Bucket is the Schema for the Buckets API
APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
Annotations is an unstructured key value map stored with a resource that may be set by external tools to store and retrieve arbitrary metadata. They are not queryable and should be preserved when modifying objects. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/annotations
Each additional property must conform to the following schema
Type: stringCreationTimestamp is a timestamp representing the server time when this object was created. It is not guaranteed to be set in happens-before order across separate operations. Clients may not set this value. It is represented in RFC3339 form and is in UTC.
Populated by the system. Read-only. Null for lists. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
Number of seconds allowed for this object to gracefully terminate before it will be removed from the system. Only set when deletionTimestamp is also set. May only be shortened. Read-only.
DeletionTimestamp is RFC 3339 date and time at which this resource will be deleted. This field is set by the server when a graceful deletion is requested by the user, and is not directly settable by a client. The resource is expected to be deleted (no longer visible from resource lists, and not reachable by name) after the time in this field, once the finalizers list is empty. As long as the finalizers list contains items, deletion is blocked. Once the deletionTimestamp is set, this value may not be unset or be set further into the future, although it may be shortened or the resource may be deleted prior to this time. For example, a user may request that a pod is deleted in 30 seconds. The Kubelet will react by sending a graceful termination signal to the containers in the pod. After that 30 seconds, the Kubelet will send a hard termination signal (SIGKILL) to the container and after cleanup, remove the pod from the API. In the presence of network partitions, this object may still exist after this timestamp, until an administrator or automated process can determine the resource is fully terminated. If not set, graceful deletion of the object has not been requested.
Populated by the system when a graceful deletion is requested. Read-only. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
Must be empty before the object is deleted from the registry. Each entry is an identifier for the responsible component that will remove the entry from the list. If the deletionTimestamp of the object is non-nil, entries in this list can only be removed. Finalizers may be processed and removed in any order. Order is NOT enforced because it introduces significant risk of stuck finalizers. finalizers is a shared field, any actor with permission can reorder it. If the finalizer list is processed in order, then this can lead to a situation in which the component responsible for the first finalizer in the list is waiting for a signal (field value, external system, or other) produced by a component responsible for a finalizer later in the list, resulting in a deadlock. Without enforced ordering finalizers are free to order amongst themselves and are not vulnerable to ordering changes in the list.
GenerateName is an optional prefix, used by the server, to generate a unique name ONLY IF the Name field has not been provided. If this field is used, the name returned to the client will be different than the name passed. This value will also be combined with a unique suffix. The provided value has the same validation rules as the Name field, and may be truncated by the length of the suffix required to make the value unique on the server.
If this field is specified and the generated name exists, the server will return a 409.
Applied only if Name is not specified. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#idempotency
A sequence number representing a specific generation of the desired state. Populated by the system. Read-only.
Map of string keys and values that can be used to organize and categorize (scope and select) objects. May match selectors of replication controllers and services. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/labels
Each additional property must conform to the following schema
Type: stringManagedFields maps workflow-id and version to the set of fields that are managed by that workflow. This is mostly for internal housekeeping, and users typically shouldn't need to set or understand this field. A workflow can be the user's name, a controller's name, or the name of a specific apply path like "ci-cd". The set of fields is always in the version that the workflow used when modifying the object.
No Additional ItemsManagedFieldsEntry is a workflow-id, a FieldSet and the group version of the resource that the fieldset applies to.
APIVersion defines the version of this resource that this field set applies to. The format is "group/version" just like the top-level APIVersion field. It is necessary to track the version of a field set because it cannot be automatically converted.
FieldsType is the discriminator for the different fields format and version. There is currently only one possible value: "FieldsV1"
FieldsV1 holds the first JSON version format as described in the "FieldsV1" type.
Manager is an identifier of the workflow managing these fields.
Operation is the type of operation which lead to this ManagedFieldsEntry being created. The only valid values for this field are 'Apply' and 'Update'.
Subresource is the name of the subresource used to update that object, or empty string if the object was updated through the main resource. The value of this field is used to distinguish between managers, even if they share the same name. For example, a status update will be distinct from a regular update using the same manager name. Note that the APIVersion field is not related to the Subresource field and it always corresponds to the version of the main resource.
