Skip to content

v0.26.0 Latest recommended v0 release
Compare
Choose a tag to compare
@cloudpossebot cloudpossebot released this 29 Oct 11:50
0.26.0
f1b6ec3
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

This is the latest recommended v0.x version to use.

If this version does not meet your needs, please switch to version 1.x, and review the release notes for v1.0.0 for guidance on the differences.

Changes in this release

Add S3 bucket ownership controls @max-lobur (#61)

what

  • Set aws_s3_bucket_ownership_controls to BucketOwnerPreferred

why

  • Per docs this setting will let object uploader decide ownership. If bucket-owner-full-control ACL is specified, the bucket account take ownership, otherwise the writer account keeps ownership. Bucket on its side may enforce presence of the bucket-owner-full-control ACL which we already do when needed. So this setting was the only missing piece to make ownership work like we expected
  • I found no use cases for the other value of this resource: ObjectWriter. It corresponds to legacy S3 behavior which was broken for us. Decided to always set to BucketOwnerPreferred and not allow to customize. If the owner must be preserved, we should not pass bucket-owner-full-control - this is a more clear way to control the behavior.

references

Contributors

max-lobur
Assets 2