s3:*AWS Amazon S3 IAM Actions
168 IAM actions for s3:*
Actions
168 actions available. Filter by access level or search by name.
Filter:
| Action | Access Level |
|---|---|
s3:AbortMultipartUpload | Write |
s3:AssociateAccessGrantsIdentityCenter | Permissions |
s3:BypassGovernanceRetention | Read |
s3:CreateAccessGrant | Permissions |
s3:CreateAccessGrantsInstance | Permissions |
s3:CreateAccessGrantsLocation | Permissions |
s3:CreateAccessPoint | Write |
s3:CreateAccessPointForObjectLambda | Write |
s3:CreateBucket | Write |
s3:CreateBucketMetadataTableConfiguration | Write |
s3:CreateJob | Write |
s3:CreateMultiRegionAccessPoint | Write |
s3:CreateStorageLensGroup | Write |
s3:DeleteAccessGrant | Permissions |
s3:DeleteAccessGrantsInstance | Permissions |
s3:DeleteAccessGrantsInstanceResourcePolicy | Permissions |
s3:DeleteAccessGrantsLocation | Permissions |
s3:DeleteAccessPoint | Write |
s3:DeleteAccessPointForObjectLambda | Write |
s3:DeleteAccessPointPolicy | Permissions |
s3:DeleteAccessPointPolicyForObjectLambda | Permissions |
s3:DeleteBucket | Write |
s3:DeleteBucketMetadataTableConfiguration | Write |
s3:DeleteBucketPolicy | Permissions |
s3:DeleteBucketWebsite | Write |
s3:DeleteJobTagging | Tagging |
s3:DeleteMultiRegionAccessPoint | Write |
s3:DeleteObject | Write |
s3:DeleteObjectTagging | Tagging |
s3:DeleteObjectVersion | Write |
s3:DeleteObjectVersionTagging | Tagging |
s3:DeleteStorageLensConfiguration | Write |
s3:DeleteStorageLensConfigurationTagging | Tagging |
s3:DeleteStorageLensGroup | Write |
s3:DescribeJob | Read |
s3:DescribeMultiRegionAccessPointOperation | Read |
s3:DissociateAccessGrantsIdentityCenter | Permissions |
s3:GetAccelerateConfiguration | Read |
s3:GetAccessGrant | Permissions |
s3:GetAccessGrantsInstance | Permissions |
s3:GetAccessGrantsInstanceForPrefix | Permissions |
s3:GetAccessGrantsInstanceResourcePolicy | Permissions |
s3:GetAccessGrantsLocation | Permissions |
s3:GetAccessPoint | Read |
s3:GetAccessPointConfigurationForObjectLambda | Read |
s3:GetAccessPointForObjectLambda | Read |
s3:GetAccessPointPolicy | Permissions |
s3:GetAccessPointPolicyForObjectLambda | Permissions |
s3:GetAccessPointPolicyStatus | Permissions |
s3:GetAccessPointPolicyStatusForObjectLambda | Permissions |
s3:GetAccountPublicAccessBlock | Read |
s3:GetAnalyticsConfiguration | Read |
s3:GetBucketAbac | Read |
s3:GetBucketAcl | Read |
s3:GetBucketCORS | Read |
s3:GetBucketLocation | Read |
s3:GetBucketLogging | Read |
s3:GetBucketMetadataTableConfiguration | Read |
s3:GetBucketNotification | Read |
s3:GetBucketObjectLockConfiguration | Read |
s3:GetBucketOwnershipControls | Read |
s3:GetBucketPolicy | Permissions |
s3:GetBucketPolicyStatus | Permissions |
s3:GetBucketPublicAccessBlock | Read |
s3:GetBucketRequestPayment | Read |
s3:GetBucketTagging | Tagging |
s3:GetBucketVersioning | Read |
s3:GetBucketWebsite | Read |
s3:GetDataAccess | Read |
s3:GetEncryptionConfiguration | Read |
s3:GetIntelligentTieringConfiguration | Read |
s3:GetInventoryConfiguration | Read |
s3:GetJobTagging | Tagging |
s3:GetLifecycleConfiguration | Read |
s3:GetMetricsConfiguration | Read |
s3:GetMultiRegionAccessPoint | Read |
s3:GetMultiRegionAccessPointPolicy | Permissions |
s3:GetMultiRegionAccessPointPolicyStatus | Permissions |
s3:GetMultiRegionAccessPointRoutes | Read |
s3:GetObject | Read |
s3:GetObjectAcl | Read |
s3:GetObjectAttributes | Read |
s3:GetObjectLegalHold | Read |
s3:GetObjectRetention | Read |
s3:GetObjectTagging | Tagging |
s3:GetObjectTorrent | Read |
s3:GetObjectVersion | Read |
s3:GetObjectVersionAcl | Read |
s3:GetObjectVersionAttributes | Read |
s3:GetObjectVersionForReplication | Read |
s3:GetObjectVersionTagging | Tagging |
s3:GetObjectVersionTorrent | Read |
s3:GetReplicationConfiguration | Read |
s3:GetStorageLensConfiguration | Read |
s3:GetStorageLensConfigurationTagging | Tagging |
s3:GetStorageLensDashboard | Read |
s3:GetStorageLensGroup | Read |
s3:InitiateReplication | Write |
s3:ListAccessGrants | Permissions |
s3:ListAccessGrantsInstances | Permissions |
s3:ListAccessGrantsLocations | Permissions |
s3:ListAccessPoints | List |
s3:ListAccessPointsForObjectLambda | List |
s3:ListAllMyBuckets | List |
s3:ListBucket | List |