Time is the timestamp of when the ManagedFields entry was added. The timestamp will also be updated if a field is added, the manager changes any of the owned fields value or removes a field. The timestamp does not update when a field is removed from the entry because another manager took it over.
Same definition as creationTimestampName must be unique within a namespace. Is required when creating resources, although some resources may allow a client to request the generation of an appropriate name automatically. Name is primarily intended for creation idempotence and configuration definition. Cannot be updated. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names#names
Namespace defines the space within which each name must be unique. An empty namespace is equivalent to the "default" namespace, but "default" is the canonical representation. Not all objects are required to be scoped to a namespace - the value of this field for those objects will be empty.
Must be a DNS_LABEL. Cannot be updated. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces
List of objects depended by this object. If ALL objects in the list have been deleted, this object will be garbage collected. If this object is managed by a controller, then an entry in this list will point to this controller, with the controller field set to true. There cannot be more than one managing controller.
No Additional ItemsOwnerReference contains enough information to let you identify an owning object. An owning object must be in the same namespace as the dependent, or be cluster-scoped, so there is no namespace field.
API version of the referent.
If true, AND if the owner has the "foregroundDeletion" finalizer, then the owner cannot be deleted from the key-value store until this reference is removed. See https://kubernetes.io/docs/concepts/architecture/garbage-collection/#foreground-deletion for how the garbage collector interacts with this field and enforces the foreground deletion. Defaults to false. To set this field, a user needs "delete" permission of the owner, otherwise 422 (Unprocessable Entity) will be returned.
If true, this reference points to the managing controller.
Kind of the referent. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
Name of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names#names
UID of the referent. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names#uids
An opaque value that represents the internal version of this object that can be used by clients to determine when objects have changed. May be used for optimistic concurrency, change detection, and the watch operation on a resource or set of resources. Clients must treat these values as opaque and passed unmodified back to the server. They may only be valid for a particular resource or set of resources.
Populated by the system. Read-only. Value must be treated as opaque by clients and . More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-control-and-consistency
Deprecated: selfLink is a legacy read-only field that is no longer populated by the system.
UID is the unique in time and space value for this object. It is typically generated by the server on successful creation of a resource and is not allowed to change on PUT operations.
Populated by the system. Read-only. More info: https://kubernetes.io/docs/concepts/overview/working-with-objects/names#uids
BucketSpec defines the desired state of Bucket.
In terms of implementation, a Bucket is a resource.
Container for setting the transfer acceleration state.
The canned ACL to apply to the bucket.
This functionality is not supported for directory buckets.
Specifies the configuration and any analyses for the analytics filter of
an Amazon S3 bucket.
The filter used to describe a set of objects for analyses. A filter must
have exactly one prefix, one tag, or one conjunction (AnalyticsAndOperator).
If no filter is provided, all objects will be considered in any analysis.
A conjunction (logical AND) of predicates, which is used in evaluating a
metrics filter. The operator must have at least two predicates in any combination,
and an object must match all of the predicates for the filter to apply.
A container of a key value name pair.
Specifies data related to access patterns to be collected and made available
to analyze the tradeoffs between different storage classes for an Amazon
S3 bucket.
Container for data related to the storage class analysis for an Amazon S3
bucket for export.
Where to publish the analytics results.
Contains information about where to publish the analytics results.
Describes the cross-origin access configuration for objects in an Amazon
S3 bucket. For more information, see Enabling Cross-Origin Resource Sharing
(https://docs.aws.amazon.com/AmazonS3/latest/dev/cors.html) in the Amazon
S3 User Guide.
Specifies a cross-origin access rule for an Amazon S3 bucket.
The configuration information for the bucket.
Specifies the information about the bucket that will be created. For more
information about directory buckets, see Directory buckets (https://docs.aws.amazon.com/AmazonS3/latest/userguide/directory-buckets-overview.html)
in the Amazon S3 User Guide.
This functionality is only supported by directory buckets.
Specifies the location where the bucket will be created.
For directory buckets, the location type is Availability Zone or Local Zone.
For more information about directory buckets, see Working with directory
buckets (https://docs.aws.amazon.com/AmazonS3/latest/userguide/directory-buckets-overview.html)
in the Amazon S3 User Guide.
