aws-sdk-s3 1.102.0 → 1.112.0

data/lib/aws-sdk-s3/client.rb

@@ -27,6 +27,8 @@ require 'aws-sdk-core/plugins/client_metrics_plugin.rb'
 require 'aws-sdk-core/plugins/client_metrics_send_plugin.rb'
 require 'aws-sdk-core/plugins/transfer_encoding.rb'
 require 'aws-sdk-core/plugins/http_checksum.rb'
+require 'aws-sdk-core/plugins/defaults_mode.rb'
+require 'aws-sdk-core/plugins/recursion_detection.rb'
 require 'aws-sdk-core/plugins/protocols/rest_xml.rb'
 require 'aws-sdk-s3/plugins/accelerate.rb'
 require 'aws-sdk-s3/plugins/arn.rb'
@@ -91,6 +93,8 @@ module Aws::S3
     add_plugin(Aws::Plugins::ClientMetricsSendPlugin)
     add_plugin(Aws::Plugins::TransferEncoding)
     add_plugin(Aws::Plugins::HttpChecksum)
+    add_plugin(Aws::Plugins::DefaultsMode)
+    add_plugin(Aws::Plugins::RecursionDetection)
     add_plugin(Aws::Plugins::Protocols::RestXml)
     add_plugin(Aws::S3::Plugins::Accelerate)
     add_plugin(Aws::S3::Plugins::ARN)
@@ -155,7 +159,9 @@ module Aws::S3
     #     * EC2/ECS IMDS instance profile - When used by default, the timeouts
     #       are very aggressive. Construct and pass an instance of
     #       `Aws::InstanceProfileCredentails` or `Aws::ECSCredentials` to
-    #       enable retries and extended timeouts.
+    #       enable retries and extended timeouts. Instance profile credential
+    #       fetching can be disabled by setting ENV['AWS_EC2_METADATA_DISABLED']
+    #       to true.
     #
     #   @option options [required, String] :region
     #     The AWS region to connect to.  The configured `:region` is
@@ -216,6 +222,10 @@ module Aws::S3
     #     Used only in `standard` and adaptive retry modes. Specifies whether to apply
     #     a clock skew correction and retry requests with skewed client clocks.
     #
+    #   @option options [String] :defaults_mode ("legacy")
+    #     See {Aws::DefaultsModeConfiguration} for a list of the
+    #     accepted modes and the configuration defaults that are included.
+    #
     #   @option options [Boolean] :disable_host_prefix_injection (false)
     #     Set to true to disable SDK automatically adding host prefix
     #     to default service endpoint when available.
@@ -359,9 +369,14 @@ module Aws::S3
     #     for all object operations. You must first enable accelerate for
     #     each bucket. [Go here for more information](http://docs.aws.amazon.com/AmazonS3/latest/dev/transfer-acceleration.html).
     #
-    #   @option options [Boolean] :use_dualstack_endpoint (false)
-    #     When set to `true`, IPv6-compatible bucket endpoints will be used
-    #     for all operations.
+    #   @option options [Boolean] :use_dualstack_endpoint
+    #     When set to `true`, dualstack enabled endpoints (with `.aws` TLD)
+    #     will be used if available.
+    #
+    #   @option options [Boolean] :use_fips_endpoint
+    #     When set to `true`, fips compatible endpoints will be used if available.
+    #     When a `fips` region is used, the region is normalized and this config
+    #     is set to `true`.
     #
     #   @option options [Boolean] :validate_params (true)
     #     When `true`, request parameters are validated before
@@ -374,7 +389,7 @@ module Aws::S3
     #     seconds to wait when opening a HTTP session before raising a
     #     `Timeout::Error`.
     #
-    #   @option options [Integer] :http_read_timeout (60) The default
+    #   @option options [Float] :http_read_timeout (60) The default
     #     number of seconds to wait for response data.  This value can
     #     safely be set per-request on the session.
     #
@@ -390,6 +405,9 @@ module Aws::S3
     #     disables this behaviour.  This value can safely be set per
     #     request on the session.
     #
+    #   @option options [Float] :ssl_timeout (nil) Sets the SSL timeout
+    #     in seconds.
+    #
     #   @option options [Boolean] :http_wire_trace (false) When `true`,
     #     HTTP debug output will be sent to the `:logger`.
     #
@@ -566,6 +584,11 @@ module Aws::S3
     # prepared to retry the failed requests. For more information, see
     # [Amazon S3 Error Best Practices][2].
     #
+    # You cannot use `Content-Type: application/x-www-form-urlencoded` with
+    # Complete Multipart Upload requests. Also, if you do not provide a
+    # `Content-Type` header, `CompleteMultipartUpload` returns a 200 OK
+    # response.
+    #
     # For more information about multipart uploads, see [Uploading Objects
     # Using Multipart Upload][3].
     #
@@ -886,11 +909,28 @@ module Aws::S3
     # Control List (ACL) Overview][10] and [Managing ACLs Using the REST
     # API][11].
     #
+    # If the bucket that you're copying objects to uses the bucket owner
+    # enforced setting for S3 Object Ownership, ACLs are disabled and no
+    # longer affect permissions. Buckets that use this setting only accept
+    # PUT requests that don't specify an ACL or PUT requests that specify
+    # bucket owner full control ACLs, such as the
+    # `bucket-owner-full-control` canned ACL or an equivalent form of this
+    # ACL expressed in the XML format.
+    #
+    # For more information, see [ Controlling ownership of objects and
+    # disabling ACLs][12] in the *Amazon S3 User Guide*.
+    #
+    # <note markdown="1"> If your bucket uses the bucket owner enforced setting for Object
+    # Ownership, all objects written to the bucket by any account will be
+    # owned by the bucket owner.
+    #
+    #  </note>
+    #
     # **Storage Class Options**
     #
     # You can use the `CopyObject` action to change the storage class of an
     # object that is already stored in Amazon S3 using the `StorageClass`
-    # parameter. For more information, see [Storage Classes][12] in the
+    # parameter. For more information, see [Storage Classes][13] in the
     # *Amazon S3 User Guide*.
     #
     # **Versioning**
@@ -911,15 +951,15 @@ module Aws::S3
     #
     # If the source object's storage class is GLACIER, you must restore a
     # copy of this object before you can use it as a source object for the
-    # copy operation. For more information, see [RestoreObject][13].
+    # copy operation. For more information, see [RestoreObject][14].
     #
     # The following operations are related to `CopyObject`\:
     #
-    # * [PutObject][14]
+    # * [PutObject][15]
     #
-    # * [GetObject][15]
+    # * [GetObject][16]
     #
-    # For more information, see [Copying Objects][16].
+    # For more information, see [Copying Objects][17].
     #
     #
     #
@@ -934,11 +974,12 @@ module Aws::S3
     # [9]: https://docs.aws.amazon.com/AmazonS3/latest/dev/bucket-key.html
     # [10]: https://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html
     # [11]: https://docs.aws.amazon.com/AmazonS3/latest/dev/acl-using-rest-api.html
-    # [12]: https://docs.aws.amazon.com/AmazonS3/latest/dev/storage-class-intro.html
-    # [13]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_RestoreObject.html
-    # [14]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutObject.html
-    # [15]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetObject.html
-    # [16]: https://docs.aws.amazon.com/AmazonS3/latest/dev/CopyingObjectsExamples.html
+    # [12]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/about-object-ownership.html
+    # [13]: https://docs.aws.amazon.com/AmazonS3/latest/dev/storage-class-intro.html
+    # [14]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_RestoreObject.html
+    # [15]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutObject.html
+    # [16]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetObject.html
+    # [17]: https://docs.aws.amazon.com/AmazonS3/latest/dev/CopyingObjectsExamples.html
     #
     # @option params [String] :acl
     #   The canned ACL to apply to the object.
@@ -1260,7 +1301,7 @@ module Aws::S3
     #     metadata_directive: "COPY", # accepts COPY, REPLACE
     #     tagging_directive: "COPY", # accepts COPY, REPLACE
     #     server_side_encryption: "AES256", # accepts AES256, aws:kms
-    #     storage_class: "STANDARD", # accepts STANDARD, REDUCED_REDUNDANCY, STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, GLACIER, DEEP_ARCHIVE, OUTPOSTS
+    #     storage_class: "STANDARD", # accepts STANDARD, REDUCED_REDUNDANCY, STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, GLACIER, DEEP_ARCHIVE, OUTPOSTS, GLACIER_IR
     #     website_redirect_location: "WebsiteRedirectLocation",
     #     sse_customer_algorithm: "SSECustomerAlgorithm",
     #     sse_customer_key: "SSECustomerKey",
@@ -1333,22 +1374,33 @@ module Aws::S3
     #
     #  </note>
     #
+    # **Access control lists (ACLs)**
+    #
     # When creating a bucket using this operation, you can optionally
-    # specify the accounts or groups that should be granted specific
-    # permissions on the bucket. There are two ways to grant the appropriate
-    # permissions using the request headers.
+    # configure the bucket ACL to specify the accounts or groups that should
+    # be granted specific permissions on the bucket.
+    #
+    # If your CreateBucket request sets bucket owner enforced for S3 Object
+    # Ownership and specifies a bucket ACL that provides access to an
+    # external Amazon Web Services account, your request fails with a `400`
+    # error and returns the `InvalidBucketAclWithObjectOwnership` error
+    # code. For more information, see [Controlling object ownership][5] in
+    # the *Amazon S3 User Guide*.
+    #
+    # There are two ways to grant the appropriate permissions using the
+    # request headers.
     #
     # * Specify a canned ACL using the `x-amz-acl` request header. Amazon S3
     #   supports a set of predefined ACLs, known as *canned ACLs*. Each
     #   canned ACL has a predefined set of grantees and permissions. For
-    #   more information, see [Canned ACL][5].
+    #   more information, see [Canned ACL][6].
     #
     # * Specify access permissions explicitly using the `x-amz-grant-read`,
     #   `x-amz-grant-write`, `x-amz-grant-read-acp`,
     #   `x-amz-grant-write-acp`, and `x-amz-grant-full-control` headers.
     #   These headers map to the set of permissions Amazon S3 supports in an
     #   ACL. For more information, see [Access control list (ACL)
-    #   overview][6].
+    #   overview][7].
     #
     #   You specify each grantee as a type=value pair, where the type is one
     #   of the following:
@@ -1381,7 +1433,7 @@ module Aws::S3
     #     * South America (São Paulo)
     #
     #      For a list of all the Amazon S3 supported Regions and endpoints,
-    #     see [Regions and Endpoints][7] in the Amazon Web Services General
+    #     see [Regions and Endpoints][8] in the Amazon Web Services General
     #     Reference.
     #
     #      </note>
@@ -1399,22 +1451,29 @@ module Aws::S3
     #
     # **Permissions**
     #
-    # If your `CreateBucket` request specifies ACL permissions and the ACL
-    # is public-read, public-read-write, authenticated-read, or if you
-    # specify access permissions explicitly through any other ACL, both
-    # `s3:CreateBucket` and `s3:PutBucketAcl` permissions are needed. If the
-    # ACL the `CreateBucket` request is private, only `s3:CreateBucket`
-    # permission is needed.
+    # In addition to `s3:CreateBucket`, the following permissions are
+    # required when your CreateBucket includes specific headers:
     #
-    # If `ObjectLockEnabledForBucket` is set to true in your `CreateBucket`
-    # request, `s3:PutBucketObjectLockConfiguration` and
-    # `s3:PutBucketVersioning` permissions are required.
+    # * **ACLs** - If your `CreateBucket` request specifies ACL permissions
+    #   and the ACL is public-read, public-read-write, authenticated-read,
+    #   or if you specify access permissions explicitly through any other
+    #   ACL, both `s3:CreateBucket` and `s3:PutBucketAcl` permissions are
+    #   needed. If the ACL the `CreateBucket` request is private or doesn't
+    #   specify any ACLs, only `s3:CreateBucket` permission is needed.
+    #
+    # * **Object Lock** - If `ObjectLockEnabledForBucket` is set to true in
+    #   your `CreateBucket` request, `s3:PutBucketObjectLockConfiguration`
+    #   and `s3:PutBucketVersioning` permissions are required.
+    #
+    # * **S3 Object Ownership** - If your CreateBucket request includes the
+    #   the `x-amz-object-ownership` header, `s3:PutBucketOwnershipControls`
+    #   permission is required.
     #
     # The following operations are related to `CreateBucket`\:
     #
-    # * [PutObject][8]
+    # * [PutObject][9]
     #
-    # * [DeleteBucket][9]
+    # * [DeleteBucket][10]
     #
     #
     #
@@ -1422,11 +1481,12 @@ module Aws::S3
     # [2]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_CreateBucket.html
     # [3]: https://docs.aws.amazon.com/AmazonS3/latest/dev/UsingBucket.html#access-bucket-intro
     # [4]: https://docs.aws.amazon.com/AmazonS3/latest/dev/VirtualHosting.html
-    # [5]: https://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html#CannedACL
-    # [6]: https://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html
-    # [7]: https://docs.aws.amazon.com/general/latest/gr/rande.html#s3_region
-    # [8]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutObject.html
-    # [9]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteBucket.html
+    # [5]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/about-object-ownership.html
+    # [6]: https://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html#CannedACL
+    # [7]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/acl-overview.html
+    # [8]: https://docs.aws.amazon.com/general/latest/gr/rande.html#s3_region
+    # [9]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutObject.html
+    # [10]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteBucket.html
     #
     # @option params [String] :acl
     #   The canned ACL to apply to the bucket.
@@ -1460,6 +1520,24 @@ module Aws::S3
     #   Specifies whether you want S3 Object Lock to be enabled for the new
     #   bucket.
     #
+    # @option params [String] :object_ownership
+    #   The container element for object ownership for a bucket's ownership
+    #   controls.
+    #
+    #   BucketOwnerPreferred - Objects uploaded to the bucket change ownership
+    #   to the bucket owner if the objects are uploaded with the
+    #   `bucket-owner-full-control` canned ACL.
+    #
+    #   ObjectWriter - The uploading account will own the object if the object
+    #   is uploaded with the `bucket-owner-full-control` canned ACL.
+    #
+    #   BucketOwnerEnforced - Access control lists (ACLs) are disabled and no
+    #   longer affect permissions. The bucket owner automatically owns and has
+    #   full control over every object in the bucket. The bucket only accepts
+    #   PUT requests that don't specify an ACL or bucket owner full control
+    #   ACLs, such as the `bucket-owner-full-control` canned ACL or an
+    #   equivalent form of this ACL expressed in the XML format.