s3:ListBucketMultipartUploads | List |
s3:ListBucketVersions | List |
s3:ListCallerAccessGrants | Permissions |
s3:ListJobs | List |
s3:ListMultipartUploadParts | List |
s3:ListMultiRegionAccessPoints | List |
s3:ListStorageLensConfigurations | List |
s3:ListStorageLensGroups | List |
s3:ListTagsForResource | Tagging |
s3:ObjectOwnerOverrideToBucketOwner | Read |
s3:PauseReplication | Read |
s3:PutAccelerateConfiguration | Write |
s3:PutAccessGrantsInstanceResourcePolicy | Permissions |
s3:PutAccessPointConfigurationForObjectLambda | Write |
s3:PutAccessPointPolicy | Permissions |
s3:PutAccessPointPolicyForObjectLambda | Permissions |
s3:PutAccessPointPublicAccessBlock | Write |
s3:PutAccountPublicAccessBlock | Write |
s3:PutAnalyticsConfiguration | Write |
s3:PutBucketAbac | Write |
s3:PutBucketAcl | Write |
s3:PutBucketCORS | Write |
s3:PutBucketLogging | Write |
s3:PutBucketNotification | Write |
s3:PutBucketObjectLockConfiguration | Write |
s3:PutBucketOwnershipControls | Write |
s3:PutBucketPolicy | Permissions |
s3:PutBucketPublicAccessBlock | Write |
s3:PutBucketRequestPayment | Write |
s3:PutBucketTagging | Tagging |
s3:PutBucketVersioning | Write |
s3:PutBucketWebsite | Write |
s3:PutEncryptionConfiguration | Write |
s3:PutIntelligentTieringConfiguration | Write |
s3:PutInventoryConfiguration | Write |
s3:PutJobTagging | Tagging |
s3:PutLifecycleConfiguration | Write |
s3:PutMetricsConfiguration | Write |
s3:PutMultiRegionAccessPointPolicy | Permissions |
s3:PutObject | Write |
s3:PutObjectAcl | Write |
s3:PutObjectLegalHold | Write |
s3:PutObjectRetention | Write |
s3:PutObjectTagging | Tagging |
s3:PutObjectVersionAcl | Write |
s3:PutObjectVersionTagging | Tagging |
s3:PutReplicationConfiguration | Write |
s3:PutStorageLensConfiguration | Write |
s3:PutStorageLensConfigurationTagging | Tagging |
s3:ReplicateDelete | Read |
s3:ReplicateObject | Read |
s3:ReplicateTags | Tagging |
s3:RestoreObject | Write |
s3:SubmitMultiRegionAccessPointRoutes | Read |
s3:TagResource | Tagging |
s3:UntagResource | Tagging |
s3:UpdateAccessGrantsLocation | Permissions |
s3:UpdateBucketMetadataInventoryTableConfiguration | Write |
s3:UpdateBucketMetadataJournalTableConfiguration | Write |
s3:UpdateJobPriority | Write |
s3:UpdateJobStatus | Write |
s3:UpdateObjectEncryption | Write |
s3:UpdateStorageLensGroup | Write |
Resource Types
ARN patterns for resources in this service.
| Resource | ARN Pattern |
|---|---|
${BucketName} | arn:aws:s3:::${BucketName}/${KeyName} |
Condition Keys
Condition keys you can use in IAM policy conditions for this service.
aws:RequestTag/${TagKey}aws:ResourceTag/${TagKey}aws:TagKeyss3:AccessGrantScopes3:AccessGrantsInstanceArns3:AccessGrantsLocationScopes3:AccessPointNetworkOrigins3:AccessPointTag/${TagKey}s3:BucketTag/${TagKey}s3:DataAccessPointAccounts3:DataAccessPointArns3:ExistingJobOperations3:ExistingJobPrioritys3:ExistingObjectTag/<key>s3:InventoryAccessibleOptionalFieldss3:JobSuspendedCauses3:ObjectCreationOperations3:RequestJobOperations3:RequestJobPrioritys3:RequestObjectTag/<key>s3:RequestObjectTagKeyss3:ResourceAccounts3:TlsVersions3:authTypes3:delimiters3:destinationRegions3:if-matchs3:if-none-matchs3:isReplicationPauseRequests3:locationconstraints3:max-keyss3:object-lock-legal-holds3:object-lock-modes3:object-lock-remaining-retention-dayss3:object-lock-retain-until-dates3:prefixs3:signatureAges3:signatureversions3:versionids3:x-amz-acls3:x-amz-content-sha256s3:x-amz-copy-sources3:x-amz-grant-full-controls3:x-amz-grant-reads3:x-amz-grant-read-acps3:x-amz-grant-writes3:x-amz-grant-write-acps3:x-amz-metadata-directives3:x-amz-object-ownerships3:x-amz-server-side-encryptions3:x-amz-server-side-encryption-aws-kms-key-ids3:x-amz-server-side-encryption-customer-algorithms3:x-amz-storage-classs3:x-amz-website-redirect-locationGet the Amazon S3 Cheat Sheet
Everything you need to know about Amazon S3 on one page. HD quality, print-friendly.
Download Free InfographicGet the Amazon S3 Cheat Sheet
Everything you need to know about Amazon S3 on one page. HD quality, print-friendly.
Download Free InfographicQuick Facts
Total Actions168
Prefix
s3Resource Types1
Condition Keys54
Access Level Breakdown
Read50
Write54
List11
Permissions35
Tagging18