This functionality is only supported by directory buckets.
Specifies the default server-side-encryption configuration.
Specifies the default server-side encryption configuration.
General purpose buckets - If you're specifying a customer managed KMS
key, we recommend using a fully qualified KMS key ARN. If you use a KMS
key alias instead, then KMS resolves the key within the requester’s
account. This behavior can result in data that's encrypted with a KMS
key that belongs to the requester, and not the bucket owner.
Directory buckets - When you specify an KMS customer managed key (https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#customer-cmk)
for encryption in your directory bucket, only use the key ID or key ARN.
The key alias format of the KMS key isn't supported.
Describes the default server-side encryption to apply to new objects in the
bucket. If a PUT Object request doesn't specify any server-side encryption,
this default encryption will be applied. For more information, see PutBucketEncryption
(https://docs.aws.amazon.com/AmazonS3/latest/API/RESTBucketPUTencryption.html).
General purpose buckets - If you don't specify a customer managed key
at configuration, Amazon S3 automatically creates an Amazon Web Services
KMS key (aws/s3) in your Amazon Web Services account the first time that
you add an object encrypted with SSE-KMS to a bucket. By default, Amazon
S3 uses this KMS key for SSE-KMS.
Directory buckets - Your SSE-KMS configuration can only support 1 customer
managed key (https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#customer-cmk)
per directory bucket's lifetime. The Amazon Web Services managed key (https://docs.aws.amazon.com/kms/latest/developerguide/concepts.html#aws-managed-cmk)
(aws/s3) isn't supported.
Directory buckets - For directory buckets, there are only two supported
options for server-side encryption: SSE-S3 and SSE-KMS.
Allows grantee the read, write, read ACP, and write ACP permissions on the
bucket.
This functionality is not supported for directory buckets.
Allows grantee to list the objects in the bucket.
This functionality is not supported for directory buckets.
Allows grantee to read the bucket ACL.
This functionality is not supported for directory buckets.
Allows grantee to write the ACL for the applicable bucket.
This functionality is not supported for directory buckets.
Specifies the S3 Intelligent-Tiering configuration for an Amazon S3 bucket.
For information about the S3 Intelligent-Tiering storage class, see Storage
class for automatically optimizing frequently and infrequently accessed objects
(https://docs.aws.amazon.com/AmazonS3/latest/dev/storage-class-intro.html#sc-dynamic-data-access).
The Filter is used to identify objects that the S3 Intelligent-Tiering configuration
applies to.
A container for specifying S3 Intelligent-Tiering filters. The filters determine
the subset of objects to which the rule applies.
A container of a key value name pair.
The S3 Intelligent-Tiering storage class is designed to optimize storage
costs by automatically moving data to the most cost-effective storage access
tier, without additional operational overhead.
Specifies the S3 Inventory configuration for an Amazon S3 bucket. For more
information, see GET Bucket inventory (https://docs.aws.amazon.com/AmazonS3/latest/API/RESTBucketGETInventoryConfig.html)
in the Amazon S3 API Reference.
Specifies the S3 Inventory configuration for an Amazon S3 bucket.
Contains the bucket name, file format, bucket owner (optional), and prefix
(optional) where S3 Inventory results are published.
Contains the type of server-side encryption used to encrypt the S3 Inventory
results.
Specifies the use of SSE-KMS to encrypt delivered inventory reports.
Specifies an S3 Inventory filter. The inventory only includes objects that
meet the filter's criteria.
Specifies the schedule for generating S3 Inventory results.
Container for lifecycle rules. You can add as many as 1,000 rules.
A lifecycle rule for individual objects in an Amazon S3 bucket.
For more information see, Managing your storage lifecycle (https://docs.aws.amazon.com/AmazonS3/latest/userguide/object-lifecycle-mgmt.html)
in the Amazon S3 User Guide.
Specifies the days since the initiation of an incomplete multipart upload
that Amazon S3 will wait before permanently removing all parts of the upload.
For more information, see Aborting Incomplete Multipart Uploads Using a Bucket
Lifecycle Configuration (https://docs.aws.amazon.com/AmazonS3/latest/dev/mpuoverview.html#mpu-abort-incomplete-mpu-lifecycle-config)
in the Amazon S3 User Guide.