+    #
     # @return [Types::CreateBucketOutput] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::CreateBucketOutput#location #location} => String
@@ -1508,6 +1586,7 @@ module Aws::S3
     #     grant_write: "GrantWrite",
     #     grant_write_acp: "GrantWriteACP",
     #     object_lock_enabled_for_bucket: false,
+    #     object_ownership: "BucketOwnerPreferred", # accepts BucketOwnerPreferred, ObjectWriter, BucketOwnerEnforced
     #   })
     #
     # @example Response structure
@@ -1562,15 +1641,14 @@ module Aws::S3
     # You can optionally request server-side encryption. For server-side
     # encryption, Amazon S3 encrypts your data as it writes it to disks in
     # its data centers and decrypts it when you access it. You can provide
-    # your own encryption key, or use Amazon Web Services Key Management
-    # Service (Amazon Web Services KMS) customer master keys (CMKs) or
-    # Amazon S3-managed encryption keys. If you choose to provide your own
+    # your own encryption key, or use Amazon Web Services KMS keys or Amazon
+    # S3-managed encryption keys. If you choose to provide your own
     # encryption key, the request headers you provide in [UploadPart][1] and
     # [UploadPartCopy][6] requests must match the headers you used in the
     # request to initiate the upload by using `CreateMultipartUpload`.
     #
     # To perform a multipart upload with encryption using an Amazon Web
-    # Services KMS CMK, the requester must have permission to the
+    # Services KMS key, the requester must have permission to the
     # `kms:Decrypt` and `kms:GenerateDataKey*` actions on the key. These
     # permissions are required because Amazon S3 must decrypt and read data
     # from the encrypted file parts before it completes the multipart
@@ -1578,11 +1656,10 @@ module Aws::S3
     # permissions][7] in the *Amazon S3 User Guide*.
     #
     # If your Identity and Access Management (IAM) user or role is in the
-    # same Amazon Web Services account as the Amazon Web Services KMS CMK,
-    # then you must have these permissions on the key policy. If your IAM
-    # user or role belongs to a different account than the key, then you
-    # must have the permissions on both the key policy and your IAM user or
-    # role.
+    # same Amazon Web Services account as the KMS key, then you must have
+    # these permissions on the key policy. If your IAM user or role belongs
+    # to a different account than the key, then you must have the
+    # permissions on both the key policy and your IAM user or role.
     #
     # For more information, see [Protecting Data Using Server-Side
     # Encryption][8].
@@ -1615,11 +1692,11 @@ module Aws::S3
     #   option you use depends on whether you want to use Amazon Web
     #   Services managed encryption keys or provide your own encryption key.
     #
-    #   * Use encryption keys managed by Amazon S3 or customer master keys
-    #     (CMKs) stored in Amazon Web Services Key Management Service
-    #     (Amazon Web Services KMS) – If you want Amazon Web Services to
-    #     manage the keys used to encrypt data, specify the following
-    #     headers in the request.
+    #   * Use encryption keys managed by Amazon S3 or customer managed key
+    #     stored in Amazon Web Services Key Management Service (Amazon Web
+    #     Services KMS) – If you want Amazon Web Services to manage the keys
+    #     used to encrypt data, specify the following headers in the
+    #     request.
     #
     #     * x-amz-server-side-encryption
     #
@@ -1629,7 +1706,7 @@ module Aws::S3
     #
     #     <note markdown="1"> If you specify `x-amz-server-side-encryption:aws:kms`, but don't
     #     provide `x-amz-server-side-encryption-aws-kms-key-id`, Amazon S3
-    #     uses the Amazon Web Services managed CMK in Amazon Web Services
+    #     uses the Amazon Web Services managed key in Amazon Web Services
     #     KMS to protect the data.
     #
     #      </note>
@@ -1638,10 +1715,9 @@ module Aws::S3
     #     Services KMS fail if you don't make them with SSL or by using
     #     SigV4.
     #
-    #     For more information about server-side encryption with CMKs stored
-    #     in Amazon Web Services KMS (SSE-KMS), see [Protecting Data Using
-    #     Server-Side Encryption with CMKs stored in Amazon Web Services
-    #     KMS][11].
+    #     For more information about server-side encryption with KMS key
+    #     (SSE-KMS), see [Protecting Data Using Server-Side Encryption with
+    #     KMS keys][11].
     #
     #   * Use customer-provided encryption keys – If you want to manage your
     #     own encryption keys, provide all the following headers in the
@@ -1653,10 +1729,9 @@ module Aws::S3
     #
     #     * x-amz-server-side-encryption-customer-key-MD5
     #
-    #     For more information about server-side encryption with CMKs stored
-    #     in Amazon Web Services KMS (SSE-KMS), see [Protecting Data Using
-    #     Server-Side Encryption with CMKs stored in Amazon Web Services
-    #     KMS][11].
+    #     For more information about server-side encryption with KMS keys
+    #     (SSE-KMS), see [Protecting Data Using Server-Side Encryption with
+    #     KMS keys][11].
     #
     # Access-Control-List (ACL)-Specific Request Headers
     #
@@ -1881,13 +1956,13 @@ module Aws::S3
     #   ensure that the encryption key was transmitted without error.
     #
     # @option params [String] :ssekms_key_id
-    #   Specifies the ID of the symmetric customer managed Amazon Web Services
-    #   KMS CMK to use for object encryption. All GET and PUT requests for an
-    #   object protected by Amazon Web Services KMS will fail if not made via
-    #   SSL or using SigV4. For information about configuring using any of the
-    #   officially supported Amazon Web Services SDKs and Amazon Web Services
-    #   CLI, see [Specifying the Signature Version in Request
-    #   Authentication][1] in the *Amazon S3 User Guide*.
+    #   Specifies the ID of the symmetric customer managed key to use for
+    #   object encryption. All GET and PUT requests for an object protected by
+    #   Amazon Web Services KMS will fail if not made via SSL or using SigV4.
+    #   For information about configuring using any of the officially
+    #   supported Amazon Web Services SDKs and Amazon Web Services CLI, see
+    #   [Specifying the Signature Version in Request Authentication][1] in the
+    #   *Amazon S3 User Guide*.
     #
     #
     #
@@ -1990,7 +2065,7 @@ module Aws::S3
     #       "MetadataKey" => "MetadataValue",
     #     },
     #     server_side_encryption: "AES256", # accepts AES256, aws:kms
-    #     storage_class: "STANDARD", # accepts STANDARD, REDUCED_REDUNDANCY, STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, GLACIER, DEEP_ARCHIVE, OUTPOSTS
+    #     storage_class: "STANDARD", # accepts STANDARD, REDUCED_REDUNDANCY, STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, GLACIER, DEEP_ARCHIVE, OUTPOSTS, GLACIER_IR
     #     website_redirect_location: "WebsiteRedirectLocation",
     #     sse_customer_algorithm: "SSECustomerAlgorithm",
     #     sse_customer_key: "SSECustomerKey",
@@ -2257,21 +2332,22 @@ module Aws::S3
     #
     # The S3 Intelligent-Tiering storage class is designed to optimize
     # storage costs by automatically moving data to the most cost-effective
-    # storage access tier, without additional operational overhead. S3
-    # Intelligent-Tiering delivers automatic cost savings by moving data
-    # between access tiers, when access patterns change.
-    #
-    # The S3 Intelligent-Tiering storage class is suitable for objects
-    # larger than 128 KB that you plan to store for at least 30 days. If the
-    # size of an object is less than 128 KB, it is not eligible for
+    # storage access tier, without performance impact or operational
+    # overhead. S3 Intelligent-Tiering delivers automatic cost savings in
+    # three low latency and high throughput access tiers. To get the lowest
+    # storage cost on data that can be accessed in minutes to hours, you can
+    # choose to activate additional archiving capabilities.
+    #
+    # The S3 Intelligent-Tiering storage class is the ideal storage class
+    # for data with unknown, changing, or unpredictable access patterns,
+    # independent of object size or retention period. If the size of an
+    # object is less than 128 KB, it is not monitored and not eligible for
     # auto-tiering. Smaller objects can be stored, but they are always
-    # charged at the frequent access tier rates in the S3
+    # charged at the Frequent Access tier rates in the S3
     # Intelligent-Tiering storage class.
     #
-    # If you delete an object before the end of the 30-day minimum storage
-    # duration period, you are charged for 30 days. For more information,
-    # see [Storage class for automatically optimizing frequently and
-    # infrequently accessed objects][1].
+    # For more information, see [Storage class for automatically optimizing
+    # frequently and infrequently accessed objects][1].
     #
     # Operations related to `DeleteBucketIntelligentTieringConfiguration`
     # include:
@@ -3429,15 +3505,24 @@ module Aws::S3
     # can return the ACL of the bucket without using an authorization
     # header.
     #
+    # <note markdown="1"> If your bucket uses the bucket owner enforced setting for S3 Object
+    # Ownership, requests to read ACLs are still supported and return the
+    # `bucket-owner-full-control` ACL with the owner being the account that
+    # created the bucket. For more information, see [ Controlling object
+    # ownership and disabling ACLs][1] in the *Amazon S3 User Guide*.
+    #
+    #  </note>
+    #
     # **Related Resources**
     #
-    # * [ListObjects][1]
+    # * [ListObjects][2]
     #
     # ^
     #
     #
     #
-    # [1]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_ListObjects.html
+    # [1]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/about-object-ownership.html
+    # [2]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_ListObjects.html
     #
     # @option params [required, String] :bucket
     #   Specifies the S3 bucket whose ACL is being requested.
@@ -3721,21 +3806,22 @@ module Aws::S3
     #
     # The S3 Intelligent-Tiering storage class is designed to optimize
     # storage costs by automatically moving data to the most cost-effective
-    # storage access tier, without additional operational overhead. S3
-    # Intelligent-Tiering delivers automatic cost savings by moving data
-    # between access tiers, when access patterns change.
-    #
-    # The S3 Intelligent-Tiering storage class is suitable for objects
-    # larger than 128 KB that you plan to store for at least 30 days. If the
-    # size of an object is less than 128 KB, it is not eligible for
+    # storage access tier, without performance impact or operational
+    # overhead. S3 Intelligent-Tiering delivers automatic cost savings in
+    # three low latency and high throughput access tiers. To get the lowest
+    # storage cost on data that can be accessed in minutes to hours, you can
+    # choose to activate additional archiving capabilities.
+    #
+    # The S3 Intelligent-Tiering storage class is the ideal storage class
+    # for data with unknown, changing, or unpredictable access patterns,
+    # independent of object size or retention period. If the size of an
+    # object is less than 128 KB, it is not monitored and not eligible for
     # auto-tiering. Smaller objects can be stored, but they are always
-    # charged at the frequent access tier rates in the S3
+    # charged at the Frequent Access tier rates in the S3
     # Intelligent-Tiering storage class.
     #
-    # If you delete an object before the end of the 30-day minimum storage
-    # duration period, you are charged for 30 days. For more information,
-    # see [Storage class for automatically optimizing frequently and
-    # infrequently accessed objects][1].
+    # For more information, see [Storage class for automatically optimizing
+    # frequently and infrequently accessed objects][1].
     #
     # Operations related to `GetBucketIntelligentTieringConfiguration`
     # include:
@@ -3971,10 +4057,12 @@ module Aws::S3
     #   resp.rules[0].status #=> String, one of "Enabled", "Disabled"
     #   resp.rules[0].transition.date #=> Time
     #   resp.rules[0].transition.days #=> Integer
-    #   resp.rules[0].transition.storage_class #=> String, one of "GLACIER", "STANDARD_IA", "ONEZONE_IA", "INTELLIGENT_TIERING", "DEEP_ARCHIVE"
+    #   resp.rules[0].transition.storage_class #=> String, one of "GLACIER", "STANDARD_IA", "ONEZONE_IA", "INTELLIGENT_TIERING", "DEEP_ARCHIVE", "GLACIER_IR"
     #   resp.rules[0].noncurrent_version_transition.noncurrent_days #=> Integer
-    #   resp.rules[0].noncurrent_version_transition.storage_class #=> String, one of "GLACIER", "STANDARD_IA", "ONEZONE_IA", "INTELLIGENT_TIERING", "DEEP_ARCHIVE"
+    #   resp.rules[0].noncurrent_version_transition.storage_class #=> String, one of "GLACIER", "STANDARD_IA", "ONEZONE_IA", "INTELLIGENT_TIERING", "DEEP_ARCHIVE", "GLACIER_IR"
+    #   resp.rules[0].noncurrent_version_transition.newer_noncurrent_versions #=> Integer
     #   resp.rules[0].noncurrent_version_expiration.noncurrent_days #=> Integer
+    #   resp.rules[0].noncurrent_version_expiration.newer_noncurrent_versions #=> Integer
     #   resp.rules[0].abort_incomplete_multipart_upload.days_after_initiation #=> Integer
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/s3-2006-03-01/GetBucketLifecycle AWS API Documentation
@@ -4092,19 +4180,25 @@ module Aws::S3
     #   resp.rules[0].filter.prefix #=> String
     #   resp.rules[0].filter.tag.key #=> String
     #   resp.rules[0].filter.tag.value #=> String
+    #   resp.rules[0].filter.object_size_greater_than #=> Integer
+    #   resp.rules[0].filter.object_size_less_than #=> Integer
     #   resp.rules[0].filter.and.prefix #=> String
     #   resp.rules[0].filter.and.tags #=> Array
