1{
2  "Version": "2008-10-17",
3  "Statement": [
4    {
5      "Sid": "EagleAclCheck20130909",
6      "Effect": "Allow",
7      "Principal": {
8        "Service": "cloudtrail.amazonaws.com"
9      },
10      "Action": "s3:GetBucketAcl",
11      "Resource": "arn:aws:s3:::@BUCKET_NAME@"
12    },
13    {
14      "Sid": "EagleWrite20130909",
15      "Effect": "Allow",
16      "Principal": {
17        "Service": "cloudtrail.amazonaws.com"
18      },
19      "Action": "s3:PutObject",
20      "Resource": "arn:aws:s3:::@BUCKET_NAME@/*",
21      "Condition": {
22        "StringEquals": {
23          "s3:x-amz-acl": "bucket-owner-full-control"
24        }
25      }
26    }
27  ]
28}
29