From 1fff48568f9789775b8e720bf9e20c7af942c77f Mon Sep 17 00:00:00 2001 From: Jacob Parker Date: Mon, 8 Jul 2019 16:59:04 +0100 Subject: [PATCH] Document the IAM permissions --- README.md | 19 ++++++++++++++++++- 1 file changed, 18 insertions(+), 1 deletion(-) diff --git a/README.md b/README.md index c40be18..23ca077 100644 --- a/README.md +++ b/README.md @@ -217,7 +217,24 @@ Once you've done that, your config section should look like this: Authentication is handled automatically by the client. Check [Amazon's documentation](https://docs.aws.amazon.com/sdk-for-javascript/v2/developer-guide/setting-credentials-node.html) -for more information. +for more information. You will need to grant your role these permissions to +your bucket: + +```json +{ + "Version": "2012-10-17", + "Statement": [ + { + "Action": [ + "s3:GetObject", + "s3:PutObject" + ], + "Effect": "Allow", + "Resource": "arn:aws:s3:::your-bucket-name-goes-here/*" + } + ] +} +``` ## Author