     #   resp.rules[0].filter.and.tags[0].key #=> String
     #   resp.rules[0].filter.and.tags[0].value #=> String
+    #   resp.rules[0].filter.and.object_size_greater_than #=> Integer
+    #   resp.rules[0].filter.and.object_size_less_than #=> Integer
     #   resp.rules[0].status #=> String, one of "Enabled", "Disabled"
     #   resp.rules[0].transitions #=> Array
     #   resp.rules[0].transitions[0].date #=> Time
     #   resp.rules[0].transitions[0].days #=> Integer
-    #   resp.rules[0].transitions[0].storage_class #=> String, one of "GLACIER", "STANDARD_IA", "ONEZONE_IA", "INTELLIGENT_TIERING", "DEEP_ARCHIVE"
+    #   resp.rules[0].transitions[0].storage_class #=> String, one of "GLACIER", "STANDARD_IA", "ONEZONE_IA", "INTELLIGENT_TIERING", "DEEP_ARCHIVE", "GLACIER_IR"
     #   resp.rules[0].noncurrent_version_transitions #=> Array
     #   resp.rules[0].noncurrent_version_transitions[0].noncurrent_days #=> Integer
-    #   resp.rules[0].noncurrent_version_transitions[0].storage_class #=> String, one of "GLACIER", "STANDARD_IA", "ONEZONE_IA", "INTELLIGENT_TIERING", "DEEP_ARCHIVE"
+    #   resp.rules[0].noncurrent_version_transitions[0].storage_class #=> String, one of "GLACIER", "STANDARD_IA", "ONEZONE_IA", "INTELLIGENT_TIERING", "DEEP_ARCHIVE", "GLACIER_IR"
+    #   resp.rules[0].noncurrent_version_transitions[0].newer_noncurrent_versions #=> Integer
     #   resp.rules[0].noncurrent_version_expiration.noncurrent_days #=> Integer
+    #   resp.rules[0].noncurrent_version_expiration.newer_noncurrent_versions #=> Integer
     #   resp.rules[0].abort_incomplete_multipart_upload.days_after_initiation #=> Integer
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/s3-2006-03-01/GetBucketLifecycleConfiguration AWS API Documentation
@@ -4302,10 +4396,12 @@ module Aws::S3
     #   resp.metrics_configuration.filter.prefix #=> String
     #   resp.metrics_configuration.filter.tag.key #=> String
     #   resp.metrics_configuration.filter.tag.value #=> String
+    #   resp.metrics_configuration.filter.access_point_arn #=> String
     #   resp.metrics_configuration.filter.and.prefix #=> String
     #   resp.metrics_configuration.filter.and.tags #=> Array
     #   resp.metrics_configuration.filter.and.tags[0].key #=> String
     #   resp.metrics_configuration.filter.and.tags[0].value #=> String
+    #   resp.metrics_configuration.filter.and.access_point_arn #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/s3-2006-03-01/GetBucketMetricsConfiguration AWS API Documentation
     #
@@ -4405,18 +4501,18 @@ module Aws::S3
     #
     #   resp.topic_configuration.id #=> String
     #   resp.topic_configuration.events #=> Array
-    #   resp.topic_configuration.events[0] #=> String, one of "s3:ReducedRedundancyLostObject", "s3:ObjectCreated:*", "s3:ObjectCreated:Put", "s3:ObjectCreated:Post", "s3:ObjectCreated:Copy", "s3:ObjectCreated:CompleteMultipartUpload", "s3:ObjectRemoved:*", "s3:ObjectRemoved:Delete", "s3:ObjectRemoved:DeleteMarkerCreated", "s3:ObjectRestore:*", "s3:ObjectRestore:Post", "s3:ObjectRestore:Completed", "s3:Replication:*", "s3:Replication:OperationFailedReplication", "s3:Replication:OperationNotTracked", "s3:Replication:OperationMissedThreshold", "s3:Replication:OperationReplicatedAfterThreshold"
-    #   resp.topic_configuration.event #=> String, one of "s3:ReducedRedundancyLostObject", "s3:ObjectCreated:*", "s3:ObjectCreated:Put", "s3:ObjectCreated:Post", "s3:ObjectCreated:Copy", "s3:ObjectCreated:CompleteMultipartUpload", "s3:ObjectRemoved:*", "s3:ObjectRemoved:Delete", "s3:ObjectRemoved:DeleteMarkerCreated", "s3:ObjectRestore:*", "s3:ObjectRestore:Post", "s3:ObjectRestore:Completed", "s3:Replication:*", "s3:Replication:OperationFailedReplication", "s3:Replication:OperationNotTracked", "s3:Replication:OperationMissedThreshold", "s3:Replication:OperationReplicatedAfterThreshold"
+    #   resp.topic_configuration.events[0] #=> String, one of "s3:ReducedRedundancyLostObject", "s3:ObjectCreated:*", "s3:ObjectCreated:Put", "s3:ObjectCreated:Post", "s3:ObjectCreated:Copy", "s3:ObjectCreated:CompleteMultipartUpload", "s3:ObjectRemoved:*", "s3:ObjectRemoved:Delete", "s3:ObjectRemoved:DeleteMarkerCreated", "s3:ObjectRestore:*", "s3:ObjectRestore:Post", "s3:ObjectRestore:Completed", "s3:Replication:*", "s3:Replication:OperationFailedReplication", "s3:Replication:OperationNotTracked", "s3:Replication:OperationMissedThreshold", "s3:Replication:OperationReplicatedAfterThreshold", "s3:ObjectRestore:Delete", "s3:LifecycleTransition", "s3:IntelligentTiering", "s3:ObjectAcl:Put", "s3:LifecycleExpiration:*", "s3:LifecycleExpiration:Delete", "s3:LifecycleExpiration:DeleteMarkerCreated", "s3:ObjectTagging:*", "s3:ObjectTagging:Put", "s3:ObjectTagging:Delete"
+    #   resp.topic_configuration.event #=> String, one of "s3:ReducedRedundancyLostObject", "s3:ObjectCreated:*", "s3:ObjectCreated:Put", "s3:ObjectCreated:Post", "s3:ObjectCreated:Copy", "s3:ObjectCreated:CompleteMultipartUpload", "s3:ObjectRemoved:*", "s3:ObjectRemoved:Delete", "s3:ObjectRemoved:DeleteMarkerCreated", "s3:ObjectRestore:*", "s3:ObjectRestore:Post", "s3:ObjectRestore:Completed", "s3:Replication:*", "s3:Replication:OperationFailedReplication", "s3:Replication:OperationNotTracked", "s3:Replication:OperationMissedThreshold", "s3:Replication:OperationReplicatedAfterThreshold", "s3:ObjectRestore:Delete", "s3:LifecycleTransition", "s3:IntelligentTiering", "s3:ObjectAcl:Put", "s3:LifecycleExpiration:*", "s3:LifecycleExpiration:Delete", "s3:LifecycleExpiration:DeleteMarkerCreated", "s3:ObjectTagging:*", "s3:ObjectTagging:Put", "s3:ObjectTagging:Delete"
     #   resp.topic_configuration.topic #=> String
     #   resp.queue_configuration.id #=> String
-    #   resp.queue_configuration.event #=> String, one of "s3:ReducedRedundancyLostObject", "s3:ObjectCreated:*", "s3:ObjectCreated:Put", "s3:ObjectCreated:Post", "s3:ObjectCreated:Copy", "s3:ObjectCreated:CompleteMultipartUpload", "s3:ObjectRemoved:*", "s3:ObjectRemoved:Delete", "s3:ObjectRemoved:DeleteMarkerCreated", "s3:ObjectRestore:*", "s3:ObjectRestore:Post", "s3:ObjectRestore:Completed", "s3:Replication:*", "s3:Replication:OperationFailedReplication", "s3:Replication:OperationNotTracked", "s3:Replication:OperationMissedThreshold", "s3:Replication:OperationReplicatedAfterThreshold"
+    #   resp.queue_configuration.event #=> String, one of "s3:ReducedRedundancyLostObject", "s3:ObjectCreated:*", "s3:ObjectCreated:Put", "s3:ObjectCreated:Post", "s3:ObjectCreated:Copy", "s3:ObjectCreated:CompleteMultipartUpload", "s3:ObjectRemoved:*", "s3:ObjectRemoved:Delete", "s3:ObjectRemoved:DeleteMarkerCreated", "s3:ObjectRestore:*", "s3:ObjectRestore:Post", "s3:ObjectRestore:Completed", "s3:Replication:*", "s3:Replication:OperationFailedReplication", "s3:Replication:OperationNotTracked", "s3:Replication:OperationMissedThreshold", "s3:Replication:OperationReplicatedAfterThreshold", "s3:ObjectRestore:Delete", "s3:LifecycleTransition", "s3:IntelligentTiering", "s3:ObjectAcl:Put", "s3:LifecycleExpiration:*", "s3:LifecycleExpiration:Delete", "s3:LifecycleExpiration:DeleteMarkerCreated", "s3:ObjectTagging:*", "s3:ObjectTagging:Put", "s3:ObjectTagging:Delete"
     #   resp.queue_configuration.events #=> Array
-    #   resp.queue_configuration.events[0] #=> String, one of "s3:ReducedRedundancyLostObject", "s3:ObjectCreated:*", "s3:ObjectCreated:Put", "s3:ObjectCreated:Post", "s3:ObjectCreated:Copy", "s3:ObjectCreated:CompleteMultipartUpload", "s3:ObjectRemoved:*", "s3:ObjectRemoved:Delete", "s3:ObjectRemoved:DeleteMarkerCreated", "s3:ObjectRestore:*", "s3:ObjectRestore:Post", "s3:ObjectRestore:Completed", "s3:Replication:*", "s3:Replication:OperationFailedReplication", "s3:Replication:OperationNotTracked", "s3:Replication:OperationMissedThreshold", "s3:Replication:OperationReplicatedAfterThreshold"
+    #   resp.queue_configuration.events[0] #=> String, one of "s3:ReducedRedundancyLostObject", "s3:ObjectCreated:*", "s3:ObjectCreated:Put", "s3:ObjectCreated:Post", "s3:ObjectCreated:Copy", "s3:ObjectCreated:CompleteMultipartUpload", "s3:ObjectRemoved:*", "s3:ObjectRemoved:Delete", "s3:ObjectRemoved:DeleteMarkerCreated", "s3:ObjectRestore:*", "s3:ObjectRestore:Post", "s3:ObjectRestore:Completed", "s3:Replication:*", "s3:Replication:OperationFailedReplication", "s3:Replication:OperationNotTracked", "s3:Replication:OperationMissedThreshold", "s3:Replication:OperationReplicatedAfterThreshold", "s3:ObjectRestore:Delete", "s3:LifecycleTransition", "s3:IntelligentTiering", "s3:ObjectAcl:Put", "s3:LifecycleExpiration:*", "s3:LifecycleExpiration:Delete", "s3:LifecycleExpiration:DeleteMarkerCreated", "s3:ObjectTagging:*", "s3:ObjectTagging:Put", "s3:ObjectTagging:Delete"
     #   resp.queue_configuration.queue #=> String
     #   resp.cloud_function_configuration.id #=> String
-    #   resp.cloud_function_configuration.event #=> String, one of "s3:ReducedRedundancyLostObject", "s3:ObjectCreated:*", "s3:ObjectCreated:Put", "s3:ObjectCreated:Post", "s3:ObjectCreated:Copy", "s3:ObjectCreated:CompleteMultipartUpload", "s3:ObjectRemoved:*", "s3:ObjectRemoved:Delete", "s3:ObjectRemoved:DeleteMarkerCreated", "s3:ObjectRestore:*", "s3:ObjectRestore:Post", "s3:ObjectRestore:Completed", "s3:Replication:*", "s3:Replication:OperationFailedReplication", "s3:Replication:OperationNotTracked", "s3:Replication:OperationMissedThreshold", "s3:Replication:OperationReplicatedAfterThreshold"
+    #   resp.cloud_function_configuration.event #=> String, one of "s3:ReducedRedundancyLostObject", "s3:ObjectCreated:*", "s3:ObjectCreated:Put", "s3:ObjectCreated:Post", "s3:ObjectCreated:Copy", "s3:ObjectCreated:CompleteMultipartUpload", "s3:ObjectRemoved:*", "s3:ObjectRemoved:Delete", "s3:ObjectRemoved:DeleteMarkerCreated", "s3:ObjectRestore:*", "s3:ObjectRestore:Post", "s3:ObjectRestore:Completed", "s3:Replication:*", "s3:Replication:OperationFailedReplication", "s3:Replication:OperationNotTracked", "s3:Replication:OperationMissedThreshold", "s3:Replication:OperationReplicatedAfterThreshold", "s3:ObjectRestore:Delete", "s3:LifecycleTransition", "s3:IntelligentTiering", "s3:ObjectAcl:Put", "s3:LifecycleExpiration:*", "s3:LifecycleExpiration:Delete", "s3:LifecycleExpiration:DeleteMarkerCreated", "s3:ObjectTagging:*", "s3:ObjectTagging:Put", "s3:ObjectTagging:Delete"
     #   resp.cloud_function_configuration.events #=> Array
-    #   resp.cloud_function_configuration.events[0] #=> String, one of "s3:ReducedRedundancyLostObject", "s3:ObjectCreated:*", "s3:ObjectCreated:Put", "s3:ObjectCreated:Post", "s3:ObjectCreated:Copy", "s3:ObjectCreated:CompleteMultipartUpload", "s3:ObjectRemoved:*", "s3:ObjectRemoved:Delete", "s3:ObjectRemoved:DeleteMarkerCreated", "s3:ObjectRestore:*", "s3:ObjectRestore:Post", "s3:ObjectRestore:Completed", "s3:Replication:*", "s3:Replication:OperationFailedReplication", "s3:Replication:OperationNotTracked", "s3:Replication:OperationMissedThreshold", "s3:Replication:OperationReplicatedAfterThreshold"
+    #   resp.cloud_function_configuration.events[0] #=> String, one of "s3:ReducedRedundancyLostObject", "s3:ObjectCreated:*", "s3:ObjectCreated:Put", "s3:ObjectCreated:Post", "s3:ObjectCreated:Copy", "s3:ObjectCreated:CompleteMultipartUpload", "s3:ObjectRemoved:*", "s3:ObjectRemoved:Delete", "s3:ObjectRemoved:DeleteMarkerCreated", "s3:ObjectRestore:*", "s3:ObjectRestore:Post", "s3:ObjectRestore:Completed", "s3:Replication:*", "s3:Replication:OperationFailedReplication", "s3:Replication:OperationNotTracked", "s3:Replication:OperationMissedThreshold", "s3:Replication:OperationReplicatedAfterThreshold", "s3:ObjectRestore:Delete", "s3:LifecycleTransition", "s3:IntelligentTiering", "s3:ObjectAcl:Put", "s3:LifecycleExpiration:*", "s3:LifecycleExpiration:Delete", "s3:LifecycleExpiration:DeleteMarkerCreated", "s3:ObjectTagging:*", "s3:ObjectTagging:Put", "s3:ObjectTagging:Delete"
     #   resp.cloud_function_configuration.cloud_function #=> String
     #   resp.cloud_function_configuration.invocation_role #=> String
     #
@@ -4470,6 +4566,7 @@ module Aws::S3
     #   * {Types::NotificationConfiguration#topic_configurations #topic_configurations} => Array&lt;Types::TopicConfiguration&gt;
     #   * {Types::NotificationConfiguration#queue_configurations #queue_configurations} => Array&lt;Types::QueueConfiguration&gt;
     #   * {Types::NotificationConfiguration#lambda_function_configurations #lambda_function_configurations} => Array&lt;Types::LambdaFunctionConfiguration&gt;
+    #   * {Types::NotificationConfiguration#event_bridge_configuration #event_bridge_configuration} => Types::EventBridgeConfiguration
     #
     # @example Request syntax with placeholder values
     #
@@ -4484,7 +4581,7 @@ module Aws::S3
     #   resp.topic_configurations[0].id #=> String
     #   resp.topic_configurations[0].topic_arn #=> String
     #   resp.topic_configurations[0].events #=> Array
-    #   resp.topic_configurations[0].events[0] #=> String, one of "s3:ReducedRedundancyLostObject", "s3:ObjectCreated:*", "s3:ObjectCreated:Put", "s3:ObjectCreated:Post", "s3:ObjectCreated:Copy", "s3:ObjectCreated:CompleteMultipartUpload", "s3:ObjectRemoved:*", "s3:ObjectRemoved:Delete", "s3:ObjectRemoved:DeleteMarkerCreated", "s3:ObjectRestore:*", "s3:ObjectRestore:Post", "s3:ObjectRestore:Completed", "s3:Replication:*", "s3:Replication:OperationFailedReplication", "s3:Replication:OperationNotTracked", "s3:Replication:OperationMissedThreshold", "s3:Replication:OperationReplicatedAfterThreshold"
+    #   resp.topic_configurations[0].events[0] #=> String, one of "s3:ReducedRedundancyLostObject", "s3:ObjectCreated:*", "s3:ObjectCreated:Put", "s3:ObjectCreated:Post", "s3:ObjectCreated:Copy", "s3:ObjectCreated:CompleteMultipartUpload", "s3:ObjectRemoved:*", "s3:ObjectRemoved:Delete", "s3:ObjectRemoved:DeleteMarkerCreated", "s3:ObjectRestore:*", "s3:ObjectRestore:Post", "s3:ObjectRestore:Completed", "s3:Replication:*", "s3:Replication:OperationFailedReplication", "s3:Replication:OperationNotTracked", "s3:Replication:OperationMissedThreshold", "s3:Replication:OperationReplicatedAfterThreshold", "s3:ObjectRestore:Delete", "s3:LifecycleTransition", "s3:IntelligentTiering", "s3:ObjectAcl:Put", "s3:LifecycleExpiration:*", "s3:LifecycleExpiration:Delete", "s3:LifecycleExpiration:DeleteMarkerCreated", "s3:ObjectTagging:*", "s3:ObjectTagging:Put", "s3:ObjectTagging:Delete"
