Class: Aws::AccessAnalyzer::Types::S3BucketConfiguration

Inherits:
Struct
  • Object
show all
Defined in:
gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb

Overview

Note:

When making an API call, you may pass S3BucketConfiguration data as a hash:

{
  access_points: {
    "AccessPointArn" => {
      access_point_policy: "AccessPointPolicy",
      network_origin: {
        internet_configuration: {
        },
        vpc_configuration: {
          vpc_id: "VpcId", # required
        },
      },
      public_access_block: {
        ignore_public_acls: false, # required
        restrict_public_buckets: false, # required
      },
    },
  },
  bucket_acl_grants: [
    {
      grantee: { # required
        id: "AclCanonicalId",
        uri: "AclUri",
      },
      permission: "READ", # required, accepts READ, WRITE, READ_ACP, WRITE_ACP, FULL_CONTROL
    },
  ],
  bucket_policy: "S3BucketPolicy",
  bucket_public_access_block: {
    ignore_public_acls: false, # required
    restrict_public_buckets: false, # required
  },
}

Proposed access control configuration for an Amazon S3 bucket. You can propose a configuration for a new Amazon S3 bucket or an existing Amazon S3 bucket that you own by specifying the Amazon S3 bucket policy, bucket ACLs, bucket BPA settings, Amazon S3 access points, and multi-region access points attached to the bucket. If the configuration is for an existing Amazon S3 bucket and you do not specify the Amazon S3 bucket policy, the access preview uses the existing policy attached to the bucket. If the access preview is for a new resource and you do not specify the Amazon S3 bucket policy, the access preview assumes a bucket without a policy. To propose deletion of an existing bucket policy, you can specify an empty string. For more information about bucket policy limits, see Bucket Policy Examples.

Constant Summary collapse

SENSITIVE =
[]

Instance Attribute Summary collapse

Instance Attribute Details

#access_pointsHash<String,Types::S3AccessPointConfiguration>

The configuration of Amazon S3 access points or multi-region access points for the bucket. You can propose up to 10 new access points per bucket.

Returns:



2808
2809
2810
2811
2812
2813
2814
2815
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 2808

class S3BucketConfiguration < Struct.new(
  :access_points,
  :bucket_acl_grants,
  :bucket_policy,
  :bucket_public_access_block)
  SENSITIVE = []
  include Aws::Structure
end

#bucket_acl_grantsArray<Types::S3BucketAclGrantConfiguration>

The proposed list of ACL grants for the Amazon S3 bucket. You can propose up to 100 ACL grants per bucket. If the proposed grant configuration is for an existing bucket, the access preview uses the proposed list of grant configurations in place of the existing grants. Otherwise, the access preview uses the existing grants for the bucket.



2808
2809
2810
2811
2812
2813
2814
2815
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 2808

class S3BucketConfiguration < Struct.new(
  :access_points,
  :bucket_acl_grants,
  :bucket_policy,
  :bucket_public_access_block)
  SENSITIVE = []
  include Aws::Structure
end

#bucket_policyString

The proposed bucket policy for the Amazon S3 bucket.

Returns:

  • (String)


2808
2809
2810
2811
2812
2813
2814
2815
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 2808

class S3BucketConfiguration < Struct.new(
  :access_points,
  :bucket_acl_grants,
  :bucket_policy,
  :bucket_public_access_block)
  SENSITIVE = []
  include Aws::Structure
end

#bucket_public_access_blockTypes::S3PublicAccessBlockConfiguration

The proposed block public access configuration for the Amazon S3 bucket.



2808
2809
2810
2811
2812
2813
2814
2815
# File 'gems/aws-sdk-accessanalyzer/lib/aws-sdk-accessanalyzer/types.rb', line 2808

class S3BucketConfiguration < Struct.new(
  :access_points,
  :bucket_acl_grants,
  :bucket_policy,
  :bucket_public_access_block)
  SENSITIVE = []
  include Aws::Structure
end