Container for the expiration for the lifecycle of the object.
For more information see, Managing your storage lifecycle (https://docs.aws.amazon.com/AmazonS3/latest/userguide/object-lifecycle-mgmt.html)
in the Amazon S3 User Guide.
The Filter is used to identify objects that a Lifecycle Rule applies to.
A Filter can have exactly one of Prefix, Tag, ObjectSizeGreaterThan, ObjectSizeLessThan,
or And specified. If the Filter element is left empty, the Lifecycle Rule
applies to all objects in the bucket.
This is used in a Lifecycle Rule Filter to apply a logical AND to two or
more predicates. The Lifecycle Rule will apply to any object matching all
of the predicates configured inside the And operator.
A container of a key value name pair.
Specifies when noncurrent object versions expire. Upon expiration, Amazon
S3 permanently deletes the noncurrent object versions. You set this lifecycle
configuration action on a bucket that has versioning enabled (or suspended)
to request that Amazon S3 delete noncurrent object versions at a specific
period in the object's lifetime.
This parameter applies to general purpose buckets only. It is not supported
for directory bucket lifecycle configurations.
Container for the transition rule that describes when noncurrent objects
transition to the STANDARDIA, ONEZONEIA, INTELLIGENTTIERING, GLACIERIR,
GLACIER, or DEEPARCHIVE storage class. If your bucket is versioning-enabled
(or versioning is suspended), you can set this action to request that Amazon
S3 transition noncurrent object versions to the STANDARDIA, ONEZONEIA,
INTELLIGENTTIERING, GLACIERIR, GLACIER, or DEEPARCHIVE storage class at
a specific period in the object's lifetime.
Specifies when an object transitions to a specified storage class. For more
information about Amazon S3 lifecycle configuration rules, see Transitioning
Objects Using Amazon S3 Lifecycle (https://docs.aws.amazon.com/AmazonS3/latest/dev/lifecycle-transition-general-considerations.html)
in the Amazon S3 User Guide.
Container for logging status information.
Describes where logs are stored and the prefix that Amazon S3 assigns to
all log object keys for a bucket. For more information, see PUT Bucket logging
(https://docs.aws.amazon.com/AmazonS3/latest/API/RESTBucketPUTlogging.html)
in the Amazon S3 API Reference.
Container for granting information.
Buckets that use the bucket owner enforced setting for Object Ownership don't
support target grants. For more information, see Permissions server access
log delivery (https://docs.aws.amazon.com/AmazonS3/latest/userguide/enable-server-access-logging.html#grant-log-delivery-permissions-general)
in the Amazon S3 User Guide.
Container for the person being granted permissions.
Specifies a metrics configuration for the CloudWatch request metrics (specified
by the metrics configuration ID) from an Amazon S3 bucket. If you're updating
an existing metrics configuration, note that this is a full replacement of
the existing metrics configuration. If you don't include the elements you
want to keep, they are erased. For more information, see PutBucketMetricsConfiguration
(https://docs.aws.amazon.com/AmazonS3/latest/API/RESTBucketPUTMetricConfiguration.html).
Specifies a metrics configuration filter. The metrics configuration only
includes objects that meet the filter's criteria. A filter must be a prefix,
an object tag, an access point ARN, or a conjunction (MetricsAndOperator).
For more information, see PutBucketMetricsConfiguration (https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutBucketMetricsConfiguration.html).
A conjunction (logical AND) of predicates, which is used in evaluating a
metrics filter. The operator must have at least two predicates, and an object
must match all of the predicates in order for the filter to apply.
A container of a key value name pair.
The name of the bucket to create.
General purpose buckets - For information about bucket naming restrictions,
see Bucket naming rules (https://docs.aws.amazon.com/AmazonS3/latest/userguide/bucketnamingrules.html)
in the Amazon S3 User Guide.
Directory buckets - When you use this operation with a directory bucket,
you must use path-style requests in the format https://s3express-control.region-code.amazonaws.com/bucket-name
. Virtual-hosted-style requests aren't supported. Directory bucket names
must be unique in the chosen Zone (Availability Zone or Local Zone). Bucket
names must also follow the format bucket-base-name--zone-id--x-s3 (for example,
DOC-EXAMPLE-BUCKET--usw2-az1--x-s3). For information about bucket naming
restrictions, see Directory bucket naming rules (https://docs.aws.amazon.com/AmazonS3/latest/userguide/directory-bucket-naming-rules.html)
in the Amazon S3 User Guide
Specifies the namespace where you want to create your general purpose bucket.