     #   resp.topic_configurations[0].filter.key.filter_rules #=> Array
     #   resp.topic_configurations[0].filter.key.filter_rules[0].name #=> String, one of "prefix", "suffix"
     #   resp.topic_configurations[0].filter.key.filter_rules[0].value #=> String
@@ -4492,7 +4589,7 @@ module Aws::S3
     #   resp.queue_configurations[0].id #=> String
     #   resp.queue_configurations[0].queue_arn #=> String
     #   resp.queue_configurations[0].events #=> Array
-    #   resp.queue_configurations[0].events[0] #=> String, one of "s3:ReducedRedundancyLostObject", "s3:ObjectCreated:*", "s3:ObjectCreated:Put", "s3:ObjectCreated:Post", "s3:ObjectCreated:Copy", "s3:ObjectCreated:CompleteMultipartUpload", "s3:ObjectRemoved:*", "s3:ObjectRemoved:Delete", "s3:ObjectRemoved:DeleteMarkerCreated", "s3:ObjectRestore:*", "s3:ObjectRestore:Post", "s3:ObjectRestore:Completed", "s3:Replication:*", "s3:Replication:OperationFailedReplication", "s3:Replication:OperationNotTracked", "s3:Replication:OperationMissedThreshold", "s3:Replication:OperationReplicatedAfterThreshold"
+    #   resp.queue_configurations[0].events[0] #=> String, one of "s3:ReducedRedundancyLostObject", "s3:ObjectCreated:*", "s3:ObjectCreated:Put", "s3:ObjectCreated:Post", "s3:ObjectCreated:Copy", "s3:ObjectCreated:CompleteMultipartUpload", "s3:ObjectRemoved:*", "s3:ObjectRemoved:Delete", "s3:ObjectRemoved:DeleteMarkerCreated", "s3:ObjectRestore:*", "s3:ObjectRestore:Post", "s3:ObjectRestore:Completed", "s3:Replication:*", "s3:Replication:OperationFailedReplication", "s3:Replication:OperationNotTracked", "s3:Replication:OperationMissedThreshold", "s3:Replication:OperationReplicatedAfterThreshold", "s3:ObjectRestore:Delete", "s3:LifecycleTransition", "s3:IntelligentTiering", "s3:ObjectAcl:Put", "s3:LifecycleExpiration:*", "s3:LifecycleExpiration:Delete", "s3:LifecycleExpiration:DeleteMarkerCreated", "s3:ObjectTagging:*", "s3:ObjectTagging:Put", "s3:ObjectTagging:Delete"
     #   resp.queue_configurations[0].filter.key.filter_rules #=> Array
     #   resp.queue_configurations[0].filter.key.filter_rules[0].name #=> String, one of "prefix", "suffix"
     #   resp.queue_configurations[0].filter.key.filter_rules[0].value #=> String
@@ -4500,7 +4597,7 @@ module Aws::S3
     #   resp.lambda_function_configurations[0].id #=> String
     #   resp.lambda_function_configurations[0].lambda_function_arn #=> String
     #   resp.lambda_function_configurations[0].events #=> Array
-    #   resp.lambda_function_configurations[0].events[0] #=> String, one of "s3:ReducedRedundancyLostObject", "s3:ObjectCreated:*", "s3:ObjectCreated:Put", "s3:ObjectCreated:Post", "s3:ObjectCreated:Copy", "s3:ObjectCreated:CompleteMultipartUpload", "s3:ObjectRemoved:*", "s3:ObjectRemoved:Delete", "s3:ObjectRemoved:DeleteMarkerCreated", "s3:ObjectRestore:*", "s3:ObjectRestore:Post", "s3:ObjectRestore:Completed", "s3:Replication:*", "s3:Replication:OperationFailedReplication", "s3:Replication:OperationNotTracked", "s3:Replication:OperationMissedThreshold", "s3:Replication:OperationReplicatedAfterThreshold"
+    #   resp.lambda_function_configurations[0].events[0] #=> String, one of "s3:ReducedRedundancyLostObject", "s3:ObjectCreated:*", "s3:ObjectCreated:Put", "s3:ObjectCreated:Post", "s3:ObjectCreated:Copy", "s3:ObjectCreated:CompleteMultipartUpload", "s3:ObjectRemoved:*", "s3:ObjectRemoved:Delete", "s3:ObjectRemoved:DeleteMarkerCreated", "s3:ObjectRestore:*", "s3:ObjectRestore:Post", "s3:ObjectRestore:Completed", "s3:Replication:*", "s3:Replication:OperationFailedReplication", "s3:Replication:OperationNotTracked", "s3:Replication:OperationMissedThreshold", "s3:Replication:OperationReplicatedAfterThreshold", "s3:ObjectRestore:Delete", "s3:LifecycleTransition", "s3:IntelligentTiering", "s3:ObjectAcl:Put", "s3:LifecycleExpiration:*", "s3:LifecycleExpiration:Delete", "s3:LifecycleExpiration:DeleteMarkerCreated", "s3:ObjectTagging:*", "s3:ObjectTagging:Put", "s3:ObjectTagging:Delete"
     #   resp.lambda_function_configurations[0].filter.key.filter_rules #=> Array
     #   resp.lambda_function_configurations[0].filter.key.filter_rules[0].name #=> String, one of "prefix", "suffix"
     #   resp.lambda_function_configurations[0].filter.key.filter_rules[0].value #=> String
@@ -4517,7 +4614,7 @@ module Aws::S3
     # Retrieves `OwnershipControls` for an Amazon S3 bucket. To use this
     # operation, you must have the `s3:GetBucketOwnershipControls`
     # permission. For more information about Amazon S3 permissions, see
-    # [Specifying Permissions in a Policy][1].
+    # [Specifying permissions in a policy][1].
     #
     # For information about Amazon S3 Object Ownership, see [Using Object
     # Ownership][2].
@@ -4530,8 +4627,8 @@ module Aws::S3
     #
     #
     #
-    # [1]: https://docs.aws.amazon.com/AmazonS3/latest/dev/using-with-s3-actions.html
-    # [2]: https://docs.aws.amazon.com/AmazonS3/latest/dev/about-object-ownership.html
+    # [1]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/using-with-s3-actions.html
+    # [2]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/about-object-ownership.html
     #
     # @option params [required, String] :bucket
     #   The name of the Amazon S3 bucket whose `OwnershipControls` you want to
@@ -4556,7 +4653,7 @@ module Aws::S3
     # @example Response structure
     #
     #   resp.ownership_controls.rules #=> Array
-    #   resp.ownership_controls.rules[0].object_ownership #=> String, one of "BucketOwnerPreferred", "ObjectWriter"
+    #   resp.ownership_controls.rules[0].object_ownership #=> String, one of "BucketOwnerPreferred", "ObjectWriter", "BucketOwnerEnforced"
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/s3-2006-03-01/GetBucketOwnershipControls AWS API Documentation
     #
@@ -4805,7 +4902,7 @@ module Aws::S3
     #   resp.replication_configuration.rules[0].existing_object_replication.status #=> String, one of "Enabled", "Disabled"
     #   resp.replication_configuration.rules[0].destination.bucket #=> String
     #   resp.replication_configuration.rules[0].destination.account #=> String
-    #   resp.replication_configuration.rules[0].destination.storage_class #=> String, one of "STANDARD", "REDUCED_REDUNDANCY", "STANDARD_IA", "ONEZONE_IA", "INTELLIGENT_TIERING", "GLACIER", "DEEP_ARCHIVE", "OUTPOSTS"
+    #   resp.replication_configuration.rules[0].destination.storage_class #=> String, one of "STANDARD", "REDUCED_REDUNDANCY", "STANDARD_IA", "ONEZONE_IA", "INTELLIGENT_TIERING", "GLACIER", "DEEP_ARCHIVE", "OUTPOSTS", "GLACIER_IR"
     #   resp.replication_configuration.rules[0].destination.access_control_translation.owner #=> String, one of "Destination"
     #   resp.replication_configuration.rules[0].destination.encryption_configuration.replica_kms_key_id #=> String
     #   resp.replication_configuration.rules[0].destination.replication_time.status #=> String, one of "Enabled", "Disabled"
@@ -5163,10 +5260,9 @@ module Aws::S3
     #
     # Encryption request headers, like `x-amz-server-side-encryption`,
     # should not be sent for GET requests if your object uses server-side
-    # encryption with CMKs stored in Amazon Web Services KMS (SSE-KMS) or
-    # server-side encryption with Amazon S3–managed encryption keys
-    # (SSE-S3). If your object does use these types of keys, you’ll get an
-    # HTTP 400 BadRequest error.
+    # encryption with KMS keys (SSE-KMS) or server-side encryption with
+    # Amazon S3–managed encryption keys (SSE-S3). If your object does use
+    # these types of keys, you’ll get an HTTP 400 BadRequest error.
     #
     # If you encrypt an object by using server-side encryption with
     # customer-provided encryption keys (SSE-C) when you store the object in
@@ -5207,8 +5303,10 @@ module Aws::S3
     # By default, the GET action returns the current version of an object.
     # To return a different version, use the `versionId` subresource.
     #
-    # <note markdown="1"> * You need the `s3:GetObjectVersion` permission to access a specific
-    #   version of an object.
+    # <note markdown="1"> * If you supply a `versionId`, you need the `s3:GetObjectVersion`
+    #   permission to access a specific version of an object. If you request
+    #   a specific version, you do not need to have the `s3:GetObject`
+    #   permission.
     #
     # * If the current version of the object is a delete marker, Amazon S3
     #   behaves as if the object was deleted and includes
@@ -5301,6 +5399,9 @@ module Aws::S3
     #   name. For more information about access point ARNs, see [Using access
     #   points][1] in the *Amazon S3 User Guide*.
     #
+    #   When using an Object Lambda access point the hostname takes the form
+    #   *AccessPointName*-*AccountId*.s3-object-lambda.*Region*.amazonaws.com.
+    #
     #   When using this action with Amazon S3 on Outposts, you must direct
     #   requests to the S3 on Outposts hostname. The S3 on Outposts hostname
     #   takes the form
@@ -5572,7 +5673,7 @@ module Aws::S3
     #   resp.sse_customer_key_md5 #=> String
     #   resp.ssekms_key_id #=> String
     #   resp.bucket_key_enabled #=> Boolean
-    #   resp.storage_class #=> String, one of "STANDARD", "REDUCED_REDUNDANCY", "STANDARD_IA", "ONEZONE_IA", "INTELLIGENT_TIERING", "GLACIER", "DEEP_ARCHIVE", "OUTPOSTS"
+    #   resp.storage_class #=> String, one of "STANDARD", "REDUCED_REDUNDANCY", "STANDARD_IA", "ONEZONE_IA", "INTELLIGENT_TIERING", "GLACIER", "DEEP_ARCHIVE", "OUTPOSTS", "GLACIER_IR"
     #   resp.request_charged #=> String, one of "requester"
     #   resp.replication_status #=> String, one of "COMPLETE", "PENDING", "FAILED", "REPLICA"
     #   resp.parts_count #=> Integer
@@ -5601,19 +5702,28 @@ module Aws::S3
     # an object. To return ACL information about a different version, use
     # the versionId subresource.
     #
+    # <note markdown="1"> If your bucket uses the bucket owner enforced setting for S3 Object
+    # Ownership, requests to read ACLs are still supported and return the
+    # `bucket-owner-full-control` ACL with the owner being the account that
+    # created the bucket. For more information, see [ Controlling object
+    # ownership and disabling ACLs][1] in the *Amazon S3 User Guide*.
+    #
+    #  </note>
+    #
     # The following operations are related to `GetObjectAcl`\:
     #
-    # * [GetObject][1]
+    # * [GetObject][2]
     #
-    # * [DeleteObject][2]
+    # * [DeleteObject][3]
     #
-    # * [PutObject][3]
+    # * [PutObject][4]
     #
     #
     #
-    # [1]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetObject.html
-    # [2]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteObject.html
-    # [3]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutObject.html
+    # [1]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/about-object-ownership.html
+    # [2]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetObject.html
+    # [3]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteObject.html
+    # [4]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutObject.html
     #
     # @option params [required, String] :bucket
     #   The bucket name that contains the object for which to get the ACL
@@ -6390,10 +6500,9 @@ module Aws::S3
     #
     # <note markdown="1"> * Encryption request headers, like `x-amz-server-side-encryption`,
     #   should not be sent for GET requests if your object uses server-side
-    #   encryption with CMKs stored in Amazon Web Services KMS (SSE-KMS) or
-    #   server-side encryption with Amazon S3–managed encryption keys
-    #   (SSE-S3). If your object does use these types of keys, you’ll get an
-    #   HTTP 400 BadRequest error.
+    #   encryption with KMS keys (SSE-KMS) or server-side encryption with
+    #   Amazon S3–managed encryption keys (SSE-S3). If your object does use
+    #   these types of keys, you’ll get an HTTP 400 BadRequest error.
     #
     # * The last modified property in this case is the creation date of the
     #   object.
@@ -6498,18 +6607,8 @@ module Aws::S3
     #   The object key.
     #
     # @option params [String] :range
-    #   Downloads the specified range bytes of an object. For more information
-    #   about the HTTP Range header, see
-    #   [http://www.w3.org/Protocols/rfc2616/rfc2616-sec14.html#sec14.35][1].
-    #
-    #   <note markdown="1"> Amazon S3 doesn't support retrieving multiple ranges of data per
-    #   `GET` request.
-    #
-    #    </note>
-    #
-    #
-    #
-    #   [1]: http://www.w3.org/Protocols/rfc2616/rfc2616-sec14.html#sec14.35
+    #   Because `HeadObject` returns only the metadata for an object, this
+    #   parameter has no effect.
     #
     # @option params [String] :version_id
     #   VersionId used to reference a specific version of the object.
@@ -6654,7 +6753,7 @@ module Aws::S3
     #   resp.sse_customer_key_md5 #=> String
     #   resp.ssekms_key_id #=> String
     #   resp.bucket_key_enabled #=> Boolean
-    #   resp.storage_class #=> String, one of "STANDARD", "REDUCED_REDUNDANCY", "STANDARD_IA", "ONEZONE_IA", "INTELLIGENT_TIERING", "GLACIER", "DEEP_ARCHIVE", "OUTPOSTS"
+    #   resp.storage_class #=> String, one of "STANDARD", "REDUCED_REDUNDANCY", "STANDARD_IA", "ONEZONE_IA", "INTELLIGENT_TIERING", "GLACIER", "DEEP_ARCHIVE", "OUTPOSTS", "GLACIER_IR"
     #   resp.request_charged #=> String, one of "requester"
     #   resp.replication_status #=> String, one of "COMPLETE", "PENDING", "FAILED", "REPLICA"
     #   resp.parts_count #=> Integer
@@ -6779,21 +6878,22 @@ module Aws::S3
     #
     # The S3 Intelligent-Tiering storage class is designed to optimize
     # storage costs by automatically moving data to the most cost-effective
-    # storage access tier, without additional operational overhead. S3
-    # Intelligent-Tiering delivers automatic cost savings by moving data
-    # between access tiers, when access patterns change.
