[AWS] S3 bucket policy to allow ELB logs

S3 bucket policy to limit access by a source IP address:

{
"Version": "2012-10-17"
"Id": "S3Policy-ID",
"Statement": [
{
"Sid": "Stmt1513164693849",
"Effect": "Allow",
"Principal": "AWS": "arn:aws:iam::BUCKET_ACCOUNT:root",
"Action": "s3:PutObject",
"Resource": "arn:aws:s3:::bucket_name/*/AWSLogs/IAM_ACCOUNT/*"
}
]
}