Remove ACL for log-deliver-write and use bucket policy for it

There's the following issue when trying to create the acl for log-delivery-write: This bucket has the bucket owner enforced setting applied for Object Ownership. When bucket owner enforced is applied, you must use bucket policies to control access. The bucker will not allow the creation of ACLs
StratusGrid · May 27, 2023 · f0703b1 · f0703b1
1 parent 0e37d47
commit f0703b1
Showing 1 changed file with 2 additions and 7 deletions.
diff --git a/main.tf b/main.tf
@@ -28,7 +28,7 @@ data "aws_iam_policy_document" "bucket_policy" {
       type = "Service"
     }
     resources = [
-      "${aws_s3_bucket.bucket.arn}/elb/*"
+      "${aws_s3_bucket.bucket.arn}/*"
     ]
     condition {
       test     = "StringEquals"
@@ -139,11 +139,6 @@ resource "aws_s3_bucket_versioning" "resource" {
   }
 }
 
-resource "aws_s3_bucket_acl" "bucket" {
-  bucket = aws_s3_bucket.bucket.id
-  acl    = "log-delivery-write"
-}
-
 resource "aws_s3_bucket_lifecycle_configuration" "bucket" {
   bucket = aws_s3_bucket.bucket.id
 
@@ -228,4 +223,4 @@ resource "aws_s3_bucket_public_access_block" "bucket" {
   ignore_public_acls      = true
   block_public_policy     = true
   restrict_public_buckets = true
-}
+}