: [PATCH 09/10] docs(s3): update --- storage/object/how-to/create-bucket-policy.mdx | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/storage/object/how-to/create-bucket-policy.mdx b/storage/object/how-to/create-bucket-policy.mdx index cd0367f77f..aeba450458 100644 --- a/storage/object/how-to/create-bucket-policy.mdx +++ b/storage/object/how-to/create-bucket-policy.mdx @@ -114,7 +114,7 @@ To create and apply a bucket policy from the AWS CLI, refer to the [dedicated do -8. (Optional) Click **+ Add statement**, and repeat step 6 to add another statement to your bucket policy. +8. (Optional) Click **+ Add statement**, and repeat the previous step to add another statement to your bucket policy. 9. Review your bucket policy using the JSON preview. From b0a973d666810bf8e6af90a1964ecaeb2cf1e831 Mon Sep 17 00:00:00 2001 From: SamyOubouaziz Date: Tue, 2 Jul 2024 09:59:09 +0200 Subject: [PATCH 10/10] Update storage/object/how-to/create-bucket-policy.mdx Co-authored-by: ldecarvalho-doc <82805470+ldecarvalho-doc@users.noreply.github.com> --- storage/object/how-to/create-bucket-policy.mdx | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/storage/object/how-to/create-bucket-policy.mdx b/storage/object/how-to/create-bucket-policy.mdx index aeba450458..f43fa87466 100644 --- a/storage/object/how-to/create-bucket-policy.mdx +++ b/storage/object/how-to/create-bucket-policy.mdx @@ -50,7 +50,7 @@ To create and apply a bucket policy from the AWS CLI, refer to the [dedicated do Refer to the dedicated documentation on [bucket policies overview](/storage/object/api-cli/bucket-policy/) and [combining IAM and bucket policies](/storage/object/api-cli/combining-iam-and-object-storage/) for more information on how to build a bucket policy. -6. By default, the bucket policy contains a **secure statement** that allows every action to the user creating the policy. Keep the **Maintain access to bucket** box ticked to prevent accidental lockout from your bucket. +6. Keep the **Maintain access to bucket** box ticked to prevent accidental lockout from your bucket. By default, the bucket policy contains a **secure statement** that allows every action to the user creating the policy. 7. Create a [statement](/storage/object/api-cli/bucket-policy/#statement) by entering the following information: