Correct answer - "Create a bucket policy" : Bucket policy is an access policy option available
for you to grant permission to your Amazon S3 resources. It uses JSON-based access policy
language.
Incorrect:
"Create an IAM role" - This will not help because IAM roles are attached to services and in this
case we have public users
"Enable CORS" - CORS defines a way for client web applications that are loaded in one domain to
interact with resources in a different domain. Here we are not dealing with cross domains.
"Enable Encryption" - For the most part encryption does not have an effect on access
denied/forbidden errors