-
Notifications
You must be signed in to change notification settings - Fork 4k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
* release-1.18.16: Bumping version to 1.18.16 Update changelog based on model updates New CLI examples for s3control
- Loading branch information
Showing
14 changed files
with
227 additions
and
4 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,27 @@ | ||
[ | ||
{ | ||
"category": "``appmesh``", | ||
"description": "Update appmesh command to latest version", | ||
"type": "api-change" | ||
}, | ||
{ | ||
"category": "``signer``", | ||
"description": "Update signer command to latest version", | ||
"type": "api-change" | ||
}, | ||
{ | ||
"category": "``robomaker``", | ||
"description": "Update robomaker command to latest version", | ||
"type": "api-change" | ||
}, | ||
{ | ||
"category": "``ec2``", | ||
"description": "Update ec2 command to latest version", | ||
"type": "api-change" | ||
}, | ||
{ | ||
"category": "``guardduty``", | ||
"description": "Update guardduty command to latest version", | ||
"type": "api-change" | ||
} | ||
] |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,12 @@ | ||
**To create an access point** | ||
|
||
The following ``create-access-point`` example creates an access point named ``finance-ap`` for the bucket ``business-records`` in account 123456789012. Before running this example, replace the access point name, bucket name, and account number with appropriate values for your use case. :: | ||
|
||
aws s3control create-access-point \ | ||
--account-id 123456789012 \ | ||
--bucket business-records \ | ||
--name finance-ap | ||
|
||
This command produces no output. | ||
|
||
For more information, see `Creating Access Points <https://docs.aws.amazon.com/AmazonS3/latest/dev/creating-access-points.html>`__ in the *Amazon Simple Storage Service Developer Guide*. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,11 @@ | ||
**To delete an access point policy** | ||
|
||
The following ``delete-access-point-policy`` example deletes the access point policy from the access point named ``finance-ap`` in account 123456789012. Before running this example, replace the access point name and account number with appropriate values for your use case. :: | ||
|
||
aws s3control delete-access-point-policy \ | ||
--account-id 123456789012 \ | ||
--name finance-ap | ||
|
||
This command produces no output. | ||
|
||
For more information, see `Managing Data Access with Amazon S3 Access Points <https://docs.aws.amazon.com/AmazonS3/latest/dev/access-points.html>`__ in the *Amazon Simple Storage Service Developer Guide*. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,11 @@ | ||
**To delete an access point** | ||
|
||
The following ``delete-access-point`` example deletes an access point named ``finance-ap`` in account 123456789012. Before running this example, replace the access point name and account number with appropriate values for your use case. :: | ||
|
||
aws s3control delete-access-point \ | ||
--account-id 123456789012 \ | ||
--name finance-ap | ||
|
||
This command produces no output. | ||
|
||
For more information, see `Managing Data Access with Amazon S3 Access Points <https://docs.aws.amazon.com/AmazonS3/latest/dev/access-points.html>`__ in the *Amazon Simple Storage Service Developer Guide*. |
17 changes: 17 additions & 0 deletions
17
awscli/examples/s3control/get-access-point-policy-status.rst
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,17 @@ | ||
**To retrieve the access point policy status** | ||
|
||
The following ``get-access-point-policy-status`` example retrieves the access point policy status for the access point named ``finance-ap`` in account 123456789012. The access point policy status indicates whether the access point's policy allows public access. Before running this example, replace the access point name and account number with appropriate values for your use case. :: | ||
|
||
aws s3control get-access-point-policy-status \ | ||
--account-id 123456789012 \ | ||
--name finance-ap | ||
|
||
Output:: | ||
|
||
{ | ||
"PolicyStatus": { | ||
"IsPublic": false | ||
} | ||
} | ||
|
||
For more information about when an access point policy is considered public, see `The Meaning of "Public" <https://docs.aws.amazon.com/AmazonS3/latest/dev/access-control-block-public-access.html#access-control-block-public-access-policy-status>`__ in the *Amazon Simple Storage Service Developer Guide*. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,15 @@ | ||
**To retrieve an access point policy** | ||
|
||
The following ``get-access-point-policy`` example retrieves the access point policy from the access point named ``finance-ap`` in account 123456789012. Before running this example, replace the access point name and account number with appropriate values for your use case. :: | ||
|
||
aws s3control get-access-point-policy \ | ||