When you create a general purpose bucket, you can choose to create a bucket
in the shared global namespace or you can choose to create a bucket in your
account regional namespace. Your account regional namespace is a subdivision
of the global namespace that only your account can create buckets in. For
more information on bucket namespaces, see Namespaces for general purpose
buckets (https://docs.aws.amazon.com/AmazonS3/latest/userguide/gpbucketnamespaces.html).
General purpose buckets in your account regional namespace must follow a
specific naming convention. These buckets consist of a bucket name prefix
that you create, and a suffix that contains your 12-digit Amazon Web Services
Account ID, the Amazon Web Services Region code, and ends with -an. Bucket
names must follow the format bucket-name-prefix-accountId-region-an (for
example, amzn-s3-demo-bucket-111122223333-us-west-2-an). For information
about bucket naming restrictions, see Account regional namespace naming rules
(https://docs.aws.amazon.com/AmazonS3/latest/userguide/bucketnamingrules.html#account-regional-naming-rules)
in the Amazon S3 User Guide.
This functionality is not supported for directory buckets.
A container for specifying the notification configuration of the bucket.
If this element is empty, notifications are turned off for the bucket.
A container for specifying the configuration for Lambda notifications.
Specifies object key name filtering rules. For information about key name
filtering, see Configuring event notifications using object key name filtering
(https://docs.aws.amazon.com/AmazonS3/latest/userguide/notification-how-to-filtering.html)
in the Amazon S3 User Guide.
A container for object key name prefix and suffix filtering rules.
A list of containers for the key-value pair that defines the criteria for
the filter rule.
Specifies the Amazon S3 object key name to filter on. An object key name
is the name assigned to an object in your Amazon S3 bucket. You specify whether
to filter on the suffix or prefix of the object key name. A prefix is a specific
string of characters at the beginning of an object key name, which you can
use to organize objects. For example, you can start the key names of related
objects with a prefix, such as 2023- or engineering/. Then, you can use FilterRule
to find objects in a bucket with key names that have the same prefix. A suffix
is similar to a prefix, but it is at the end of the object key name instead
of at the beginning.
An optional unique identifier for configurations in a notification configuration.
If you don't provide one, Amazon S3 will assign an ID.
Specifies the configuration for publishing messages to an Amazon Simple Queue
Service (Amazon SQS) queue when Amazon S3 detects specified events.
Specifies object key name filtering rules. For information about key name
filtering, see Configuring event notifications using object key name filtering
(https://docs.aws.amazon.com/AmazonS3/latest/userguide/notification-how-to-filtering.html)
in the Amazon S3 User Guide.
A container for object key name prefix and suffix filtering rules.
A list of containers for the key-value pair that defines the criteria for
the filter rule.
Specifies the Amazon S3 object key name to filter on. An object key name
is the name assigned to an object in your Amazon S3 bucket. You specify whether
to filter on the suffix or prefix of the object key name. A prefix is a specific
string of characters at the beginning of an object key name, which you can
use to organize objects. For example, you can start the key names of related
objects with a prefix, such as 2023- or engineering/. Then, you can use FilterRule
to find objects in a bucket with key names that have the same prefix. A suffix
is similar to a prefix, but it is at the end of the object key name instead
of at the beginning.
An optional unique identifier for configurations in a notification configuration.
If you don't provide one, Amazon S3 will assign an ID.
A container for specifying the configuration for publication of messages
to an Amazon Simple Notification Service (Amazon SNS) topic when Amazon S3
detects specified events.
Specifies object key name filtering rules. For information about key name
filtering, see Configuring event notifications using object key name filtering
(https://docs.aws.amazon.com/AmazonS3/latest/userguide/notification-how-to-filtering.html)
in the Amazon S3 User Guide.
A container for object key name prefix and suffix filtering rules.
A list of containers for the key-value pair that defines the criteria for
the filter rule.
