Identify the policy that grants access
At NimbusCart, a Lambda function carries the IAM policy shown in the evaluator: an Allow statement whose Action is s3:* and whose Resource is arn:aws:s3:::reports-bucket/*. Inspect the policy's Effect, Action, and Resource fields, then build a request by picking an action and resource so you can see exactly which calls that Allow statement grants.
Question: Reading only the Allow statement (Effect: Allow, Action: s3:*, Resource: arn:aws:s3:::reports-bucket/*), which request does it permit?
This exercise is part of the course
Deploying Applications on AWS
Hands-on interactive exercise
Turn theory into action with one of our interactive exercises
Start Exercise