access_points
Creates, updates, deletes or gets an access_point resource or lists access_points in a region
Overview
| Name | access_points |
| Type | Resource |
| Description | The AWS::S3ObjectLambda::AccessPoint resource is an Amazon S3ObjectLambda resource type that you can use to add computation to S3 actions |
| Id | aws.s3objectlambda.access_points |
Fields
| Name | Datatype | Description |
|---|---|---|
name | string | The name you want to assign to this Object lambda Access Point. |
alias | object | |
arn | string | |
creation_date | string | The date and time when the Object lambda Access Point was created. |
public_access_block_configuration | object | The PublicAccessBlock configuration that you want to apply to this Access Point. You can enable the configuration options in any combination. For more information about when Amazon S3 considers a bucket or object public, see https://docs.aws.amazon.com/AmazonS3/latest/dev/access-control-block-public-access.html#access-control-block-public-access-policy-status 'The Meaning of Public' in the Amazon Simple Storage Service Developer Guide. |
policy_status | object | |
object_lambda_configuration | object | The Object lambda Access Point Configuration that configures transformations to be applied on the objects on specified S3 Actions |
region | string | AWS region. |
Methods
| Name | Accessible by | Required Params |
|---|---|---|
create_resource | INSERT | ObjectLambdaConfiguration, region |
delete_resource | DELETE | data__Identifier, region |
update_resource | UPDATE | data__Identifier, data__PatchDocument, region |
list_resources | SELECT | region |
get_resource | SELECT | data__Identifier, region |
SELECT examples
Gets all access_points in a region.
SELECT
region,
name,
alias,
arn,
creation_date,
public_access_block_configuration,
policy_status,
object_lambda_configuration
FROM aws.s3objectlambda.access_points
WHERE region = 'us-east-1';
Gets all properties from an individual access_point.
SELECT
region,
name,
alias,
arn,
creation_date,
public_access_block_configuration,
policy_status,
object_lambda_configuration
FROM aws.s3objectlambda.access_points
WHERE region = 'us-east-1' AND data__Identifier = '<Name>';
INSERT example
Use the following StackQL query and manifest file to create a new access_point resource, using stack-deploy.
- Required Properties
- All Properties
- Manifest
/*+ create */
INSERT INTO aws.s3objectlambda.access_points (
ObjectLambdaConfiguration,
region
)
SELECT
'{{ ObjectLambdaConfiguration }}',
'{{ region }}';
/*+ create */
INSERT INTO aws.s3objectlambda.access_points (
Name,
ObjectLambdaConfiguration,
region
)
SELECT
'{{ Name }}',
'{{ ObjectLambdaConfiguration }}',
'{{ region }}';
version: 1
name: stack name
description: stack description
providers:
- aws
globals:
- name: region
value: '{{ vars.AWS_REGION }}'
resources:
- name: access_point
props:
- name: Name
value: '{{ Name }}'
- name: ObjectLambdaConfiguration
value:
SupportingAccessPoint: '{{ SupportingAccessPoint }}'
AllowedFeatures:
- '{{ AllowedFeatures[0] }}'
CloudWatchMetricsEnabled: '{{ CloudWatchMetricsEnabled }}'
TransformationConfigurations:
- Actions:
- '{{ Actions[0] }}'
ContentTransformation: {}
DELETE example
/*+ delete */
DELETE FROM aws.s3objectlambda.access_points
WHERE data__Identifier = '<Name>'
AND region = 'us-east-1';
Permissions
To operate on the access_points resource, the following permissions are required:
Create
s3:CreateAccessPointForObjectLambda,
s3:PutAccessPointConfigurationForObjectLambda,
s3:GetAccessPointForObjectLambda,
s3:GetAccessPointPolicyStatusForObjectLambda,
s3:GetAccessPointConfigurationForObjectLambda
Read
s3:GetAccessPointForObjectLambda,
s3:GetAccessPointPolicyStatusForObjectLambda,
s3:GetAccessPointConfigurationForObjectLambda
Update
s3:PutAccessPointConfigurationForObjectLambda,
s3:GetAccessPointForObjectLambda,
s3:GetAccessPointPolicyStatusForObjectLambda,
s3:GetAccessPointConfigurationForObjectLambda
Delete
s3:DeleteAccessPointForObjectLambda
List
s3:ListAccessPointsForObjectLambda