Purpose: Provision S3 Bucket in AWS.
Rationale: Apply standards and constraints to S3 Buckets.
No requirements.
| Name | Version |
|---|---|
| aws | n/a |
| template | n/a |
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| acl | Predefined ACL to apply | string |
"private" |
no |
| bucket | Name of the S3 bucket | any |
n/a | yes |
| encrypted | Enable server-side encryption | bool |
true |
no |
| encryption_key | The KMS master key used for server-side encryption | string |
"" |
no |
| expiration_days | Age of bucket objects (days) before they are deleted | number |
0 |
no |
| logging_bucket | Another S3 bucket used to capture audit logs | string |
"" |
no |
| mfa_delete | Enable MFA delete for versioned objects | bool |
true |
no |
| noncurrent_version_expiration | Age of non-current object versions (days) before they are deleted | number |
0 |
no |
| policy | Identifier for a predefined policy to apply | string |
"" |
no |
| public_read_whitelist | A CIDR IP range for restricted read access to public buckets | string |
"" |
no |
| suffix_enabled | Indicates whether to append the bucket name with a unique string to prevent conflicts | bool |
false |
no |
| versioned | Enable bucket versioning | bool |
true |
no |
| website_redirect | FQDN target for redirect of all website requests | string |
"" |
no |
| Name | Description |
|---|---|
| bucket_id | n/a |
| hosted_zone_id | n/a |
| website_domain | n/a |