pulumi-digitalocean-kotlin/com.pulumi.digitalocean.kotlin/SpacesBucketPolicyArgs

SpacesBucketPolicyArgs

data class SpacesBucketPolicyArgs(val bucket: Output<String>? = null, val policy: Output<String>? = null, val region: Output<String>? = null) : ConvertibleToJava<SpacesBucketPolicyArgs>

Example Usage

Limiting access to specific IP addresses

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.digitalocean.SpacesBucket;
import com.pulumi.digitalocean.SpacesBucketArgs;
import com.pulumi.digitalocean.SpacesBucketPolicy;
import com.pulumi.digitalocean.SpacesBucketPolicyArgs;
import static com.pulumi.codegen.internal.Serialization.*;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var foobarSpacesBucket = new SpacesBucket("foobarSpacesBucket", SpacesBucketArgs.builder()
            .region("nyc3")
            .build());
        var foobarSpacesBucketPolicy = new SpacesBucketPolicy("foobarSpacesBucketPolicy", SpacesBucketPolicyArgs.builder()
            .region(foobarSpacesBucket.region())
            .bucket(foobarSpacesBucket.name())
            .policy(Output.tuple(foobarSpacesBucket.name(), foobarSpacesBucket.name()).applyValue(values -> {
                var foobarSpacesBucketName = values.t1;
                var foobarSpacesBucketName1 = values.t2;
                return serializeJson(
                    jsonObject(
                        jsonProperty("Version", "2012-10-17"),
                        jsonProperty("Statement", jsonArray(jsonObject(
                            jsonProperty("Sid", "IPAllow"),
                            jsonProperty("Effect", "Deny"),
                            jsonProperty("Principal", "*"),
                            jsonProperty("Action", "s3:*"),
                            jsonProperty("Resource", jsonArray(
                                String.format("arn:aws:s3:::%s", foobarSpacesBucketName),
                                String.format("arn:aws:s3:::%s/*", foobarSpacesBucketName1)
                            )),
                            jsonProperty("Condition", jsonObject(
                                jsonProperty("NotIpAddress", jsonObject(
                                    jsonProperty("aws:SourceIp", "54.240.143.0/24")
                                ))
                            ))
                        )))
                    ));
            }))
            .build());
    }
}
Content copied to clipboard

Import

Bucket policies can be imported using the region and bucket attributes (delimited by a comma)

$ pulumi import digitalocean:index/spacesBucketPolicy:SpacesBucketPolicy foobar `region`,`bucket`
Content copied to clipboard

Constructors

Link copied to clipboard
fun SpacesBucketPolicyArgs(bucket: Output<String>? = null, policy: Output<String>? = null, region: Output<String>? = null)

Functions

Link copied to clipboard
open override fun toJava(): SpacesBucketPolicyArgs

Properties

Link copied to clipboard
val bucket: Output<String>? = null

The name of the bucket to which to apply the policy.

Link copied to clipboard
val policy: Output<String>? = null

The text of the policy.

Link copied to clipboard
val region: Output<String>? = null

The region where the bucket resides. */