A user is trying to understand the ACL and policy for an S3 bucket. Which of the below mentioned policy
permissions is equivalent to the WRITE ACL on a bucket?
A.
s3:GetObjectAcl
B.
s3:GetObjectVersion
C.
s3:ListBucketVersions
D.
s3:DeleteObject
Explanation:
Amazon S3 provides a set of operations to work with the Amazon S3 resources. Each AWS S3 bucket can have
an ACL (Access Control List. or bucket policy associated with it. The WRITE ACL list allows the other AWS
accounts to write/modify to that bucket. The equivalent S3 bucket policy permission for it is s3:DeleteObject.
http://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html
D.
s3:DeleteObject
WRITE Allows grantee to create, overwrite, and delete any object in the bucket
http://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html
d
D
d
D