Specifies the Amazon S3 object key name to filter on. An object key name
is the name assigned to an object in your Amazon S3 bucket. You specify whether
to filter on the suffix or prefix of the object key name. A prefix is a specific
string of characters at the beginning of an object key name, which you can
use to organize objects. For example, you can start the key names of related
objects with a prefix, such as 2023- or engineering/. Then, you can use FilterRule
to find objects in a bucket with key names that have the same prefix. A suffix
is similar to a prefix, but it is at the end of the object key name instead
of at the beginning.
An optional unique identifier for configurations in a notification configuration.
If you don't provide one, Amazon S3 will assign an ID.
Specifies whether you want S3 Object Lock to be enabled for the new bucket.
This functionality is not supported for directory buckets.
The OwnershipControls (BucketOwnerEnforced, BucketOwnerPreferred, or ObjectWriter)
that you want to apply to this Amazon S3 bucket.
The container element for an ownership control rule.
The container element for object ownership for a bucket's ownership controls.
BucketOwnerPreferred - Objects uploaded to the bucket change ownership to
the bucket owner if the objects are uploaded with the bucket-owner-full-control
canned ACL.
ObjectWriter - The uploading account will own the object if the object is
uploaded with the bucket-owner-full-control canned ACL.
BucketOwnerEnforced - Access control lists (ACLs) are disabled and no longer
affect permissions. The bucket owner automatically owns and has full control
over every object in the bucket. The bucket only accepts PUT requests that
don't specify an ACL or specify bucket owner full control ACLs (such as the
predefined bucket-owner-full-control canned ACL or a custom ACL in XML format
that grants the same permissions).
By default, ObjectOwnership is set to BucketOwnerEnforced and ACLs are disabled.
We recommend keeping ACLs disabled, except in uncommon use cases where you
must control access for each object individually. For more information about
S3 Object Ownership, see Controlling ownership of objects and disabling ACLs
for your bucket (https://docs.aws.amazon.com/AmazonS3/latest/userguide/about-object-ownership.html)
in the Amazon S3 User Guide.
This functionality is not supported for directory buckets. Directory buckets
use the bucket owner enforced setting for S3 Object Ownership.
The bucket policy as a JSON document.
For directory buckets, the only IAM action supported in the bucket policy
is s3express:CreateSession.
The PublicAccessBlock configuration that you want to apply to this Amazon
S3 bucket. You can enable the configuration options in any combination. For
more information about when Amazon S3 considers a bucket or object public,
see The Meaning of "Public" (https://docs.aws.amazon.com/AmazonS3/latest/dev/access-control-block-public-access.html#access-control-block-public-access-policy-status)
in the Amazon S3 User Guide.
A container for replication rules. You can add up to 1,000 rules. The maximum
size of a replication configuration is 2 MB.
Specifies which Amazon S3 objects to replicate and where to store the replicas.
Specifies whether Amazon S3 replicates delete markers. If you specify a Filter
in your replication configuration, you must also include a DeleteMarkerReplication
element. If your Filter includes a Tag element, the DeleteMarkerReplication
Status must be set to Disabled, because Amazon S3 does not support replicating
delete markers for tag-based rules. For an example configuration, see Basic
Rule Configuration (https://docs.aws.amazon.com/AmazonS3/latest/dev/replication-add-config.html#replication-config-min-rule-config).
For more information about delete marker replication, see Basic Rule Configuration
(https://docs.aws.amazon.com/AmazonS3/latest/dev/delete-marker-replication.html).
If you are using an earlier version of the replication configuration, Amazon
S3 handles replication of delete markers differently. For more information,
see Backward Compatibility (https://docs.aws.amazon.com/AmazonS3/latest/dev/replication-add-config.html#replication-backward-compat-considerations).
Specifies information about where to publish analysis or configuration results
for an Amazon S3 bucket and S3 Replication Time Control (S3 RTC).
A container for information about access control for replicas.
Specifies encryption-related information for an Amazon S3 bucket that is
a destination for replicated objects.
If you're specifying a customer managed KMS key, we recommend using a fully
qualified KMS key ARN. If you use a KMS key alias instead, then KMS resolves
the key within the requester’s account. This behavior can result in data
that's encrypted with a KMS key that belongs to the requester, and not the
bucket owner.
