Amazon S3 policy allowing only upload not overwrite [duplicate]
问题 This question already has answers here : Amazon S3 ACL for read-only and write-once access (4 answers) Closed 3 years ago . I'm developing a mobile application which will let anyone upload a file to an S3 bucket. I think I'll use the Anonymous Token Vending Machine that is provided by Amazon. However, I can't see how to write a TokenVendingMachinePolicy.json file that will only allow uploading new files, not overwriting (effectively deleting). I thought allowing just s3:PutObject would be