Menu
AWS Identity and Access Management
User Guide

Actions and Condition Context Keys for Amazon S3

Amazon S3 (service prefix: s3) provides the following service-specific actions and condition context keys for use in IAM policies.

Actions for Amazon S3

For information about using the following Amazon S3 API actions in an IAM policy, see Specifying Permissions in a Policy in the Amazon Simple Storage Service Developer Guide.

Condition context keys for Amazon S3

For information about using the following Amazon S3 conditions in an IAM policy, see Specifying Conditions in a Policy in the Amazon Simple Storage Service Developer Guide.

Amazon S3 has the following service-specific context keys that can be used in an IAM policy. For the list of the global condition context keys that are available to all services, see Available Global Condition Keys in the IAM Policy Elements Reference.

  • s3:x-amz-acl

  • s3:x-amz-copy-source

  • s3:x-amz-metadata-directive

  • s3:x-amz-server-side-encryption

  • s3:VersionId

  • s3:LocationConstraint

  • s3:delimiter

  • s3:max-keys

  • s3:prefix

  • s3:x-amz-server-side-encryption-aws-kms-key-id