Required S3 Permissions for iOS App

Hi everyone,

I’m currently setting up Cryptomator on iOS to work with my AWS S3 storage. I want to make sure I’m following best practices when it comes to security, specifically adhering to the principle of least privilege.

Could anyone provide a detailed list of the exact S3 permissions needed for the Cryptomator iOS app to function properly? I understand that granting s3:FullAccess would cover everything, but I’m looking for a more secure, restricted set of permissions to avoid over-provisioning.

Any guidance or examples of IAM policies that strike the right balance would be greatly appreciated!

Thanks in advance for your help!