From b0f31ebc05b7bfdf45e2acf6b8d89da2499937ac Mon Sep 17 00:00:00 2001
From: Pierre Wizla <pwizla+github@gmail.com>
Date: Fri, 17 Jun 2022 13:49:42 +0200
Subject: [PATCH] Fix aws-s3 provider code snippet to avoid ACL public-read
 access issues

---
 .../deployment/hosting-guides/amazon-aws.md   | 29 ++++++++++++-------
 1 file changed, 19 insertions(+), 10 deletions(-)

diff --git a/docs/developer-docs/latest/setup-deployment-guides/deployment/hosting-guides/amazon-aws.md b/docs/developer-docs/latest/setup-deployment-guides/deployment/hosting-guides/amazon-aws.md
index 494b3aaabe..a13aea9bc0 100644
--- a/docs/developer-docs/latest/setup-deployment-guides/deployment/hosting-guides/amazon-aws.md
+++ b/docs/developer-docs/latest/setup-deployment-guides/deployment/hosting-guides/amazon-aws.md
@@ -338,17 +338,26 @@ To enable and configure the provider, create or edit the file at `./config/plugi
 ```js
 module.exports = ({ env }) => ({
   upload: {
-      config: {
-          provider: 'aws-s3',
-          providerOptions: {
-              accessKeyId: env('AWS_ACCESS_KEY_ID'),
-              secretAccessKey: env('AWS_ACCESS_SECRET'),
-              region: env('AWS_REGION'),
-              params: {
-                  Bucket: env('AWS_BUCKET_NAME'),
-              },
-          },
+    config: {
+      provider: 'aws-s3',
+      providerOptions: {
+        accessKeyId: env('AWS_ACCESS_KEY_ID'),
+        secretAccessKey: env('AWS_ACCESS_SECRET'),
+        region: env('AWS_REGION'),
+        params: {
+            Bucket: env('AWS_BUCKET_NAME'),
+        },
       },
+      // These parameters could solve issues with ACL public-read access — see [this issue](https://github.com/strapi/strapi/issues/5868) for details
+      actionOptions: {
+        upload: {
+          ACL: null
+        },
+        uploadStream: {
+          ACL: null
+        },
+      }
+    },
   }
 });
 ```