pulumi-aws-kotlin/com.pulumi.aws.s3.kotlin/AccountPublicAccessBlockArgs

AccountPublicAccessBlockArgs

data class AccountPublicAccessBlockArgs(val accountId: Output<String>? = null, val blockPublicAcls: Output<Boolean>? = null, val blockPublicPolicy: Output<Boolean>? = null, val ignorePublicAcls: Output<Boolean>? = null, val restrictPublicBuckets: Output<Boolean>? = null) : ConvertibleToJava<AccountPublicAccessBlockArgs>

Manages S3 account-level Public Access Block configuration. For more information about these settings, see the AWS S3 Block Public Access documentation.

NOTE: Each AWS account may only have one S3 Public Access Block configuration. Multiple configurations of the resource against the same AWS account will cause a perpetual difference. Advanced usage: To use a custom API endpoint for this resource, use the s3control endpoint provider configuration, not the s3 endpoint provider configuration.

Example Usage

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.s3.AccountPublicAccessBlock;
import com.pulumi.aws.s3.AccountPublicAccessBlockArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var example = new AccountPublicAccessBlock("example", AccountPublicAccessBlockArgs.builder()
            .blockPublicAcls(true)
            .blockPublicPolicy(true)
            .build());
    }
}
Content copied to clipboard

Import

aws_s3_account_public_access_block can be imported by using the AWS account ID, e.g.,

$ pulumi import aws:s3/accountPublicAccessBlock:AccountPublicAccessBlock example 123456789012
Content copied to clipboard

Constructors

Link copied to clipboard
constructor(accountId: Output<String>? = null, blockPublicAcls: Output<Boolean>? = null, blockPublicPolicy: Output<Boolean>? = null, ignorePublicAcls: Output<Boolean>? = null, restrictPublicBuckets: Output<Boolean>? = null)

Properties

Link copied to clipboard
val accountId: Output<String>? = null

AWS account ID to configure. Defaults to automatically determined account ID of the this provider AWS provider.

Link copied to clipboard
val blockPublicAcls: Output<Boolean>? = null

Whether Amazon S3 should block public ACLs for buckets in this account. Defaults to false. Enabling this setting does not affect existing policies or ACLs. When set to true causes the following behavior:

Link copied to clipboard
val blockPublicPolicy: Output<Boolean>? = null

Whether Amazon S3 should block public bucket policies for buckets in this account. Defaults to false. Enabling this setting does not affect existing bucket policies. When set to true causes Amazon S3 to:

Link copied to clipboard
val ignorePublicAcls: Output<Boolean>? = null

Whether Amazon S3 should ignore public ACLs for buckets in this account. Defaults to false. Enabling this setting does not affect the persistence of any existing ACLs and doesn't prevent new public ACLs from being set. When set to true causes Amazon S3 to:

Link copied to clipboard
val restrictPublicBuckets: Output<Boolean>? = null

Whether Amazon S3 should restrict public bucket policies for buckets in this account. Defaults to false. Enabling this setting does not affect previously stored bucket policies, except that public and cross-account access within any public bucket policy, including non-public delegation to specific accounts, is blocked. When set to true:

Functions

Link copied to clipboard
open override fun toJava(): AccountPublicAccessBlockArgs