remove redundant read access from s3 user policies

[minrk]

The bucket ACL already grants this permission via AuthenticatedUsers, no need to repeat it a bunch of redundant permissions

@annefou this will affect what you need to write for a new bucket, since less is required

[annefou]

Indeed. It is much simpler! Thank you.

[minrk]

In general, the Bucket ACLs and user policies are almost redundant. We shouldn't need both, but I need to do some testing to figure out if we can safely replace them. Ideally, Object Acls would be disabled (the AWS default and recommended behavior), but OVH doesn't seem to allow that.

[minrk]

I think I have a way to simplify this further and also test it, PR momentarily

[annefou]

Wow! That would be fantastic! Thank you!