{"id":"s3-three-permission-mechanisms","text":"S3 has three independent permission mechanisms: identity-based IAM policies, bucket policies (resource-based), and ACLs — each evaluated separately.","truth_value":"IN","source":"entries/2026/03/11/IAM-latest-UserGuide-access_policies_identity-vs-resourcehtml.md","source_url":"","source_hash":"b7562a1b27be5a4c","justifications":[],"dependents":[],"metadata":{},"explanation":{"steps":[{"node":"s3-three-permission-mechanisms","truth_value":"IN","reason":"premise"}]}}