awscc.s3objectlambda_accesspoint¶
Filters¶
event
reduce
value
Actions¶
delete¶
Parent base class for filters and actions.
properties:
type:
enum:
- delete
required:
- type
Permissions - s3:DeleteAccessPointForObjectLambda
update¶
Parent base class for filters and actions.
definitions:
Action:
type: string
AwsLambda:
additionalProperties: false
properties:
FunctionArn:
maxLength: 2048
minLength: 1
type: string
FunctionPayload:
type: string
required:
- FunctionArn
type: object
ObjectLambdaConfiguration:
additionalProperties: false
description: Configuration to be applied to this Object lambda Access Point. It
specifies Supporting Access Point, Transformation Configurations. Customers
can also set if they like to enable Cloudwatch metrics for accesses to this
Object lambda Access Point. Default setting for Cloudwatch metrics is disable.
properties:
AllowedFeatures:
insertionOrder: false
items:
type: string
type: array
uniqueItems: true
CloudWatchMetricsEnabled:
type: boolean
SupportingAccessPoint:
maxLength: 2048
minLength: 1
type: string
TransformationConfigurations:
insertionOrder: false
items:
additionalProperties: false
description: Configuration to define what content transformation will be
applied on which S3 Action.
properties:
Actions:
insertionOrder: false
items:
type: string
type: array
uniqueItems: true
ContentTransformation:
oneOf:
- additionalProperties: false
properties:
AwsLambda:
$ref: '#/definitions/AwsLambda'
required:
- AwsLambda
type: object
required:
- Actions
- ContentTransformation
type: object
type: array
uniqueItems: true
required:
- SupportingAccessPoint
- TransformationConfigurations
type: object
PublicAccessBlockConfiguration:
additionalProperties: false
description: The Public Access Block Configuration is used to block policies that
would allow public access to this Object lambda Access Point. All public access
to Object lambda Access Points are blocked by default, and any policy that would
give public access to them will be also blocked. This behavior cannot be changed
for Object lambda Access Points.
properties:
BlockPublicAcls:
description: "Specifies whether Amazon S3 should block public access control\
\ lists (ACLs) to this object lambda access point. Setting this element\
\ to TRUE causes the following behavior:\n- PUT Bucket acl and PUT Object\
\ acl calls fail if the specified ACL is public.\n - PUT Object calls fail\
\ if the request includes a public ACL.\n. - PUT Bucket calls fail if the\
\ request includes a public ACL.\nEnabling this setting doesn't affect existing\
\ policies or ACLs."
type: boolean
BlockPublicPolicy:
description: Specifies whether Amazon S3 should block public bucket policies
for buckets in this account. Setting this element to TRUE causes Amazon
S3 to reject calls to PUT Bucket policy if the specified bucket policy allows
public access. Enabling this setting doesn't affect existing bucket policies.
type: boolean
IgnorePublicAcls:
description: Specifies whether Amazon S3 should ignore public ACLs for buckets
in this account. Setting this element to TRUE causes Amazon S3 to ignore
all public ACLs on buckets in this account and any objects that they contain.
Enabling this setting doesn't affect the persistence of any existing ACLs
and doesn't prevent new public ACLs from being set.
type: boolean
RestrictPublicBuckets:
description: 'Specifies whether Amazon S3 should restrict public bucket policies
for this bucket. Setting this element to TRUE restricts access to this bucket
to only AWS services and authorized users within this account if the bucket
has a public policy.
Enabling this setting doesn''t affect previously stored bucket policies,
except that public and cross-account access within any public bucket policy,
including non-public delegation to specific accounts, is blocked.'
type: boolean
type: object
TransformationConfiguration:
additionalProperties: false
description: Configuration to define what content transformation will be applied
on which S3 Action.
properties:
Actions:
insertionOrder: false
items:
type: string
type: array
uniqueItems: true
ContentTransformation:
oneOf:
- additionalProperties: false
properties:
AwsLambda:
$ref: '#/definitions/AwsLambda'
required:
- AwsLambda
type: object
required:
- Actions
- ContentTransformation
type: object
properties:
ObjectLambdaConfiguration:
additionalProperties: false
description: Configuration to be applied to this Object lambda Access Point. It
specifies Supporting Access Point, Transformation Configurations. Customers
can also set if they like to enable Cloudwatch metrics for accesses to this
Object lambda Access Point. Default setting for Cloudwatch metrics is disable.
properties:
AllowedFeatures:
insertionOrder: false
items:
type: string
type: array
uniqueItems: true
CloudWatchMetricsEnabled:
type: boolean
SupportingAccessPoint:
maxLength: 2048
minLength: 1
type: string
TransformationConfigurations:
insertionOrder: false
items:
additionalProperties: false
description: Configuration to define what content transformation will be
applied on which S3 Action.
properties:
Actions:
insertionOrder: false
items:
type: string
type: array
uniqueItems: true
ContentTransformation:
oneOf:
- additionalProperties: false
properties:
AwsLambda:
$ref: '#/definitions/AwsLambda'
required:
- AwsLambda
type: object
required:
- Actions
- ContentTransformation
type: object
type: array
uniqueItems: true
required:
- SupportingAccessPoint
- TransformationConfigurations
type: object
type:
enum:
- update
Permissions - s3:PutAccessPointConfigurationForObjectLambda