diff --git a/main.tf b/main.tf
index bca66e1..4381c3d 100644
--- a/main.tf
+++ b/main.tf
@@ -105,6 +105,7 @@ data "aws_iam_policy_document" "this" {
     principals {
       type        =  "AWS"
       identifiers =  ["*"]
+    }
     resources   = [aws_s3_bucket.this.arn, "${aws_s3_bucket.this.arn}/*"]
     condition {
          test     = "Bool"
@@ -112,7 +113,7 @@ data "aws_iam_policy_document" "this" {
          values   = ["false"]
     }
   }
-}
+
 
 #---
 # apply policy to bucket and public access block policy to bucket