{
  "identities": [
    {
      "name": "testuser",
      "credentials": [
        {
          "accessKey": "test-access-key",
          "secretKey": "test-secret-key"
        }
      ],
      "actions": [
        "Admin"
      ]
    },
    {
      "name": "readonlyuser",
      "credentials": [
        {
          "accessKey": "readonly-access-key",
          "secretKey": "readonly-secret-key"
        }
      ],
      "actions": [
        "Read"
      ]
    },
    {
      "name": "writeonlyuser",
      "credentials": [
        {
          "accessKey": "writeonly-access-key",
          "secretKey": "writeonly-secret-key"
        }
      ],
      "actions": [
        "Write"
      ]
    }
  ],
  "bucketPolicyExamples": {
    "PublicReadPolicy": {
      "Version": "2012-10-17",
      "Statement": [
        {
          "Sid": "PublicReadGetObject",
          "Effect": "Allow",
          "Principal": "*",
          "Action": "s3:GetObject",
          "Resource": "arn:aws:s3:::example-bucket/*"
        }
      ]
    },
    "DenyDeletePolicy": {
      "Version": "2012-10-17",
      "Statement": [
        {
          "Sid": "DenyDeleteOperations",
          "Effect": "Deny",
          "Principal": "*",
          "Action": [
            "s3:DeleteObject",
            "s3:DeleteBucket"
          ],
          "Resource": [
            "arn:aws:s3:::example-bucket",
            "arn:aws:s3:::example-bucket/*"
          ]
        }
      ]
    },
    "IPRestrictedAccessPolicy": {
      "Version": "2012-10-17",
      "Statement": [
        {
          "Sid": "IPRestrictedAccess",
          "Effect": "Allow",
          "Principal": "*",
          "Action": [
            "s3:GetObject",
            "s3:PutObject"
          ],
          "Resource": "arn:aws:s3:::example-bucket/*",
          "Condition": {
            "IpAddress": {
              "aws:SourceIp": [
                "203.0.113.0/24"
              ]
            }
          }
        }
      ]
    }
  }
}