# Specify permissions

There are a range of permissions that can be defined in a policy. The following is a list of permissions that apply to buckets that can be used.

<table><thead><tr><th width="231">Permissions</th><th>S3 REST API Operations</th></tr></thead><tbody><tr><td>s3:CreateBucket</td><td>PUT Bucket</td></tr><tr><td>s3:DeleteBucket</td><td>DELETE Bucket</td></tr><tr><td>s3:GetBucketLocation</td><td>GET Bucket location</td></tr><tr><td>s3:GetBucketPolicy</td><td>GET Bucket policy</td></tr><tr><td>s3:GetBucketTagging</td><td>GET Bucket tagging</td></tr><tr><td>s3:GetBucketVersioning</td><td>GET Bucket versioning</td></tr><tr><td>s3:ListAllMyBuckets</td><td>GET Service, GET Storage Usage</td></tr><tr><td>s3:ListBucket</td><td>GET Bucket (List Objects), HEAD Bucket, POST Object restore</td></tr><tr><td>s3:ListBucketVersions</td><td>GET Bucket versions</td></tr></tbody></table>