def build_bucket_policy()

in cfn_policy_validator/validation/validator.py [0:0]

• 22 lines of code
• 1 McCabe index (conditional complexity)

	def build_bucket_policy(self, bucket_name):
		return {
			"Version": "2012-10-17",
			"Statement": [
				{
					"Effect": "Allow",
					"Principal": {
						"AWS": "*"
					},
					"Action": "*",
					"Resource": [
						f"arn:aws:s3:::{bucket_name}",
						f"arn:aws:s3:::{bucket_name}/*"
					],
					"Condition": {
						"StringEquals": {
							"s3:DataAccessPointAccount": self.account_id
						}
					}
				}
			]
		}