issue_comments: 615935577

This data as json

html_url	issue_url	id	node_id	user	created_at	updated_at	author_association	body	reactions	issue	performed_via_github_app
https://github.com/dogsheep/dogsheep-photos/issues/4#issuecomment-615935577	https://api.github.com/repos/dogsheep/dogsheep-photos/issues/4	615935577	MDEyOklzc3VlQ29tbWVudDYxNTkzNTU3Nw==	9599	2020-04-18T19:54:59Z	2020-04-18T19:55:30Z	MEMBER	Creating IAM groups called `dogsheep-photos-simon-read-write` and `dogsheep-photos-simon-read`: https://console.aws.amazon.com/iam/home#/groups - I created them with no attached policies. Now I can attach an "inline policy" to each one. For the read-write group I go here: https://console.aws.amazon.com/iam/home#/groups/dogsheep-photos-simon-read-write Example policies are here: https://docs.aws.amazon.com/AmazonS3/latest/dev/example-bucket-policies.html For the read-write one I went with: `json { "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": "s3:", "Resource": [ "arn:aws:s3:::dogsheep-photos-simon/" ] } ] }` For the read-only policy I'm going to guess that this is appropriate: `json { "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": [ "s3:GetObject", "s3:ListBucket" ], "Resource": [ "arn:aws:s3:::dogsheep-photos-simon/" ] } ] }` I tried the policy simulator to test this out: https://policysim.aws.amazon.com/home/index.jsp?#groups/dogsheep-photos-simon-read - this worked:	{ "total_count": 0, "+1": 0, "-1": 0, "laugh": 0, "hooray": 0, "confused": 0, "heart": 0, "rocket": 0, "eyes": 0 }	602533539