From db317064033d753c9d8ea7b1b7747c50e6a46337 Mon Sep 17 00:00:00 2001
From: Peter Idah <peter.idah@gmail.com>
Date: Tue, 14 Apr 2015 08:56:04 +0100
Subject: [PATCH] added custom s3 policy section to README Fixes #54

---
 README.rst | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/README.rst b/README.rst
index 7c9fa3b..f243f34 100644
--- a/README.rst
+++ b/README.rst
@@ -109,3 +109,14 @@ By default the ELBs will have a security group opening them to the world on 80 a
 If you set the protocol on an ELB to HTTPS you must include a key called `certificate_name` in the ELB block (as example above) and matching cert data in a key with the same name as the cert under `ssl` (see example above). The `cert` and `key` are required and the `chain` is optional.
 
 The certificate will be uploaded before the stack is created and removed after it is deleted.
+
+Applying a custom s3 policy
+++++++++++++++++++++++++++++
+You can add a custom s3 policy to override bootstrap-cfn's default settings. For example, the sample custom policy defined in this `json file <https://github.com/ministryofjustice/bootstrap-cfn/blob/master/tests/sample-custom-s3-policy.json>`_ can be configured as follows:
+
+::
+
+   s3:
+     static-bucket-name: moj-test-dev-static
+     policy: tests/sample-custom-s3-policy.json
+