AWS::S3Express::AccessPointS3Express AccessPoint
The AWS::S3Express::AccessPoint resource is an Amazon S3 resource type that you can use to access buckets.
Properties
8 configurable properties. 1 required. Click a row to see details.
Filter:
| Property | Type | Flags |
|---|---|---|
Bucket | string | RequiredCreate-only |
BucketAccountId | string | Create-only |
Name | string | Create-only |
Policy | object | |
PublicAccessBlockConfiguration | PublicAccessBlockConfiguration | |
Scope | Scope | |
Tags | Array<Tag> | |
VpcConfiguration | VpcConfiguration | Create-only |
Return Values
Values returned after the resource is created. Access these with Fn::GetAtt.
| Attribute | Type | Description |
|---|---|---|
Arn | string | The Amazon Resource Name (ARN) of the specified accesspoint. |
NetworkOrigin | string | Indicates whether this Access Point allows access from the public Internet. If VpcConfiguration is specified for this Access Point, then NetworkOrigin is VPC, and the Access Point doesn't allow access from the public Internet. Otherwise, NetworkOrigin is Internet, and the Access Point allows acce... |
Sample CloudFormation Template
A minimal template with required properties and common optional ones.
template.yaml
AWSTemplateFormatVersion: "2010-09-09"
Description: Sample template for AWS::S3Express::AccessPoint
Resources:
MyResource:
Type: AWS::S3Express::AccessPoint
Properties:
Bucket: "value"
Tags:
- Key: Environment
Value: Production
Name: !Ref "AWS::StackName"Required IAM Permissions
Permissions CloudFormation needs in your IAM role to manage this resource.
create
s3express:CreateAccessPoints3express:PutAccessPointPolicys3express:GetAccessPoints3express:PutAccessPointScopes3express:GetAccessPointScopes3express:TagResourceread
s3express:GetAccessPoints3express:GetAccessPointPolicys3express:GetAccessPointScopes3express:ListTagsForResourceupdate
s3express:PutAccessPointPolicys3express:DeleteAccessPointPolicys3express:PutAccessPointScopes3express:DeleteAccessPointScopes3express:TagResources3express:UntagResources3express:GetAccessPoints3express:GetAccessPointPolicydelete
s3express:DeleteAccessPointPolicys3express:DeleteAccessPoints3express:DeleteAccessPointScopelist
s3express:ListAccessPointsForDirectoryBucketsLearn AWS the Practical Way
Our bi-weekly newsletter teaches hands-on AWS fundamentals. No certification fluff - just practical knowledge.
Subscribe to NewsletterQuick Facts
ServiceS3Express
Properties10
Required1
TaggingSupported
Primary ID
NameSupported Operations
CreateReadUpdateDeleteList
Immutable After Creation
These properties cannot be changed after the resource is created. Updating them triggers a replacement.
NameBucketBucketAccountIdVpcConfiguration