-    #
-    # The S3 Intelligent-Tiering storage class is suitable for objects
-    # larger than 128 KB that you plan to store for at least 30 days. If the
-    # size of an object is less than 128 KB, it is not eligible for
+    # storage access tier, without performance impact or operational
+    # overhead. S3 Intelligent-Tiering delivers automatic cost savings in
+    # three low latency and high throughput access tiers. To get the lowest
+    # storage cost on data that can be accessed in minutes to hours, you can
+    # choose to activate additional archiving capabilities.
+    #
+    # The S3 Intelligent-Tiering storage class is the ideal storage class
+    # for data with unknown, changing, or unpredictable access patterns,
+    # independent of object size or retention period. If the size of an
+    # object is less than 128 KB, it is not monitored and not eligible for
     # auto-tiering. Smaller objects can be stored, but they are always
-    # charged at the frequent access tier rates in the S3
+    # charged at the Frequent Access tier rates in the S3
     # Intelligent-Tiering storage class.
     #
-    # If you delete an object before the end of the 30-day minimum storage
-    # duration period, you are charged for 30 days. For more information,
-    # see [Storage class for automatically optimizing frequently and
-    # infrequently accessed objects][1].
+    # For more information, see [Storage class for automatically optimizing
+    # frequently and infrequently accessed objects][1].
     #
     # Operations related to `ListBucketIntelligentTieringConfigurations`
     # include:
@@ -7041,10 +7141,12 @@ module Aws::S3
     #   resp.metrics_configuration_list[0].filter.prefix #=> String
     #   resp.metrics_configuration_list[0].filter.tag.key #=> String
     #   resp.metrics_configuration_list[0].filter.tag.value #=> String
+    #   resp.metrics_configuration_list[0].filter.access_point_arn #=> String
     #   resp.metrics_configuration_list[0].filter.and.prefix #=> String
     #   resp.metrics_configuration_list[0].filter.and.tags #=> Array
     #   resp.metrics_configuration_list[0].filter.and.tags[0].key #=> String
     #   resp.metrics_configuration_list[0].filter.and.tags[0].value #=> String
+    #   resp.metrics_configuration_list[0].filter.and.access_point_arn #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/s3-2006-03-01/ListBucketMetricsConfigurations AWS API Documentation
     #
@@ -7381,7 +7483,7 @@ module Aws::S3
     #   resp.uploads[0].upload_id #=> String
     #   resp.uploads[0].key #=> String
     #   resp.uploads[0].initiated #=> Time
-    #   resp.uploads[0].storage_class #=> String, one of "STANDARD", "REDUCED_REDUNDANCY", "STANDARD_IA", "ONEZONE_IA", "INTELLIGENT_TIERING", "GLACIER", "DEEP_ARCHIVE", "OUTPOSTS"
+    #   resp.uploads[0].storage_class #=> String, one of "STANDARD", "REDUCED_REDUNDANCY", "STANDARD_IA", "ONEZONE_IA", "INTELLIGENT_TIERING", "GLACIER", "DEEP_ARCHIVE", "OUTPOSTS", "GLACIER_IR"
     #   resp.uploads[0].owner.display_name #=> String
     #   resp.uploads[0].owner.id #=> String
     #   resp.uploads[0].initiator.id #=> String
@@ -7761,7 +7863,7 @@ module Aws::S3
     #   resp.contents[0].last_modified #=> Time
     #   resp.contents[0].etag #=> String
     #   resp.contents[0].size #=> Integer
-    #   resp.contents[0].storage_class #=> String, one of "STANDARD", "REDUCED_REDUNDANCY", "GLACIER", "STANDARD_IA", "ONEZONE_IA", "INTELLIGENT_TIERING", "DEEP_ARCHIVE", "OUTPOSTS"
+    #   resp.contents[0].storage_class #=> String, one of "STANDARD", "REDUCED_REDUNDANCY", "GLACIER", "STANDARD_IA", "ONEZONE_IA", "INTELLIGENT_TIERING", "DEEP_ARCHIVE", "OUTPOSTS", "GLACIER_IR"
     #   resp.contents[0].owner.display_name #=> String
     #   resp.contents[0].owner.id #=> String
     #   resp.name #=> String
@@ -7966,7 +8068,7 @@ module Aws::S3
     #   resp.contents[0].last_modified #=> Time
     #   resp.contents[0].etag #=> String
     #   resp.contents[0].size #=> Integer
-    #   resp.contents[0].storage_class #=> String, one of "STANDARD", "REDUCED_REDUNDANCY", "GLACIER", "STANDARD_IA", "ONEZONE_IA", "INTELLIGENT_TIERING", "DEEP_ARCHIVE", "OUTPOSTS"
+    #   resp.contents[0].storage_class #=> String, one of "STANDARD", "REDUCED_REDUNDANCY", "GLACIER", "STANDARD_IA", "ONEZONE_IA", "INTELLIGENT_TIERING", "DEEP_ARCHIVE", "OUTPOSTS", "GLACIER_IR"
     #   resp.contents[0].owner.display_name #=> String
     #   resp.contents[0].owner.id #=> String
     #   resp.name #=> String
@@ -8175,7 +8277,7 @@ module Aws::S3
     #   resp.initiator.display_name #=> String
     #   resp.owner.display_name #=> String
     #   resp.owner.id #=> String
-    #   resp.storage_class #=> String, one of "STANDARD", "REDUCED_REDUNDANCY", "STANDARD_IA", "ONEZONE_IA", "INTELLIGENT_TIERING", "GLACIER", "DEEP_ARCHIVE", "OUTPOSTS"
+    #   resp.storage_class #=> String, one of "STANDARD", "REDUCED_REDUNDANCY", "STANDARD_IA", "ONEZONE_IA", "INTELLIGENT_TIERING", "GLACIER", "DEEP_ARCHIVE", "OUTPOSTS", "GLACIER_IR"
     #   resp.request_charged #=> String, one of "requester"
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/s3-2006-03-01/ListParts AWS API Documentation
@@ -8286,6 +8388,14 @@ module Aws::S3
     # you have an existing application that updates a bucket ACL using the
     # request body, then you can continue to use that approach.
     #
+    # If your bucket uses the bucket owner enforced setting for S3 Object
+    # Ownership, ACLs are disabled and no longer affect permissions. You
+    # must use policies to grant access to your bucket and the objects in
+    # it. Requests to set ACLs or update ACLs fail and return the
+    # `AccessControlListNotSupported` error code. Requests to read ACLs are
+    # still supported. For more information, see [Controlling object
+    # ownership][2] in the *Amazon S3 User Guide*.
+    #
     # **Access Permissions**
     #
     # You can set access permissions using one of the following methods:
@@ -8295,7 +8405,7 @@ module Aws::S3
     #   canned ACL has a predefined set of grantees and permissions. Specify
     #   the canned ACL name as the value of `x-amz-acl`. If you use this
     #   header, you cannot use other access control-specific headers in your
-    #   request. For more information, see [Canned ACL][2].
+    #   request. For more information, see [Canned ACL][3].
     #
     # * Specify access permissions explicitly with the `x-amz-grant-read`,
     #   `x-amz-grant-read-acp`, `x-amz-grant-write-acp`, and
@@ -8305,7 +8415,7 @@ module Aws::S3
     #   permission. If you use these ACL-specific headers, you cannot use
     #   the `x-amz-acl` header to set a canned ACL. These parameters map to
     #   the set of permissions that Amazon S3 supports in an ACL. For more
-    #   information, see [Access Control List (ACL) Overview][3].
+    #   information, see [Access Control List (ACL) Overview][4].
     #
     #   You specify each grantee as a type=value pair, where the type is one
     #   of the following:
@@ -8338,7 +8448,7 @@ module Aws::S3
     #     * South America (São Paulo)
     #
     #      For a list of all the Amazon S3 supported Regions and endpoints,
-    #     see [Regions and Endpoints][4] in the Amazon Web Services General
+    #     see [Regions and Endpoints][5] in the Amazon Web Services General
     #     Reference.
     #
     #      </note>
@@ -8401,28 +8511,29 @@ module Aws::S3
     #   * South America (São Paulo)
     #
     #    For a list of all the Amazon S3 supported Regions and endpoints, see
-    #   [Regions and Endpoints][4] in the Amazon Web Services General
+    #   [Regions and Endpoints][5] in the Amazon Web Services General
     #   Reference.
     #
     #    </note>
     #
     # **Related Resources**
     #
-    # * [CreateBucket][5]
+    # * [CreateBucket][6]
     #
-    # * [DeleteBucket][6]
+    # * [DeleteBucket][7]
     #
-    # * [GetObjectAcl][7]
+    # * [GetObjectAcl][8]
     #
     #
     #
     # [1]: https://docs.aws.amazon.com/AmazonS3/latest/dev/S3_ACLs_UsingACLs.html
-    # [2]: https://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html#CannedACL
-    # [3]: https://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html
-    # [4]: https://docs.aws.amazon.com/general/latest/gr/rande.html#s3_region
-    # [5]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_CreateBucket.html
-    # [6]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteBucket.html
-    # [7]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetObjectAcl.html
+    # [2]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/about-object-ownership.html
+    # [3]: https://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html#CannedACL
+    # [4]: https://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html
+    # [5]: https://docs.aws.amazon.com/general/latest/gr/rande.html#s3_region
+    # [6]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_CreateBucket.html
+    # [7]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteBucket.html
+    # [8]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetObjectAcl.html
     #
     # @option params [String] :acl
     #   The canned ACL to apply to the bucket.
@@ -8822,12 +8933,12 @@ module Aws::S3
     # encryption and Amazon S3 Bucket Key for an existing bucket.
     #
     # Default encryption for a bucket can use server-side encryption with
-    # Amazon S3-managed keys (SSE-S3) or Amazon Web Services KMS customer
-    # master keys (SSE-KMS). If you specify default encryption using
-    # SSE-KMS, you can also configure Amazon S3 Bucket Key. For information
-    # about default encryption, see [Amazon S3 default bucket encryption][1]
-    # in the *Amazon S3 User Guide*. For more information about S3 Bucket
-    # Keys, see [Amazon S3 Bucket Keys][2] in the *Amazon S3 User Guide*.
+    # Amazon S3-managed keys (SSE-S3) or customer managed keys (SSE-KMS). If
+    # you specify default encryption using SSE-KMS, you can also configure
+    # Amazon S3 Bucket Key. For information about default encryption, see
+    # [Amazon S3 default bucket encryption][1] in the *Amazon S3 User
+    # Guide*. For more information about S3 Bucket Keys, see [Amazon S3
+    # Bucket Keys][2] in the *Amazon S3 User Guide*.
     #
     # This action requires Amazon Web Services Signature Version 4. For more
     # information, see [ Authenticating Requests (Amazon Web Services
@@ -8859,10 +8970,10 @@ module Aws::S3
     #
     # @option params [required, String] :bucket
     #   Specifies default encryption for a bucket using server-side encryption
-    #   with Amazon S3-managed keys (SSE-S3) or customer master keys stored in
-    #   Amazon Web Services KMS (SSE-KMS). For information about the Amazon S3
-    #   default encryption feature, see [Amazon S3 Default Bucket
-    #   Encryption][1] in the *Amazon S3 User Guide*.
+    #   with Amazon S3-managed keys (SSE-S3) or customer managed keys
+    #   (SSE-KMS). For information about the Amazon S3 default encryption
+    #   feature, see [Amazon S3 Default Bucket Encryption][1] in the *Amazon
+    #   S3 User Guide*.
     #
     #
     #
@@ -8920,21 +9031,22 @@ module Aws::S3
     #
     # The S3 Intelligent-Tiering storage class is designed to optimize
     # storage costs by automatically moving data to the most cost-effective
-    # storage access tier, without additional operational overhead. S3
-    # Intelligent-Tiering delivers automatic cost savings by moving data
-    # between access tiers, when access patterns change.
-    #
-    # The S3 Intelligent-Tiering storage class is suitable for objects
-    # larger than 128 KB that you plan to store for at least 30 days. If the
-    # size of an object is less than 128 KB, it is not eligible for
+    # storage access tier, without performance impact or operational
+    # overhead. S3 Intelligent-Tiering delivers automatic cost savings in
+    # three low latency and high throughput access tiers. To get the lowest
+    # storage cost on data that can be accessed in minutes to hours, you can
+    # choose to activate additional archiving capabilities.
+    #
+    # The S3 Intelligent-Tiering storage class is the ideal storage class
+    # for data with unknown, changing, or unpredictable access patterns,
+    # independent of object size or retention period. If the size of an
+    # object is less than 128 KB, it is not monitored and not eligible for
     # auto-tiering. Smaller objects can be stored, but they are always
-    # charged at the frequent access tier rates in the S3
+    # charged at the Frequent Access tier rates in the S3
     # Intelligent-Tiering storage class.
     #
-    # If you delete an object before the end of the 30-day minimum storage
-    # duration period, you are charged for 30 days. For more information,
-    # see [Storage class for automatically optimizing frequently and
-    # infrequently accessed objects][1].
+    # For more information, see [Storage class for automatically optimizing
+    # frequently and infrequently accessed objects][1].
     #
     # Operations related to `PutBucketIntelligentTieringConfiguration`
     # include:
@@ -9268,14 +9380,16 @@ module Aws::S3
     #           transition: {
     #             date: Time.now,
     #             days: 1,
-    #             storage_class: "GLACIER", # accepts GLACIER, STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, DEEP_ARCHIVE
+    #             storage_class: "GLACIER", # accepts GLACIER, STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, DEEP_ARCHIVE, GLACIER_IR
     #           },
     #           noncurrent_version_transition: {
     #             noncurrent_days: 1,
-    #             storage_class: "GLACIER", # accepts GLACIER, STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, DEEP_ARCHIVE
+    #             storage_class: "GLACIER", # accepts GLACIER, STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, DEEP_ARCHIVE, GLACIER_IR
+    #             newer_noncurrent_versions: 1,
     #           },
     #           noncurrent_version_expiration: {
     #             noncurrent_days: 1,
+    #             newer_noncurrent_versions: 1,
     #           },
     #           abort_incomplete_multipart_upload: {
     #             days_after_initiation: 1,
@@ -9437,6 +9551,8 @@ module Aws::S3
     #               key: "ObjectKey", # required
     #               value: "Value", # required
     #             },
+    #             object_size_greater_than: 1,
+    #             object_size_less_than: 1,
     #             and: {
     #               prefix: "Prefix",
     #               tags: [
@@ -9445,6 +9561,8 @@ module Aws::S3
     #                   value: "Value", # required
     #                 },
     #               ],
+    #               object_size_greater_than: 1,
+    #               object_size_less_than: 1,
     #             },
     #           },
     #           status: "Enabled", # required, accepts Enabled, Disabled
@@ -9452,17 +9570,19 @@ module Aws::S3
     #             {
     #               date: Time.now,
     #               days: 1,
-    #               storage_class: "GLACIER", # accepts GLACIER, STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, DEEP_ARCHIVE
+    #               storage_class: "GLACIER", # accepts GLACIER, STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, DEEP_ARCHIVE, GLACIER_IR
     #             },
     #           ],
     #           noncurrent_version_transitions: [
     #             {
     #               noncurrent_days: 1,
-    #               storage_class: "GLACIER", # accepts GLACIER, STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, DEEP_ARCHIVE
+    #               storage_class: "GLACIER", # accepts GLACIER, STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, DEEP_ARCHIVE, GLACIER_IR
+    #               newer_noncurrent_versions: 1,
     #             },
     #           ],
     #           noncurrent_version_expiration: {
     #             noncurrent_days: 1,
+    #             newer_noncurrent_versions: 1,
     #           },
     #           abort_incomplete_multipart_upload: {
     #             days_after_initiation: 1,
@@ -9492,6 +9612,12 @@ module Aws::S3
     # The `Permissions` request element specifies the kind of access the
     # grantee has to the logs.
     #
+    # If the target bucket for log delivery uses the bucket owner enforced
+    # setting for S3 Object Ownership, you can't use the `Grantee` request
+    # element to grant access to others. Permissions can only be granted
+    # using policies. For more information, see [Permissions for server
+    # access log delivery][1] in the *Amazon S3 User Guide*.
+    #
     # **Grantee Values**
     #
     # You can specify the person (grantee) to whom you're assigning access
@@ -9526,29 +9652,30 @@ module Aws::S3
     # />`
     #
     # For more information about server access logging, see [Server Access
-    # Logging][1].
+    # Logging][2] in the *Amazon S3 User Guide*.
     #
-    # For more information about creating a bucket, see [CreateBucket][2].
+    # For more information about creating a bucket, see [CreateBucket][3].
     # For more information about returning the logging status of a bucket,
-    # see [GetBucketLogging][3].
+    # see [GetBucketLogging][4].
     #
     # The following operations are related to `PutBucketLogging`\:
     #
-    # * [PutObject][4]
+    # * [PutObject][5]
     #
-    # * [DeleteBucket][5]
+    # * [DeleteBucket][6]
     #
-    # * [CreateBucket][2]
+    # * [CreateBucket][3]
     #
-    # * [GetBucketLogging][3]
+    # * [GetBucketLogging][4]
     #
     #
     #
-    # [1]: https://docs.aws.amazon.com/AmazonS3/latest/dev/ServerLogs.html
-    # [2]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_CreateBucket.html
-    # [3]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketLogging.html
-    # [4]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutObject.html
-    # [5]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteBucket.html
+    # [1]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/enable-server-access-logging.html#grant-log-delivery-permissions-general
+    # [2]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/ServerLogs.html
+    # [3]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_CreateBucket.html
+    # [4]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketLogging.html
+    # [5]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutObject.html
+    # [6]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteBucket.html
     #
     # @option params [required, String] :bucket
     #   The name of the bucket for which to set the logging parameters.
@@ -9652,7 +9779,7 @@ module Aws::S3
     #
     # * [DeleteBucketMetricsConfiguration][4]
     #
-    # * [PutBucketMetricsConfiguration][5]
+    # * [GetBucketMetricsConfiguration][5]
     #
     # * [ListBucketMetricsConfigurations][6]
     #
@@ -9671,7 +9798,7 @@ module Aws::S3
     # [2]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/s3-access-control.html
     # [3]: https://docs.aws.amazon.com/AmazonS3/latest/dev/cloudwatch-monitoring.html
     # [4]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteBucketMetricsConfiguration.html
-    # [5]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutBucketMetricsConfiguration.html
+    # [5]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketMetricsConfiguration.html
     # [6]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_ListBucketMetricsConfigurations.html
     #
     # @option params [required, String] :bucket
@@ -9703,6 +9830,7 @@ module Aws::S3
     #           key: "ObjectKey", # required
     #           value: "Value", # required
     #         },
+    #         access_point_arn: "AccessPointArn",
     #         and: {
     #           prefix: "Prefix",
     #           tags: [
@@ -9711,6 +9839,7 @@ module Aws::S3
     #               value: "Value", # required
     #             },
     #           ],
+    #           access_point_arn: "AccessPointArn",
     #         },
     #       },
     #     },
@@ -9761,20 +9890,20 @@ module Aws::S3
     #     notification_configuration: { # required
     #       topic_configuration: {
     #         id: "NotificationId",
-    #         events: ["s3:ReducedRedundancyLostObject"], # accepts s3:ReducedRedundancyLostObject, s3:ObjectCreated:*, s3:ObjectCreated:Put, s3:ObjectCreated:Post, s3:ObjectCreated:Copy, s3:ObjectCreated:CompleteMultipartUpload, s3:ObjectRemoved:*, s3:ObjectRemoved:Delete, s3:ObjectRemoved:DeleteMarkerCreated, s3:ObjectRestore:*, s3:ObjectRestore:Post, s3:ObjectRestore:Completed, s3:Replication:*, s3:Replication:OperationFailedReplication, s3:Replication:OperationNotTracked, s3:Replication:OperationMissedThreshold, s3:Replication:OperationReplicatedAfterThreshold
-    #         event: "s3:ReducedRedundancyLostObject", # accepts s3:ReducedRedundancyLostObject, s3:ObjectCreated:*, s3:ObjectCreated:Put, s3:ObjectCreated:Post, s3:ObjectCreated:Copy, s3:ObjectCreated:CompleteMultipartUpload, s3:ObjectRemoved:*, s3:ObjectRemoved:Delete, s3:ObjectRemoved:DeleteMarkerCreated, s3:ObjectRestore:*, s3:ObjectRestore:Post, s3:ObjectRestore:Completed, s3:Replication:*, s3:Replication:OperationFailedReplication, s3:Replication:OperationNotTracked, s3:Replication:OperationMissedThreshold, s3:Replication:OperationReplicatedAfterThreshold
+    #         events: ["s3:ReducedRedundancyLostObject"], # accepts s3:ReducedRedundancyLostObject, s3:ObjectCreated:*, s3:ObjectCreated:Put, s3:ObjectCreated:Post, s3:ObjectCreated:Copy, s3:ObjectCreated:CompleteMultipartUpload, s3:ObjectRemoved:*, s3:ObjectRemoved:Delete, s3:ObjectRemoved:DeleteMarkerCreated, s3:ObjectRestore:*, s3:ObjectRestore:Post, s3:ObjectRestore:Completed, s3:Replication:*, s3:Replication:OperationFailedReplication, s3:Replication:OperationNotTracked, s3:Replication:OperationMissedThreshold, s3:Replication:OperationReplicatedAfterThreshold, s3:ObjectRestore:Delete, s3:LifecycleTransition, s3:IntelligentTiering, s3:ObjectAcl:Put, s3:LifecycleExpiration:*, s3:LifecycleExpiration:Delete, s3:LifecycleExpiration:DeleteMarkerCreated, s3:ObjectTagging:*, s3:ObjectTagging:Put, s3:ObjectTagging:Delete
+    #         event: "s3:ReducedRedundancyLostObject", # accepts s3:ReducedRedundancyLostObject, s3:ObjectCreated:*, s3:ObjectCreated:Put, s3:ObjectCreated:Post, s3:ObjectCreated:Copy, s3:ObjectCreated:CompleteMultipartUpload, s3:ObjectRemoved:*, s3:ObjectRemoved:Delete, s3:ObjectRemoved:DeleteMarkerCreated, s3:ObjectRestore:*, s3:ObjectRestore:Post, s3:ObjectRestore:Completed, s3:Replication:*, s3:Replication:OperationFailedReplication, s3:Replication:OperationNotTracked, s3:Replication:OperationMissedThreshold, s3:Replication:OperationReplicatedAfterThreshold, s3:ObjectRestore:Delete, s3:LifecycleTransition, s3:IntelligentTiering, s3:ObjectAcl:Put, s3:LifecycleExpiration:*, s3:LifecycleExpiration:Delete, s3:LifecycleExpiration:DeleteMarkerCreated, s3:ObjectTagging:*, s3:ObjectTagging:Put, s3:ObjectTagging:Delete
     #         topic: "TopicArn",
     #       },
     #       queue_configuration: {
     #         id: "NotificationId",
-    #         event: "s3:ReducedRedundancyLostObject", # accepts s3:ReducedRedundancyLostObject, s3:ObjectCreated:*, s3:ObjectCreated:Put, s3:ObjectCreated:Post, s3:ObjectCreated:Copy, s3:ObjectCreated:CompleteMultipartUpload, s3:ObjectRemoved:*, s3:ObjectRemoved:Delete, s3:ObjectRemoved:DeleteMarkerCreated, s3:ObjectRestore:*, s3:ObjectRestore:Post, s3:ObjectRestore:Completed, s3:Replication:*, s3:Replication:OperationFailedReplication, s3:Replication:OperationNotTracked, s3:Replication:OperationMissedThreshold, s3:Replication:OperationReplicatedAfterThreshold
-    #         events: ["s3:ReducedRedundancyLostObject"], # accepts s3:ReducedRedundancyLostObject, s3:ObjectCreated:*, s3:ObjectCreated:Put, s3:ObjectCreated:Post, s3:ObjectCreated:Copy, s3:ObjectCreated:CompleteMultipartUpload, s3:ObjectRemoved:*, s3:ObjectRemoved:Delete, s3:ObjectRemoved:DeleteMarkerCreated, s3:ObjectRestore:*, s3:ObjectRestore:Post, s3:ObjectRestore:Completed, s3:Replication:*, s3:Replication:OperationFailedReplication, s3:Replication:OperationNotTracked, s3:Replication:OperationMissedThreshold, s3:Replication:OperationReplicatedAfterThreshold
+    #         event: "s3:ReducedRedundancyLostObject", # accepts s3:ReducedRedundancyLostObject, s3:ObjectCreated:*, s3:ObjectCreated:Put, s3:ObjectCreated:Post, s3:ObjectCreated:Copy, s3:ObjectCreated:CompleteMultipartUpload, s3:ObjectRemoved:*, s3:ObjectRemoved:Delete, s3:ObjectRemoved:DeleteMarkerCreated, s3:ObjectRestore:*, s3:ObjectRestore:Post, s3:ObjectRestore:Completed, s3:Replication:*, s3:Replication:OperationFailedReplication, s3:Replication:OperationNotTracked, s3:Replication:OperationMissedThreshold, s3:Replication:OperationReplicatedAfterThreshold, s3:ObjectRestore:Delete, s3:LifecycleTransition, s3:IntelligentTiering, s3:ObjectAcl:Put, s3:LifecycleExpiration:*, s3:LifecycleExpiration:Delete, s3:LifecycleExpiration:DeleteMarkerCreated, s3:ObjectTagging:*, s3:ObjectTagging:Put, s3:ObjectTagging:Delete
+    #         events: ["s3:ReducedRedundancyLostObject"], # accepts s3:ReducedRedundancyLostObject, s3:ObjectCreated:*, s3:ObjectCreated:Put, s3:ObjectCreated:Post, s3:ObjectCreated:Copy, s3:ObjectCreated:CompleteMultipartUpload, s3:ObjectRemoved:*, s3:ObjectRemoved:Delete, s3:ObjectRemoved:DeleteMarkerCreated, s3:ObjectRestore:*, s3:ObjectRestore:Post, s3:ObjectRestore:Completed, s3:Replication:*, s3:Replication:OperationFailedReplication, s3:Replication:OperationNotTracked, s3:Replication:OperationMissedThreshold, s3:Replication:OperationReplicatedAfterThreshold, s3:ObjectRestore:Delete, s3:LifecycleTransition, s3:IntelligentTiering, s3:ObjectAcl:Put, s3:LifecycleExpiration:*, s3:LifecycleExpiration:Delete, s3:LifecycleExpiration:DeleteMarkerCreated, s3:ObjectTagging:*, s3:ObjectTagging:Put, s3:ObjectTagging:Delete
     #         queue: "QueueArn",
     #       },
     #       cloud_function_configuration: {
     #         id: "NotificationId",
-    #         event: "s3:ReducedRedundancyLostObject", # accepts s3:ReducedRedundancyLostObject, s3:ObjectCreated:*, s3:ObjectCreated:Put, s3:ObjectCreated:Post, s3:ObjectCreated:Copy, s3:ObjectCreated:CompleteMultipartUpload, s3:ObjectRemoved:*, s3:ObjectRemoved:Delete, s3:ObjectRemoved:DeleteMarkerCreated, s3:ObjectRestore:*, s3:ObjectRestore:Post, s3:ObjectRestore:Completed, s3:Replication:*, s3:Replication:OperationFailedReplication, s3:Replication:OperationNotTracked, s3:Replication:OperationMissedThreshold, s3:Replication:OperationReplicatedAfterThreshold
-    #         events: ["s3:ReducedRedundancyLostObject"], # accepts s3:ReducedRedundancyLostObject, s3:ObjectCreated:*, s3:ObjectCreated:Put, s3:ObjectCreated:Post, s3:ObjectCreated:Copy, s3:ObjectCreated:CompleteMultipartUpload, s3:ObjectRemoved:*, s3:ObjectRemoved:Delete, s3:ObjectRemoved:DeleteMarkerCreated, s3:ObjectRestore:*, s3:ObjectRestore:Post, s3:ObjectRestore:Completed, s3:Replication:*, s3:Replication:OperationFailedReplication, s3:Replication:OperationNotTracked, s3:Replication:OperationMissedThreshold, s3:Replication:OperationReplicatedAfterThreshold
+    #         event: "s3:ReducedRedundancyLostObject", # accepts s3:ReducedRedundancyLostObject, s3:ObjectCreated:*, s3:ObjectCreated:Put, s3:ObjectCreated:Post, s3:ObjectCreated:Copy, s3:ObjectCreated:CompleteMultipartUpload, s3:ObjectRemoved:*, s3:ObjectRemoved:Delete, s3:ObjectRemoved:DeleteMarkerCreated, s3:ObjectRestore:*, s3:ObjectRestore:Post, s3:ObjectRestore:Completed, s3:Replication:*, s3:Replication:OperationFailedReplication, s3:Replication:OperationNotTracked, s3:Replication:OperationMissedThreshold, s3:Replication:OperationReplicatedAfterThreshold, s3:ObjectRestore:Delete, s3:LifecycleTransition, s3:IntelligentTiering, s3:ObjectAcl:Put, s3:LifecycleExpiration:*, s3:LifecycleExpiration:Delete, s3:LifecycleExpiration:DeleteMarkerCreated, s3:ObjectTagging:*, s3:ObjectTagging:Put, s3:ObjectTagging:Delete
+    #         events: ["s3:ReducedRedundancyLostObject"], # accepts s3:ReducedRedundancyLostObject, s3:ObjectCreated:*, s3:ObjectCreated:Put, s3:ObjectCreated:Post, s3:ObjectCreated:Copy, s3:ObjectCreated:CompleteMultipartUpload, s3:ObjectRemoved:*, s3:ObjectRemoved:Delete, s3:ObjectRemoved:DeleteMarkerCreated, s3:ObjectRestore:*, s3:ObjectRestore:Post, s3:ObjectRestore:Completed, s3:Replication:*, s3:Replication:OperationFailedReplication, s3:Replication:OperationNotTracked, s3:Replication:OperationMissedThreshold, s3:Replication:OperationReplicatedAfterThreshold, s3:ObjectRestore:Delete, s3:LifecycleTransition, s3:IntelligentTiering, s3:ObjectAcl:Put, s3:LifecycleExpiration:*, s3:LifecycleExpiration:Delete, s3:LifecycleExpiration:DeleteMarkerCreated, s3:ObjectTagging:*, s3:ObjectTagging:Put, s3:ObjectTagging:Delete
     #         cloud_function: "CloudFunction",
     #         invocation_role: "CloudFunctionInvocationRole",
     #       },
@@ -9871,6 +10000,10 @@ module Aws::S3
     #   a different account, the request will fail with an HTTP `403 (Access
     #   Denied)` error.
     #
+    # @option params [Boolean] :skip_destination_validation
+    #   Skips validation of Amazon SQS, Amazon SNS, and Lambda destinations.
