Add configuration options for AWS S3 server access logging

[findmyname666]

Description

Fixes #3003.

In our environment the S3 bucket where should be stored S3 access logs is pre-created by "central" team and we don't have permissions to do any changes. In such case we don't have to:

• Create it - the current code creates the logging bucket only if it doesn't exist. No change is needed.
• Configure logging bucket e.g. ACL, public access, encryption, tls enforcement - adding option to skip the configuration for access log bucket.
• PartitionDateSource - Adding one more option to allow users to configure PartitionDateSource.

Additionally 1) adding error logging into the function configureAccessLogBucket. Without it I wasn't able to detect why the logging isn't configured on the source bucket. The error is returned but ignored. 2) Adding code to detect if the logging policy / configuration was change. The previous code just check if some policy is enabled.

TODOs

Read the Gruntwork contribution guidelines.

• Update the docs.
• Run the relevant tests successfully, including pre-commit checks.
• Ensure any 3rd party code adheres with our license policy or delete this line if its not applicable.
• Include release notes. If this PR is backward incompatible, include a migration guide.

Release Notes (draft)

Added / Removed / Updated [X].

Migration Guide

N/A.

[denis256]

Could you please consider adding tests to ensure that the newly added fields are functioning as expected?

[findmyname666]

Hi @denis256, Thx for your feedback. I tried to updated existing existing tests and added one new for method createS3LoggingInput. Please let me know if I missed anything else.

[findmyname666]

Hi @denis256 , Can I politely ask you for re-review once you have some free time please? Thx.

[findmyname666]

Hi @denis256, do you think you'll have time to take a look on this PR in the upcoming days?