commit e35379f4d06c0080dbad47d14caf678b75542e62
Author: arian <arian@2ari.ca>
Date:   Fri Feb 27 02:20:06 2026 +0000

    read-only policy without listing all objects in bucket

diff --git a/readonly-policy.json b/readonly-policy.json
new file mode 100644
index 0000000..776c57f
--- /dev/null
+++ b/readonly-policy.json
@@ -0,0 +1,14 @@
+{
+    "Version": "2012-10-17",
+    "Statement": [
+        {
+            "Effect": "Allow",
+            "Principal": {
+                "AWS": ["*"]
+            },
+            "Action": ["s3:GetObject"],
+            "Resource": ["arn:aws:s3:::movies/*"]
+
+        }
+    ]
+}