+    #   True or false value.
+    #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
     #
@@ -9901,7 +10034,7 @@ module Aws::S3
     #         {
     #           id: "NotificationId",
     #           topic_arn: "TopicArn", # required
-    #           events: ["s3:ReducedRedundancyLostObject"], # required, accepts s3:ReducedRedundancyLostObject, s3:ObjectCreated:*, s3:ObjectCreated:Put, s3:ObjectCreated:Post, s3:ObjectCreated:Copy, s3:ObjectCreated:CompleteMultipartUpload, s3:ObjectRemoved:*, s3:ObjectRemoved:Delete, s3:ObjectRemoved:DeleteMarkerCreated, s3:ObjectRestore:*, s3:ObjectRestore:Post, s3:ObjectRestore:Completed, s3:Replication:*, s3:Replication:OperationFailedReplication, s3:Replication:OperationNotTracked, s3:Replication:OperationMissedThreshold, s3:Replication:OperationReplicatedAfterThreshold
+    #           events: ["s3:ReducedRedundancyLostObject"], # required, accepts s3:ReducedRedundancyLostObject, s3:ObjectCreated:*, s3:ObjectCreated:Put, s3:ObjectCreated:Post, s3:ObjectCreated:Copy, s3:ObjectCreated:CompleteMultipartUpload, s3:ObjectRemoved:*, s3:ObjectRemoved:Delete, s3:ObjectRemoved:DeleteMarkerCreated, s3:ObjectRestore:*, s3:ObjectRestore:Post, s3:ObjectRestore:Completed, s3:Replication:*, s3:Replication:OperationFailedReplication, s3:Replication:OperationNotTracked, s3:Replication:OperationMissedThreshold, s3:Replication:OperationReplicatedAfterThreshold, s3:ObjectRestore:Delete, s3:LifecycleTransition, s3:IntelligentTiering, s3:ObjectAcl:Put, s3:LifecycleExpiration:*, s3:LifecycleExpiration:Delete, s3:LifecycleExpiration:DeleteMarkerCreated, s3:ObjectTagging:*, s3:ObjectTagging:Put, s3:ObjectTagging:Delete
     #           filter: {
     #             key: {
     #               filter_rules: [
@@ -9918,7 +10051,7 @@ module Aws::S3
     #         {
     #           id: "NotificationId",
     #           queue_arn: "QueueArn", # required
-    #           events: ["s3:ReducedRedundancyLostObject"], # required, accepts s3:ReducedRedundancyLostObject, s3:ObjectCreated:*, s3:ObjectCreated:Put, s3:ObjectCreated:Post, s3:ObjectCreated:Copy, s3:ObjectCreated:CompleteMultipartUpload, s3:ObjectRemoved:*, s3:ObjectRemoved:Delete, s3:ObjectRemoved:DeleteMarkerCreated, s3:ObjectRestore:*, s3:ObjectRestore:Post, s3:ObjectRestore:Completed, s3:Replication:*, s3:Replication:OperationFailedReplication, s3:Replication:OperationNotTracked, s3:Replication:OperationMissedThreshold, s3:Replication:OperationReplicatedAfterThreshold
+    #           events: ["s3:ReducedRedundancyLostObject"], # required, accepts s3:ReducedRedundancyLostObject, s3:ObjectCreated:*, s3:ObjectCreated:Put, s3:ObjectCreated:Post, s3:ObjectCreated:Copy, s3:ObjectCreated:CompleteMultipartUpload, s3:ObjectRemoved:*, s3:ObjectRemoved:Delete, s3:ObjectRemoved:DeleteMarkerCreated, s3:ObjectRestore:*, s3:ObjectRestore:Post, s3:ObjectRestore:Completed, s3:Replication:*, s3:Replication:OperationFailedReplication, s3:Replication:OperationNotTracked, s3:Replication:OperationMissedThreshold, s3:Replication:OperationReplicatedAfterThreshold, s3:ObjectRestore:Delete, s3:LifecycleTransition, s3:IntelligentTiering, s3:ObjectAcl:Put, s3:LifecycleExpiration:*, s3:LifecycleExpiration:Delete, s3:LifecycleExpiration:DeleteMarkerCreated, s3:ObjectTagging:*, s3:ObjectTagging:Put, s3:ObjectTagging:Delete
     #           filter: {
     #             key: {
     #               filter_rules: [
@@ -9935,7 +10068,7 @@ module Aws::S3
     #         {
     #           id: "NotificationId",
     #           lambda_function_arn: "LambdaFunctionArn", # required
-    #           events: ["s3:ReducedRedundancyLostObject"], # required, accepts s3:ReducedRedundancyLostObject, s3:ObjectCreated:*, s3:ObjectCreated:Put, s3:ObjectCreated:Post, s3:ObjectCreated:Copy, s3:ObjectCreated:CompleteMultipartUpload, s3:ObjectRemoved:*, s3:ObjectRemoved:Delete, s3:ObjectRemoved:DeleteMarkerCreated, s3:ObjectRestore:*, s3:ObjectRestore:Post, s3:ObjectRestore:Completed, s3:Replication:*, s3:Replication:OperationFailedReplication, s3:Replication:OperationNotTracked, s3:Replication:OperationMissedThreshold, s3:Replication:OperationReplicatedAfterThreshold
+    #           events: ["s3:ReducedRedundancyLostObject"], # required, accepts s3:ReducedRedundancyLostObject, s3:ObjectCreated:*, s3:ObjectCreated:Put, s3:ObjectCreated:Post, s3:ObjectCreated:Copy, s3:ObjectCreated:CompleteMultipartUpload, s3:ObjectRemoved:*, s3:ObjectRemoved:Delete, s3:ObjectRemoved:DeleteMarkerCreated, s3:ObjectRestore:*, s3:ObjectRestore:Post, s3:ObjectRestore:Completed, s3:Replication:*, s3:Replication:OperationFailedReplication, s3:Replication:OperationNotTracked, s3:Replication:OperationMissedThreshold, s3:Replication:OperationReplicatedAfterThreshold, s3:ObjectRestore:Delete, s3:LifecycleTransition, s3:IntelligentTiering, s3:ObjectAcl:Put, s3:LifecycleExpiration:*, s3:LifecycleExpiration:Delete, s3:LifecycleExpiration:DeleteMarkerCreated, s3:ObjectTagging:*, s3:ObjectTagging:Put, s3:ObjectTagging:Delete
     #           filter: {
     #             key: {
     #               filter_rules: [
@@ -9948,8 +10081,11 @@ module Aws::S3
     #           },
     #         },
     #       ],
+    #       event_bridge_configuration: {
+    #       },
     #     },
     #     expected_bucket_owner: "AccountId",
+    #     skip_destination_validation: false,
     #   })
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/s3-2006-03-01/PutBucketNotificationConfiguration AWS API Documentation
@@ -9964,10 +10100,10 @@ module Aws::S3
     # Creates or modifies `OwnershipControls` for an Amazon S3 bucket. To
     # use this operation, you must have the `s3:PutBucketOwnershipControls`
     # permission. For more information about Amazon S3 permissions, see
-    # [Specifying Permissions in a Policy][1].
+    # [Specifying permissions in a policy][1].
     #
-    # For information about Amazon S3 Object Ownership, see [Using Object
-    # Ownership][2].
+    # For information about Amazon S3 Object Ownership, see [Using object
+    # ownership][2].
     #
     # The following operations are related to `PutBucketOwnershipControls`\:
     #
@@ -9977,8 +10113,8 @@ module Aws::S3
     #
     #
     #
-    # [1]: https://docs.aws.amazon.com/AmazonS3/latest/dev/using-with-s3-actions.html
-    # [2]: https://docs.aws.amazon.com/AmazonS3/latest/dev/about-object-ownership.html
+    # [1]: https://docs.aws.amazon.com/AmazonS3/latest/user-guide/using-with-s3-actions.html
+    # [2]: https://docs.aws.amazon.com/AmazonS3/latest/user-guide/about-object-ownership.html
     #
     # @option params [required, String] :bucket
     #   The name of the Amazon S3 bucket whose `OwnershipControls` you want to
@@ -9997,8 +10133,8 @@ module Aws::S3
     #   Denied)` error.
     #
     # @option params [required, Types::OwnershipControls] :ownership_controls
-    #   The `OwnershipControls` (BucketOwnerPreferred or ObjectWriter) that
-    #   you want to apply to this Amazon S3 bucket.
+    #   The `OwnershipControls` (BucketOwnerEnforced, BucketOwnerPreferred, or
+    #   ObjectWriter) that you want to apply to this Amazon S3 bucket.
     #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
@@ -10011,7 +10147,7 @@ module Aws::S3
     #     ownership_controls: { # required
     #       rules: [ # required
     #         {
-    #           object_ownership: "BucketOwnerPreferred", # required, accepts BucketOwnerPreferred, ObjectWriter
+    #           object_ownership: "BucketOwnerPreferred", # required, accepts BucketOwnerPreferred, ObjectWriter, BucketOwnerEnforced
     #         },
     #       ],
     #     },
@@ -10143,13 +10279,12 @@ module Aws::S3
     # **Handling Replication of Encrypted Objects**
     #
     # By default, Amazon S3 doesn't replicate objects that are stored at
-    # rest using server-side encryption with CMKs stored in Amazon Web
-    # Services KMS. To replicate Amazon Web Services KMS-encrypted objects,
-    # add the following: `SourceSelectionCriteria`,
-    # `SseKmsEncryptedObjects`, `Status`, `EncryptionConfiguration`, and
-    # `ReplicaKmsKeyID`. For information about replication configuration,
-    # see [Replicating Objects Created with SSE Using CMKs stored in Amazon
-    # Web Services KMS][4].
+    # rest using server-side encryption with KMS keys. To replicate Amazon
+    # Web Services KMS-encrypted objects, add the following:
+    # `SourceSelectionCriteria`, `SseKmsEncryptedObjects`, `Status`,
+    # `EncryptionConfiguration`, and `ReplicaKmsKeyID`. For information
+    # about replication configuration, see [Replicating Objects Created with
+    # SSE Using KMS keys][4].
     #
     # For information on `PutBucketReplication` errors, see [List of
     # replication-related error codes][5]
@@ -10285,7 +10420,7 @@ module Aws::S3
     #           destination: { # required
     #             bucket: "BucketName", # required
     #             account: "AccountId",
-    #             storage_class: "STANDARD", # accepts STANDARD, REDUCED_REDUNDANCY, STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, GLACIER, DEEP_ARCHIVE, OUTPOSTS
+    #             storage_class: "STANDARD", # accepts STANDARD, REDUCED_REDUNDANCY, STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, GLACIER, DEEP_ARCHIVE, OUTPOSTS, GLACIER_IR
     #             access_control_translation: {
     #               owner: "Destination", # required, accepts Destination
     #             },
@@ -10874,13 +11009,33 @@ module Aws::S3
     # information, see [Access Control List (ACL) Overview][4] and [Managing
     # ACLs Using the REST API][5].
     #
+    # If the bucket that you're uploading objects to uses the bucket owner
+    # enforced setting for S3 Object Ownership, ACLs are disabled and no
+    # longer affect permissions. Buckets that use this setting only accept
+    # PUT requests that don't specify an ACL or PUT requests that specify
+    # bucket owner full control ACLs, such as the
+    # `bucket-owner-full-control` canned ACL or an equivalent form of this
+    # ACL expressed in the XML format. PUT requests that contain other ACLs
+    # (for example, custom grants to certain Amazon Web Services accounts)
+    # fail and return a `400` error with the error code
+    # `AccessControlListNotSupported`.
+    #
+    # For more information, see [ Controlling ownership of objects and
+    # disabling ACLs][6] in the *Amazon S3 User Guide*.
+    #
+    # <note markdown="1"> If your bucket uses the bucket owner enforced setting for Object
+    # Ownership, all objects written to the bucket by any account will be
+    # owned by the bucket owner.
+    #
+    #  </note>
+    #
     # **Storage Class Options**
     #
     # By default, Amazon S3 uses the STANDARD Storage Class to store newly
     # created objects. The STANDARD storage class provides high durability
     # and high availability. Depending on performance needs, you can specify
     # a different Storage Class. Amazon S3 on Outposts only uses the
-    # OUTPOSTS Storage Class. For more information, see [Storage Classes][6]
+    # OUTPOSTS Storage Class. For more information, see [Storage Classes][7]
     # in the *Amazon S3 User Guide*.
     #
     # **Versioning**
@@ -10892,14 +11047,14 @@ module Aws::S3
     # object simultaneously, it stores all of the objects.
     #
     # For more information about versioning, see [Adding Objects to
-    # Versioning Enabled Buckets][7]. For information about returning the
-    # versioning state of a bucket, see [GetBucketVersioning][8].
+    # Versioning Enabled Buckets][8]. For information about returning the
+    # versioning state of a bucket, see [GetBucketVersioning][9].