--account-id 123456789012 \ | ||
--name finance-ap | ||
|
||
Output:: | ||
|
||
{ | ||
"Policy": "{\"Version\":\"2012-10-17\",\"Statement\":[{\"Effect\":\"Allow\",\"Principal\":{\"AWS\":\"arn:aws:iam::123456789012:role/Admin\"},\"Action\":\"s3:GetObject\",\"Resource\":\"arn:aws:s3:us-west-2:123456789012:accesspoint/finance-ap/object/records/*\"}]}" | ||
} | ||
|
||
For more information, see `Managing Data Access with Amazon S3 Access Points <https://docs.aws.amazon.com/AmazonS3/latest/dev/access-points.html>`__ in the *Amazon Simple Storage Service Developer Guide*. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,24 @@ | ||
**To retrieve access point configuration details** | ||
|
||
The following ``get-access-point`` example retrieves the configuration details for the access point named ``finance-ap`` in account 123456789012. Before running this example, replace the access point name and account number with appropriate values for your use case. :: | ||
|
||
aws s3control get-access-point \ | ||
--account-id 123456789012 \ | ||
--name finance-ap | ||
|
||
Output:: | ||
|
||
{ | ||
"Name": "finance-ap", | ||
"Bucket": "business-records", | ||
"NetworkOrigin": "Internet", | ||
"PublicAccessBlockConfiguration": { | ||
"BlockPublicAcls": false, | ||
"IgnorePublicAcls": false, | ||
"BlockPublicPolicy": false, | ||
"RestrictPublicBuckets": false | ||
}, | ||
"CreationDate": "2020-01-01T00:00:00Z" | ||
} | ||
|
||
For more information, see `Managing Data Access with Amazon S3 Access Points <https://docs.aws.amazon.com/AmazonS3/latest/dev/access-points.html>`__ in the *Amazon Simple Storage Service Developer Guide*. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,68 @@ | ||
**Example 1: To retrieve a list of all access points for an account** | ||
|
||
The following ``list-access-points`` example displays a list of all access points attached to buckets owned by account 123456789012. :: | ||
|
||
aws s3control list-access-points \ | ||
--account-id 123456789012 | ||
|
||
Output:: | ||
|
||
{ | ||
"AccessPointList": [ | ||
{ | ||
"Name": "finance-ap", | ||
"NetworkOrigin": "Internet", | ||
"Bucket": "business-records" | ||
}, | ||
{ | ||
"Name": "managers-ap", | ||
"NetworkOrigin": "Internet", | ||
"Bucket": "business-records" | ||
}, | ||
{ | ||
"Name": "private-network-ap", | ||
"NetworkOrigin": "VPC", | ||
"VpcConfiguration": { | ||
"VpcId": "1a2b3c" | ||
}, | ||
"Bucket": "business-records" | ||
}, | ||
{ | ||
"Name": "customer-ap", | ||
"NetworkOrigin": "Internet", | ||
"Bucket": "external-docs" | ||
}, | ||
{ | ||
"Name": "public-ap", | ||
"NetworkOrigin": "Internet", | ||
"Bucket": "external-docs" | ||
} | ||
] | ||
} | ||
|
||
**Example 2: To retrieve a list of all access points for a bucket** | ||
|
||
The following ``list-access-points`` example retrieves a list of all access points attached to the bucket ``external-docs`` owned by account 123456789012. :: | ||
|
||
aws s3control list-access-points \ | ||
--account-id 123456789012 \ | ||
--bucket external-docs | ||
|
||
Output:: | ||
|
||
{ | ||
"AccessPointList": [ | ||
{ | ||
"Name": "customer-ap", | ||
"NetworkOrigin": "Internet", | ||
"Bucket": "external-docs" | ||
}, | ||
{ | ||
"Name": "public-ap", | ||
"NetworkOrigin": "Internet", | ||
"Bucket": "external-docs" | ||
} | ||
] | ||
} | ||
|
||
For more information, see `Managing Data Access with Amazon S3 Access Points <https://docs.aws.amazon.com/AmazonS3/latest/dev/access-points.html>`__ in the *Amazon Simple Storage Service Developer Guide*. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,28 @@ | ||
**To set an access point policy** | ||
|
||
The following ``put-access-point-policy`` example places the specified access point policy for the access point ``finance-ap`` in account 123456789012. If the access point ``finance-ap`` already has a policy, this command replaces the existing policy with the one specified in this command. Before running this example, replace the account number, access point name, and policy statements with appropriate values for your use case. :: | ||
|
||
aws s3control put-access-point-policy \ | ||
--account-id 123456789012 \ | ||
--name finance-ap \ | ||
--policy file://ap-policy.json | ||
|
||
Contents of ``ap-policy.json``:: | ||
|
||
{ | ||
"Version": "2012-10-17", | ||
"Statement": [ | ||
{ | ||
"Effect": "Allow", | ||
"Principal": { | ||
"AWS": "arn:aws:iam::123456789012:user/Alice" | ||
}, | ||
"Action": "s3:GetObject", | ||
"Resource": "arn:aws:s3:us-west-2:123456789012:accesspoint/finance-ap/object/Alice/*" | ||
} | ||
] | ||
} | ||
|
||
This command produces no output. | ||
|
||
For more information, see `Managing Data Access with Amazon S3 Access Points <https://docs.aws.amazon.com/AmazonS3/latest/dev/access-points.html>`__ in the *Amazon Simple Storage Service Developer Guide*. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters