Skip to content

Commit

Permalink
Set ownership control to BucketOwnerPreferred (#14)
Browse files Browse the repository at this point in the history 
* Set ownership control to BucketOwnerPreferred

* fmt
  • Loading branch information
@bion
bion authored May 1, 2023
1 parent 89021a2 commit c65ff5e
Showing 1 changed file with 11 additions and 2 deletions.
13 changes: 11 additions & 2 deletions main.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ resource "random_string" "random" {
}

resource "aws_s3_bucket" "logs" {
bucket = lower("${random_string.random.keepers.name_prefix}-logs-${random_string.random.result}")
bucket = lower("${random_string.random.keepers.name_prefix}-logs-${random_string.random.result}")
force_destroy = var.s3_bucket_force_destroy
tags = merge(
var.tags,
Expand All @@ -24,8 +24,17 @@ resource "aws_s3_bucket" "logs" {
}

resource "aws_s3_bucket_acl" "logs" {
bucket = aws_s3_bucket.logs.id
depends_on = [aws_s3_bucket_ownership_controls.logs]
acl = "log-delivery-write"
}

resource "aws_s3_bucket_ownership_controls" "logs" {
bucket = aws_s3_bucket.logs.id
acl = "log-delivery-write"

rule {
object_ownership = "BucketOwnerPreferred"
}
}

resource "aws_s3_bucket_server_side_encryption_configuration" "logs" {
Expand Down

0 comments on commit c65ff5e

Please sign in to comment.