     #
     # **Related Resources**
     #
-    # * [CopyObject][9]
+    # * [CopyObject][10]
     #
-    # * [DeleteObject][10]
+    # * [DeleteObject][11]
     #
     #
     #
@@ -10908,11 +11063,12 @@ module Aws::S3
     # [3]: https://docs.aws.amazon.com/AmazonS3/latest/dev/bucket-key.html
     # [4]: https://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html
     # [5]: https://docs.aws.amazon.com/AmazonS3/latest/dev/acl-using-rest-api.html
-    # [6]: https://docs.aws.amazon.com/AmazonS3/latest/dev/storage-class-intro.html
-    # [7]: https://docs.aws.amazon.com/AmazonS3/latest/dev/AddingObjectstoVersioningEnabledBuckets.html
-    # [8]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketVersioning.html
-    # [9]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_CopyObject.html
-    # [10]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteObject.html
+    # [6]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/about-object-ownership.html
+    # [7]: https://docs.aws.amazon.com/AmazonS3/latest/dev/storage-class-intro.html
+    # [8]: https://docs.aws.amazon.com/AmazonS3/latest/dev/AddingObjectstoVersioningEnabledBuckets.html
+    # [9]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketVersioning.html
+    # [10]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_CopyObject.html
+    # [11]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteObject.html
     #
     # @option params [String] :acl
     #   The canned ACL to apply to the object. For more information, see
@@ -11112,12 +11268,12 @@ module Aws::S3
     #   If `x-amz-server-side-encryption` is present and has the value of
     #   `aws:kms`, this header specifies the ID of the Amazon Web Services Key
     #   Management Service (Amazon Web Services KMS) symmetrical customer
-    #   managed customer master key (CMK) that was used for the object. If you
-    #   specify `x-amz-server-side-encryption:aws:kms`, but do not provide`
+    #   managed key that was used for the object. If you specify
+    #   `x-amz-server-side-encryption:aws:kms`, but do not provide`
     #   x-amz-server-side-encryption-aws-kms-key-id`, Amazon S3 uses the
-    #   Amazon Web Services managed CMK in Amazon Web Services to protect the
-    #   data. If the KMS key does not exist in the same account issuing the
-    #   command, you must use the full ARN and not just the ID.
+    #   Amazon Web Services managed key to protect the data. If the KMS key
+    #   does not exist in the same account issuing the command, you must use
+    #   the full ARN and not just the ID.
     #
     # @option params [String] :ssekms_encryption_context
     #   Specifies the Amazon Web Services KMS Encryption Context to use for
@@ -11341,7 +11497,7 @@ module Aws::S3
     #       "MetadataKey" => "MetadataValue",
     #     },
     #     server_side_encryption: "AES256", # accepts AES256, aws:kms
-    #     storage_class: "STANDARD", # accepts STANDARD, REDUCED_REDUNDANCY, STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, GLACIER, DEEP_ARCHIVE, OUTPOSTS
+    #     storage_class: "STANDARD", # accepts STANDARD, REDUCED_REDUNDANCY, STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, GLACIER, DEEP_ARCHIVE, OUTPOSTS, GLACIER_IR
     #     website_redirect_location: "WebsiteRedirectLocation",
     #     sse_customer_algorithm: "SSECustomerAlgorithm",
     #     sse_customer_key: "SSECustomerKey",
@@ -11394,6 +11550,14 @@ module Aws::S3
     # information, see [Access Control List (ACL) Overview][2] in the
     # *Amazon S3 User Guide*.
     #
+    # If your bucket uses the bucket owner enforced setting for S3 Object
+    # Ownership, ACLs are disabled and no longer affect permissions. You
+    # must use policies to grant access to your bucket and the objects in
+    # it. Requests to set ACLs or update ACLs fail and return the
+    # `AccessControlListNotSupported` error code. Requests to read ACLs are
+    # still supported. For more information, see [Controlling object
+    # ownership][3] in the *Amazon S3 User Guide*.
+    #
     # **Access Permissions**
     #
     # You can set access permissions using one of the following methods:
@@ -11403,7 +11567,7 @@ module Aws::S3
     #   ACL has a predefined set of grantees and permissions. Specify the
     #   canned ACL name as the value of `x-amz-ac`l. If you use this header,
     #   you cannot use other access control-specific headers in your
-    #   request. For more information, see [Canned ACL][3].
+    #   request. For more information, see [Canned ACL][4].
     #
     # * Specify access permissions explicitly with the `x-amz-grant-read`,
     #   `x-amz-grant-read-acp`, `x-amz-grant-write-acp`, and
@@ -11446,7 +11610,7 @@ module Aws::S3
     #     * South America (São Paulo)
     #
     #      For a list of all the Amazon S3 supported Regions and endpoints,
-    #     see [Regions and Endpoints][4] in the Amazon Web Services General
+    #     see [Regions and Endpoints][5] in the Amazon Web Services General
     #     Reference.
     #
     #      </note>
@@ -11507,7 +11671,7 @@ module Aws::S3
     #   * South America (São Paulo)
     #
     #    For a list of all the Amazon S3 supported Regions and endpoints, see
-    #   [Regions and Endpoints][4] in the Amazon Web Services General
+    #   [Regions and Endpoints][5] in the Amazon Web Services General
     #   Reference.
     #
     #    </note>
@@ -11520,18 +11684,19 @@ module Aws::S3
     #
     # **Related Resources**
     #
-    # * [CopyObject][5]
+    # * [CopyObject][6]
     #
-    # * [GetObject][6]
+    # * [GetObject][7]
     #
     #
     #
     # [1]: https://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html#permissions
     # [2]: https://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html
-    # [3]: https://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html#CannedACL
-    # [4]: https://docs.aws.amazon.com/general/latest/gr/rande.html#s3_region
-    # [5]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_CopyObject.html
-    # [6]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetObject.html
+    # [3]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/about-object-ownership.html
+    # [4]: https://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html#CannedACL
+    # [5]: https://docs.aws.amazon.com/general/latest/gr/rande.html#s3_region
+    # [6]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_CopyObject.html
+    # [7]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetObject.html
     #
     # @option params [String] :acl
     #   The canned ACL to apply to the object. For more information, see
@@ -12665,7 +12830,7 @@ module Aws::S3
     #               value: "MetadataValue",
     #             },
     #           ],
-    #           storage_class: "STANDARD", # accepts STANDARD, REDUCED_REDUNDANCY, STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, GLACIER, DEEP_ARCHIVE, OUTPOSTS
+    #           storage_class: "STANDARD", # accepts STANDARD, REDUCED_REDUNDANCY, STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, GLACIER, DEEP_ARCHIVE, OUTPOSTS, GLACIER_IR
     #         },
     #       },
     #     },
@@ -12698,10 +12863,11 @@ module Aws::S3
     # This action is not supported by Amazon S3 on Outposts.
     #
     # For more information about Amazon S3 Select, see [Selecting Content
-    # from Objects][1] in the *Amazon S3 User Guide*.
+    # from Objects][1] and [SELECT Command][2] in the *Amazon S3 User
+    # Guide*.
     #
     # For more information about using SQL with Amazon S3 Select, see [ SQL
-    # Reference for Amazon S3 Select and S3 Glacier Select][2] in the
+    # Reference for Amazon S3 Select and S3 Glacier Select][3] in the
     # *Amazon S3 User Guide*.
     #
     #
@@ -12710,7 +12876,7 @@ module Aws::S3
     #
     # You must have `s3:GetObject` permission for this operation. Amazon S3
     # Select does not support anonymous access. For more information about
-    # permissions, see [Specifying Permissions in a Policy][3] in the
+    # permissions, see [Specifying Permissions in a Policy][4] in the
     # *Amazon S3 User Guide*.
     #
     #
@@ -12737,71 +12903,71 @@ module Aws::S3
     #
     #   For objects that are encrypted with customer-provided encryption
     #   keys (SSE-C), you must use HTTPS, and you must use the headers that
-    #   are documented in the [GetObject][4]. For more information about
+    #   are documented in the [GetObject][5]. For more information about
     #   SSE-C, see [Server-Side Encryption (Using Customer-Provided
-    #   Encryption Keys)][5] in the *Amazon S3 User Guide*.
+    #   Encryption Keys)][6] in the *Amazon S3 User Guide*.
     #
     #   For objects that are encrypted with Amazon S3 managed encryption
-    #   keys (SSE-S3) and customer master keys (CMKs) stored in Amazon Web
-    #   Services Key Management Service (SSE-KMS), server-side encryption is
-    #   handled transparently, so you don't need to specify anything. For
-    #   more information about server-side encryption, including SSE-S3 and
-    #   SSE-KMS, see [Protecting Data Using Server-Side Encryption][6] in
-    #   the *Amazon S3 User Guide*.
+    #   keys (SSE-S3) and Amazon Web Services KMS keys (SSE-KMS),
+    #   server-side encryption is handled transparently, so you don't need
+    #   to specify anything. For more information about server-side
+    #   encryption, including SSE-S3 and SSE-KMS, see [Protecting Data Using
+    #   Server-Side Encryption][7] in the *Amazon S3 User Guide*.
     #
     # **Working with the Response Body**
     #
     # Given the response size is unknown, Amazon S3 Select streams the
     # response as a series of messages and includes a `Transfer-Encoding`
     # header with `chunked` as its value in the response. For more
-    # information, see [Appendix: SelectObjectContent Response][7].
+    # information, see [Appendix: SelectObjectContent Response][8].
     #
     #
     #
     # **GetObject Support**
     #
     # The `SelectObjectContent` action does not support the following
-    # `GetObject` functionality. For more information, see [GetObject][4].
+    # `GetObject` functionality. For more information, see [GetObject][5].
     #
     # * `Range`\: Although you can specify a scan range for an Amazon S3
-    #   Select request (see [SelectObjectContentRequest - ScanRange][8] in
+    #   Select request (see [SelectObjectContentRequest - ScanRange][9] in
     #   the request parameters), you cannot specify the range of bytes of an
     #   object to return.
     #
     # * GLACIER, DEEP\_ARCHIVE and REDUCED\_REDUNDANCY storage classes: You
     #   cannot specify the GLACIER, DEEP\_ARCHIVE, or `REDUCED_REDUNDANCY`
     #   storage classes. For more information, about storage classes see
-    #   [Storage Classes][9] in the *Amazon S3 User Guide*.
+    #   [Storage Classes][10] in the *Amazon S3 User Guide*.
     #
     #
     #
     # **Special Errors**
     #
     # For a list of special errors for this operation, see [List of SELECT
-    # Object Content Error Codes][10]
+    # Object Content Error Codes][11]
     #
     # **Related Resources**
     #
-    # * [GetObject][4]
+    # * [GetObject][5]
     #
-    # * [GetBucketLifecycleConfiguration][11]
+    # * [GetBucketLifecycleConfiguration][12]
     #
-    # * [PutBucketLifecycleConfiguration][12]
+    # * [PutBucketLifecycleConfiguration][13]
     #
     #
     #
     # [1]: https://docs.aws.amazon.com/AmazonS3/latest/dev/selecting-content-from-objects.html
-    # [2]: https://docs.aws.amazon.com/AmazonS3/latest/dev/s3-glacier-select-sql-reference.html
-    # [3]: https://docs.aws.amazon.com/AmazonS3/latest/dev/using-with-s3-actions.html
-    # [4]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetObject.html
-    # [5]: https://docs.aws.amazon.com/AmazonS3/latest/dev/ServerSideEncryptionCustomerKeys.html
-    # [6]: https://docs.aws.amazon.com/AmazonS3/latest/dev/serv-side-encryption.html
-    # [7]: https://docs.aws.amazon.com/AmazonS3/latest/API/RESTSelectObjectAppendix.html
-    # [8]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_SelectObjectContent.html#AmazonS3-SelectObjectContent-request-ScanRange
-    # [9]: https://docs.aws.amazon.com/AmazonS3/latest/dev/UsingMetadata.html#storage-class-intro
-    # [10]: https://docs.aws.amazon.com/AmazonS3/latest/API/ErrorResponses.html#SelectObjectContentErrorCodeList
-    # [11]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketLifecycleConfiguration.html
-    # [12]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutBucketLifecycleConfiguration.html
+    # [2]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/s3-glacier-select-sql-reference-select.html
+    # [3]: https://docs.aws.amazon.com/AmazonS3/latest/dev/s3-glacier-select-sql-reference.html
+    # [4]: https://docs.aws.amazon.com/AmazonS3/latest/dev/using-with-s3-actions.html
+    # [5]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetObject.html
+    # [6]: https://docs.aws.amazon.com/AmazonS3/latest/dev/ServerSideEncryptionCustomerKeys.html
+    # [7]: https://docs.aws.amazon.com/AmazonS3/latest/dev/serv-side-encryption.html
+    # [8]: https://docs.aws.amazon.com/AmazonS3/latest/API/RESTSelectObjectAppendix.html
+    # [9]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_SelectObjectContent.html#AmazonS3-SelectObjectContent-request-ScanRange
+    # [10]: https://docs.aws.amazon.com/AmazonS3/latest/dev/UsingMetadata.html#storage-class-intro
+    # [11]: https://docs.aws.amazon.com/AmazonS3/latest/API/ErrorResponses.html#SelectObjectContentErrorCodeList
+    # [12]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketLifecycleConfiguration.html
+    # [13]: https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutBucketLifecycleConfiguration.html
     #
     # @option params [required, String] :bucket
     #   The S3 bucket.
@@ -13742,9 +13908,9 @@ module Aws::S3
     end
 
     # Passes transformed objects to a `GetObject` operation when using
-    # Object Lambda Access Points. For information about Object Lambda
-    # Access Points, see [Transforming objects with Object Lambda Access
-    # Points][1] in the *Amazon S3 User Guide*.
+    # Object Lambda access points. For information about Object Lambda
+    # access points, see [Transforming objects with Object Lambda access
+    # points][1] in the *Amazon S3 User Guide*.
     #
     # This operation supports metadata that can be returned by
     # [GetObject][2], in addition to `RequestRoute`, `RequestToken`,
@@ -13766,8 +13932,8 @@ module Aws::S3
     # identifiable information (PII) and decompress S3 objects. These Lambda
     # functions are available in the Amazon Web Services Serverless
     # Application Repository, and can be selected through the Amazon Web
-    # Services Management Console when you create your Object Lambda Access
-    # Point.
+    # Services Management Console when you create your Object Lambda access
+    # point.
     #
     # Example 1: PII Access Control - This Lambda function uses Amazon
     # Comprehend, a natural language processing (NLP) service using machine
@@ -13959,8 +14125,8 @@ module Aws::S3
     #
     # @option params [String] :ssekms_key_id
     #   If present, specifies the ID of the Amazon Web Services Key Management
-    #   Service (Amazon Web Services KMS) symmetric customer managed customer
-    #   master key (CMK) that was used for stored in Amazon S3 object.
+    #   Service (Amazon Web Services KMS) symmetric customer managed key that
+    #   was used for stored in Amazon S3 object.
     #
     # @option params [String] :sse_customer_key_md5
     #   128-bit MD5 digest of customer-provided encryption key used in Amazon
@@ -14024,7 +14190,7 @@ module Aws::S3
     #     sse_customer_algorithm: "SSECustomerAlgorithm",
     #     ssekms_key_id: "SSEKMSKeyId",
     #     sse_customer_key_md5: "SSECustomerKeyMD5",
-    #     storage_class: "STANDARD", # accepts STANDARD, REDUCED_REDUNDANCY, STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, GLACIER, DEEP_ARCHIVE, OUTPOSTS
+    #     storage_class: "STANDARD", # accepts STANDARD, REDUCED_REDUNDANCY, STANDARD_IA, ONEZONE_IA, INTELLIGENT_TIERING, GLACIER, DEEP_ARCHIVE, OUTPOSTS, GLACIER_IR
     #     tag_count: 1,
     #     version_id: "ObjectVersionId",
     #     bucket_key_enabled: false,
@@ -14052,7 +14218,7 @@ module Aws::S3
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-s3'
-      context[:gem_version] = '1.102.0'
+      context[:gem_version] = '1.112.0'
       Seahorse::Client::Request.new(handlers, context)
     end