enum BucketAccessControl
| Language | Type name |
|---|---|
 Python | aws_cdk.aws_s3.BucketAccessControl |
 Java | software.amazon.awscdk.services.s3.BucketAccessControl |
 .NET | Amazon.CDK.AWS.S3.BucketAccessControl |
 TypeScript (source) | @aws-cdk/aws-s3.BucketAccessControl |
Default bucket access control types.
Members
| Name | Description |
|---|---|
| PRIVATE | Owner gets FULL_CONTROL. |
| PUBLIC_READ | Owner gets FULL_CONTROL. |
| PUBLIC_READ_WRITE | Owner gets FULL_CONTROL. |
| AUTHENTICATED_READ | Owner gets FULL_CONTROL. |
| LOG_DELIVERY_WRITE | The LogDelivery group gets WRITE and READ_ACP permissions on the bucket. |
| BUCKET_OWNER_READ | Object owner gets FULL_CONTROL. |
| BUCKET_OWNER_FULL_CONTROL | Both the object owner and the bucket owner get FULL_CONTROL over the object. If you specify this canned ACL when creating a bucket, Amazon S3 ignores it. |
| AWS_EXEC_READ | Owner gets FULL_CONTROL. |
PRIVATE
Owner gets FULL_CONTROL.
No one else has access rights.
PUBLIC_READ
Owner gets FULL_CONTROL.
The AllUsers group gets READ access.
PUBLIC_READ_WRITE
Owner gets FULL_CONTROL.
The AllUsers group gets READ and WRITE access. Granting this on a bucket is generally not recommended.
AUTHENTICATED_READ
Owner gets FULL_CONTROL.
The AuthenticatedUsers group gets READ access.
LOG_DELIVERY_WRITE
The LogDelivery group gets WRITE and READ_ACP permissions on the bucket.
BUCKET_OWNER_READ
Object owner gets FULL_CONTROL.
Bucket owner gets READ access. If you specify this canned ACL when creating a bucket, Amazon S3 ignores it.
BUCKET_OWNER_FULL_CONTROL
Both the object owner and the bucket owner get FULL_CONTROL over the object. If you specify this canned ACL when creating a bucket, Amazon S3 ignores it.
AWS_EXEC_READ
Owner gets FULL_CONTROL.
Amazon EC2 gets READ access to GET an Amazon Machine Image (AMI) bundle from Amazon S3.