Terraform-provider-aws: S3 Block Public Access

Created on 16 Nov 2018  ยท  9Comments  ยท  Source: hashicorp/terraform-provider-aws

Community Note

  • Please vote on this issue by adding a ๐Ÿ‘ reaction to the original issue to help the community and maintainers prioritize this request
  • Please do not leave "+1" or "me too" comments, they generate extra noise for issue followers and do not help prioritize the request
  • If you are interested in working on this issue or have submitted a pull request, please leave a comment

Description

Released yesterday is the functionality to block public access on S3 objects on the account level and the bucket level. We should implement this within the existing bucket resource as well as implement a new resource for the account-level settings.

https://aws.amazon.com/blogs/aws/amazon-s3-block-public-access-another-layer-of-protection-for-your-accounts-and-buckets/

I'm happy to take a stab at this over the weekend.

New or Affected Resource(s)

  • aws_s3_bucket
  • aws_s3_block_public_access (proposed new)
enhancement servics3control
Source
picture oarmstrong
👍100

Most helpful comment

The aws_s3_bucket_public_access_block resource has now been merged as well, thanks to @acburdine!

We were anticipating cutting 1.54.0 in early January after our end of year break, but this one might be good to get out today beforehand due to popularity... more soon. ๐Ÿ˜„

picture bflad on 21 Dec 2018
👍9

All 9 comments

Requires:

ewbankkit picture ewbankkit on 16 Nov 2018

I'm going to work on this this evening. Hopefully I'll have something worthy of initial implementation comments soon.

oarmstrong picture oarmstrong on 19 Nov 2018

@oarmstrong have you had a chance to look at this yet? Would totally be willing to pick it up if not ๐Ÿ˜„

acburdine picture acburdine on 21 Nov 2018

@acburdine unfortunately I've been busy so this slipped off my list. I'm still happy to do it but no idea when I'll really be able to get around to it (weekend maybe). If you want to pick it up instead please feel free! :)

oarmstrong picture oarmstrong on 26 Nov 2018

@oarmstrong ok! I'll look into it today.

acburdine picture acburdine on 26 Nov 2018
🎉3 👍1

Hey guys, looks like the account level public access block has been added per MR above. But is the support for bucket level public access block included?

cwyl02 picture cwyl02 on 20 Dec 2018
👍2

The aws_s3_account_public_access_block resource has been released in version 1.53.0 of the AWS provider. Please see the Terraform documentation on provider versioning or reach out if you need any assistance upgrading.

The bucket level support still needs to be reviewed and potentially adjusted in #6607.

bflad picture bflad on 20 Dec 2018

The aws_s3_bucket_public_access_block resource has now been merged as well, thanks to @acburdine!

We were anticipating cutting 1.54.0 in early January after our end of year break, but this one might be good to get out today beforehand due to popularity... more soon. ๐Ÿ˜„

bflad picture bflad on 21 Dec 2018
👍9

I'm going to lock this issue because it has been closed for _30 days_ โณ. This helps our maintainers find and focus on the active issues.

If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. Thanks!

hashibot[bot] picture hashibot[bot] on 1 Apr 2020
Was this page helpful?
0 / 5 - 0 ratings

Related issues

hashibot picture hashibot  ยท  3Comments
hazmeister picture hazmeister  ยท  3Comments
andywirv picture andywirv  ยท  3Comments
gothrek22 picture gothrek22  ยท  3Comments
carmas picture carmas  ยท  3Comments