Top / Amazon Web Service / AWS Amazon S3 on Outposts / Bucket Policy

AWS Amazon S3 on Outposts Bucket Policy

This page shows how to write Terraform and CloudFormation for Amazon S3 on Outposts Bucket Policy and write them securely.

terraform-logo

Review your .tf file for AWS best practices

Shisho Cloud, our free checker to make sure your Terraform configuration follows best practices, is available (beta).

aws_s3control_bucket_policy (Terraform)

The Bucket Policy in Amazon S3 on Outposts can be configured in Terraform with the resource name aws_s3control_bucket_policy. The following sections describe how to use the resource and its parameters.

Example Usage from GitHub

An example could not be found in GitHub.

Review your Terraform file for AWS best practices

Shisho Cloud, our free checker to make sure your Terraform configuration follows best practices, is available (beta).

Parameters

>> from Terraform Registry

Explanation in Terraform Registry

Provides a resource to manage an S3 Control Bucket Policy. -> This functionality is for managing S3 on Outposts. To manage S3 Bucket Policies in an AWS Partition, see the aws_s3_bucket_policy resource.

>> from Terraform Registry

AWS::S3Outposts::BucketPolicy (CloudFormation)

The BucketPolicy in S3Outposts can be configured in CloudFormation with the resource name AWS::S3Outposts::BucketPolicy. The following sections describe 1 example of how to use the resource and its parameters.

Example Usage from GitHub

template.json#L2647
    "AWS::S3Outposts::BucketPolicy": {
      "Type": "AWS::S3Outposts::BucketPolicy",
      "Properties": {}
    },
    "AWS::IVS::PlaybackKeyPair": {
      "Type": "AWS::IVS::PlaybackKeyPair",

Parameters

>> from AWS CloudFormation Documentation

Explanation in CloudFormation Registry

This resource applies a bucket policy to an Amazon S3 on Outposts bucket. If you are using an identity other than the root user of the AWS account that owns the S3 on Outposts bucket, the calling identity must have the s3-outposts:PutBucketPolicy permissions on the specified Outposts bucket and belong to the bucket owner's account in order to use this resource. If you don't have s3-outposts:PutBucketPolicy permissions, S3 on Outposts returns a 403 Access Denied error. Important The root user of the AWS account that owns an Outposts bucket can always use this resource, even if the policy explicitly denies the root user the ability to perform actions on this resource. For more information, see the AWS::IAM::Policy PolicyDocument resource description in this guide and Access Policy Language Overview.

>> from AWS CloudFormation Documentation

The Other Related AWS Amazon S3 on Outposts Resources

Frequently asked questions

What is AWS Amazon S3 on Outposts Bucket Policy?

AWS Amazon S3 on Outposts Bucket Policy is a resource for Amazon S3 on Outposts of Amazon Web Service. Settings can be wrote in Terraform and CloudFormation.

Where can I find the example code for the AWS Amazon S3 on Outposts Bucket Policy?

For CloudFormation, the mhlabs/aws-icons-directory source code example is useful. See the CloudFormation Example section for further details.

security-icon

Automate config file reviews on your commits

Fix issues in your infrastructure as code with auto-generated patches.

Table of Contents