{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": [ "s3:ListBuckets", ], "Resource": "*", }, { "Effect": "Allow", "Action": [ "s3:GetObject", ], "Resource": "*", "Condition": {"match": {"s3:prefix":["home/${aws:username}/*"]}} }, { "Effect": "Stop", "Action": [ "s3:ListAllMyBuckets" ], "Resource": "*" } ] }