class Aws::AccessAnalyzer::Types::S3BucketConfiguration

Proposed access control configuration for an Amazon S3 bucket. You can propose a configuration for a new Amazon S3 bucket or an existing Amazon S3 bucket that you own by specifying the Amazon S3 bucket policy, bucket ACLs, bucket BPA settings, Amazon S3 access points, and multi-region access points attached to the bucket. If the configuration is for an existing Amazon S3 bucket and you do not specify the Amazon S3 bucket policy, the access preview uses the existing policy attached to the bucket. If the access preview is for a new resource and you do not specify the Amazon S3 bucket policy, the access preview assumes a bucket without a policy. To propose deletion of an existing bucket policy, you can specify an empty string. For more information about bucket policy limits, see [Bucket Policy Examples].

[1]: docs.aws.amazon.com/AmazonS3/latest/dev/example-bucket-policies.html

@note When making an API call, you may pass S3BucketConfiguration

data as a hash:

    {
      access_points: {
        "AccessPointArn" => {
          access_point_policy: "AccessPointPolicy",
          network_origin: {
            internet_configuration: {
            },
            vpc_configuration: {
              vpc_id: "VpcId", # required
            },
          },
          public_access_block: {
            ignore_public_acls: false, # required
            restrict_public_buckets: false, # required
          },
        },
      },
      bucket_acl_grants: [
        {
          grantee: { # required
            id: "AclCanonicalId",
            uri: "AclUri",
          },
          permission: "READ", # required, accepts READ, WRITE, READ_ACP, WRITE_ACP, FULL_CONTROL
        },
      ],
      bucket_policy: "S3BucketPolicy",
      bucket_public_access_block: {
        ignore_public_acls: false, # required
        restrict_public_buckets: false, # required
      },
    }

@!attribute [rw] access_points

The configuration of Amazon S3 access points or multi-region access
points for the bucket. You can propose up to 10 new access points
per bucket.
@return [Hash<String,Types::S3AccessPointConfiguration>]

@!attribute [rw] bucket_acl_grants

The proposed list of ACL grants for the Amazon S3 bucket. You can
propose up to 100 ACL grants per bucket. If the proposed grant
configuration is for an existing bucket, the access preview uses the
proposed list of grant configurations in place of the existing
grants. Otherwise, the access preview uses the existing grants for
the bucket.
@return [Array<Types::S3BucketAclGrantConfiguration>]

@!attribute [rw] bucket_policy

The proposed bucket policy for the Amazon S3 bucket.
@return [String]

@!attribute [rw] bucket_public_access_block

The proposed block public access configuration for the Amazon S3
bucket.
@return [Types::S3PublicAccessBlockConfiguration]

@see docs.aws.amazon.com/goto/WebAPI/accessanalyzer-2019-11-01/S3BucketConfiguration AWS API Documentation

Constants

SENSITIVE