A container specifying replication metrics-related settings enabling replication
metrics and events.
A container specifying the time value for S3 Replication Time Control (S3
RTC) and replication metrics EventThreshold.
A container specifying S3 Replication Time Control (S3 RTC) related information,
including whether S3 RTC is enabled and the time when all objects and operations
on objects must be replicated. Must be specified together with a Metrics
block.
A container specifying the time value for S3 Replication Time Control (S3
RTC) and replication metrics EventThreshold.
Optional configuration to replicate existing source bucket objects.
This parameter is no longer supported. To replicate existing objects, see
Replicating existing objects with S3 Batch Replication (https://docs.aws.amazon.com/AmazonS3/latest/userguide/s3-batch-replication-batch.html)
in the Amazon S3 User Guide.
A filter that identifies the subset of objects to which the replication rule
applies. A Filter must specify exactly one Prefix, Tag, or an And child element.
A container for specifying rule filters. The filters determine the subset
of objects to which the rule applies. This element is required only if you
specify more than one filter.
For example:
If you specify both a Prefix and a Tag filter, wrap these filters in
an And tag.
If you specify a filter based on multiple tags, wrap the Tag elements
in an And tag.
A container of a key value name pair.
A container that describes additional filters for identifying the source
objects that you want to replicate. You can choose to enable or disable the
replication of these objects. Currently, Amazon S3 supports only the filter
that you can specify for objects created with server-side encryption using
a customer managed key stored in Amazon Web Services Key Management Service
(SSE-KMS).
A filter that you can specify for selection for modifications on replicas.
Amazon S3 doesn't replicate replica modifications by default. In the latest
version of replication configuration (when Filter is specified), you can
specify this element and set the status to Enabled to replicate modifications
on replicas.
If you don't specify the Filter element, Amazon S3 assumes that the replication
configuration is the earlier version, V1. In the earlier version, this element
is not allowed.
A container for filter information for the selection of S3 objects encrypted
with Amazon Web Services KMS.
Container for Payer.
Container for the TagSet and Tag elements.
A container of a key value name pair.
Container for setting the versioning state.
Container for the request.
The error information.
Container for the Suffix element.
Specifies the redirect behavior of all requests to a website endpoint of
an Amazon S3 bucket.
Specifies the redirect behavior and when a redirect is applied. For more
information about routing rules, see Configuring advanced conditional redirects
(https://docs.aws.amazon.com/AmazonS3/latest/dev/how-to-page-redirect.html#advanced-conditional-redirects)
in the Amazon S3 User Guide.
A container for describing a condition that must be met for the specified
redirect to apply. For example, 1. If request is for pages in the /docs folder,
redirect to the /documents folder. 2. If request results in HTTP error 4xx,
redirect request to another host where you might process the error.
Specifies how requests are redirected. In the event of an error, you can
specify a different error code to return.
BucketStatus defines the observed state of Bucket
All CRs managed by ACK have a common Status.ACKResourceMetadata member
that is used to contain resource sync state, account ownership,
constructed ARN for the resource
ARN is the Amazon Resource Name for the resource. This is a
globally-unique identifier and is set only by the ACK service controller
once the controller has orchestrated the creation of the resource OR
when it has verified that an "adopted" resource (a resource where the
ARN annotation was set by the Kubernetes user on the CR) exists and
matches the supplied CR's Spec field values.
https://github.com/aws/aws-controllers-k8s/issues/270
OwnerAccountID is the AWS Account ID of the account that owns the
backend AWS service API resource.
Partition is the AWS partition in which the resource exists or will exist
Region is the AWS region in which the resource exists or will exist.
All CRs managed by ACK have a common Status.Conditions member that
contains a collection of ackv1alpha1.Condition objects that describe
the various terminal states of the CR and its backend AWS service API
resource
Condition is the common struct used by all CRDs managed by ACK service
controllers to indicate terminal states of the CR and its backend AWS
service API resource
Last time the condition transitioned from one status to another.
A human readable message indicating details about the transition.
The reason for the condition's last transition.
Status of the condition, one of True, False, Unknown.
Type is the type of the Condition
A forward slash followed by the name of the bucket.