AWS::S3::AccessPoint

S3 AccessPoint

The AWS::S3::AccessPoint resource is an Amazon S3 resource type that you can use to access buckets.

Properties

7 configurable properties. 1 required. Click a row to see details.

Filter:

Property	Type	Flags
`Bucket`	`string`	RequiredCreate-only
`BucketAccountId`	`string`	Create-only
`Name`	`string`	Create-only
`Policy`	`object`
`PublicAccessBlockConfiguration`	`PublicAccessBlockConfiguration`
`Tags`	`Array<Tag>`
`VpcConfiguration`	`VpcConfiguration`	Create-only

Return Values

Values returned after the resource is created. Access these with Fn::GetAtt.

Attribute	Type	Description
`Alias`	`string`	The alias of this Access Point. This alias can be used for compatibility purposes with other AWS services and third-party applications.
`Arn`	`string`	The Amazon Resource Name (ARN) of the specified accesspoint.
`NetworkOrigin`	`string`	Indicates whether this Access Point allows access from the public Internet. If VpcConfiguration is specified for this Access Point, then NetworkOrigin is VPC, and the Access Point doesn't allow access from the public Internet. Otherwise, NetworkOrigin is Internet, and the Access Point allows acce...

Sample CloudFormation Template

A minimal template with required properties and common optional ones.

template.yaml

AWSTemplateFormatVersion: "2010-09-09"
Description: Sample template for AWS::S3::AccessPoint

Resources:
  MyResource:
    Type: AWS::S3::AccessPoint
    Properties:
      Bucket: "value"
      Tags:
        - Key: Environment
          Value: Production
      Name: !Ref "AWS::StackName"

Required IAM Permissions

Permissions CloudFormation needs in your IAM role to manage this resource.

create

s3:CreateAccessPoints3:PutAccessPointPolicys3:GetAccessPoints3:PutAccessPointPublicAccessBlocks3:TagResource

read

s3:GetAccessPoints3:GetAccessPointPolicys3:ListTagsForResource

update

s3:PutAccessPointPolicys3:PutAccessPointPublicAccessBlocks3:DeleteAccessPointPolicys3:GetAccessPoints3:GetAccessPointPolicys3:TagResources3:UntagResource

delete

s3:DeleteAccessPointPolicys3:DeleteAccessPoint

list

s3:ListAccessPoints

Get the S3 Cheat Sheet

Everything you need to know about S3 on one page. HD quality, print-friendly.

Download Free Infographic

Quick Facts

ServiceS3

Properties10

Required1

TaggingSupported

Primary IDName

Supported Operations

CreateReadUpdateDeleteList

Immutable After Creation

These properties cannot be changed after the resource is created. Updating them triggers a replacement.

NameBucketBucketAccountIdVpcConfiguration

Related Resources

External Links

AWS Documentation