I’m not a pro of S3 and restic is new for me. I’m trying to setup minimal access to the S3 AWS to backu p with restic.
My first intention was to do :
s3ArchivesPolicy: Type: 'AWS::IAM::Policy' Properties: PolicyName: s3ArchivesWrite PolicyDocument: Version: "2012-10-17" Statement: - Effect: Allow Action: - 's3:ListBucket' Resource: 'arn:aws:s3:::restic-dev' - Effect: Allow Action: - 's3:PutObject' - 's3:GetObject' - 's3:DeleteObject' - 's3:PutObjectAcl' Resource: 'arn:aws:s3:::restic-dev/*' Roles: - !Ref ServicesRole
But restic can’t access to S3. I have added s3:* on the resource arn:aws:s3:::restic-dev as a workaround but I would like to setup minimal permissions and not all the list.
Could you tell me what Action I need to add ?