You are creating a policy to allow users to have the ability to access objects in a bucket called appbucket.
You define the below custom bucket policy as follows:
{ "ID": "Policy1502987489630",
"Version": "2012-10-17",
"Statement": [
{
"Sid": "Stmt1502987487640",
"Action": [
"s3:GetObject",
"s3:GetObjectVersion"
],
"Effect": "Allow",
"Resource": "arn:aws:s3:::appbucket",
"Principal": "*"
}
]
}
But when you try to apply the policy, you get the error
"Action does not apply to any resource(s) in statement.”
What should be done to rectify the error?
 

Answer options:

A.Change the IAM permissions by applying PutBucketPolicy permissions.
B.Verify that the policy has the same name as the bucket name. If not, make it the same.
C.Change the Resource section to "arn:aws:s3:::appbucket/*".
D.Create the bucket "appbucket" and then apply the policy.

Answer – C
When you define access to objects in a bucket, you need to ensure that you specify which objects in the bucket access need to be given. In this case, the * can be used to assign the permission to all objects in the bucket.
Option A is invalid because the right permissions are already provided as per the question requirement.
Option B is invalid because it is not necessary that the policy has the same name as the bucket.
Option D is invalid because this should be the default flow for applying the policy.
For more information on bucket policies please visit the below URL:
https://docs.aws.amazon.com/AmazonS3/latest/dev/example-bucket-policies.html