aws-sdk-s3control 1.104.0 → 1.105.0

data/lib/aws-sdk-s3control/types.rb

@@ -928,6 +928,17 @@ module Aws::S3Control
     #
     # @!attribute [rw] name
     #   The name you want to assign to this access point.
+    #
+    #   For directory buckets, the access point name must consist of a base
+    #   name that you provide and suffix that includes the `ZoneID` (Amazon
+    #   Web Services Availability Zone or Local Zone) of your bucket
+    #   location, followed by `--xa-s3`. For more information, see [Managing
+    #   access to shared datasets in directory buckets with access
+    #   points][1] in the Amazon S3 User Guide.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-points-directory-buckets.html
     #   @return [String]
     #
     # @!attribute [rw] bucket
@@ -974,6 +985,22 @@ module Aws::S3Control
     #   required.
     #   @return [String]
     #
+    # @!attribute [rw] scope
+    #   For directory buckets, you can filter access control to specific
+    #   prefixes, API operations, or a combination of both. For more
+    #   information, see [Managing access to shared datasets in directory
+    #   buckets with access points][1] in the Amazon S3 User Guide.
+    #
+    #   <note markdown="1"> Scope is not supported for access points for general purpose
+    #   buckets.
+    #
+    #    </note>
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-points-directory-buckets.html
+    #   @return [Types::Scope]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/s3control-2018-08-20/CreateAccessPointRequest AWS API Documentation
     #
     class CreateAccessPointRequest < Struct.new(
@@ -982,7 +1009,8 @@ module Aws::S3Control
       :bucket,
       :vpc_configuration,
       :public_access_block_configuration,
-      :bucket_account_id)
+      :bucket_account_id,
+      :scope)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -1563,6 +1591,24 @@ module Aws::S3Control
       include Aws::Structure
     end
 
+    # @!attribute [rw] account_id
+    #   The Amazon Web Services account ID that owns the access point with
+    #   the scope that you want to delete.
+    #   @return [String]
+    #
+    # @!attribute [rw] name
+    #   The name of the access point with the scope that you want to delete.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/s3control-2018-08-20/DeleteAccessPointScopeRequest AWS API Documentation
+    #
+    class DeleteAccessPointScopeRequest < Struct.new(
+      :account_id,
+      :name)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @!attribute [rw] account_id
     #   The account ID of the lifecycle configuration to delete.
     #   @return [String]
@@ -2824,6 +2870,36 @@ module Aws::S3Control
       include Aws::Structure
     end
 
+    # @!attribute [rw] account_id
+    #   The Amazon Web Services account ID that owns the access point with
+    #   the scope that you want to retrieve.
+    #   @return [String]
+    #
+    # @!attribute [rw] name
+    #   The name of the access point with the scope you want to retrieve.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/s3control-2018-08-20/GetAccessPointScopeRequest AWS API Documentation
+    #
+    class GetAccessPointScopeRequest < Struct.new(
+      :account_id,
+      :name)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] scope
+    #   The contents of the access point scope.
+    #   @return [Types::Scope]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/s3control-2018-08-20/GetAccessPointScopeResult AWS API Documentation
+    #
+    class GetAccessPointScopeResult < Struct.new(
+      :scope)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @!attribute [rw] account_id
     #   The Amazon Web Services account ID of the Outposts bucket.
     #   @return [String]
@@ -4845,6 +4921,64 @@ module Aws::S3Control
       include Aws::Structure
     end
 
+    # @!attribute [rw] account_id
+    #   The Amazon Web Services account ID that owns the access points.
+    #   @return [String]
+    #
+    # @!attribute [rw] directory_bucket
+    #   The name of the directory bucket associated with the access points
+    #   you want to list.
+    #   @return [String]
+    #
+    # @!attribute [rw] next_token
+    #   If `NextToken` is returned, there are more access points available
+    #   than requested in the `maxResults` value. The value of `NextToken`
+    #   is a unique pagination token for each page. Make the call again
+    #   using the returned token to retrieve the next page. Keep all other
+    #   arguments unchanged. Each pagination token expires after 24 hours.
+    #   @return [String]
+    #
+    # @!attribute [rw] max_results
+    #   The maximum number of access points that you would like returned in
+    #   the `ListAccessPointsForDirectoryBuckets` response. If the directory
+    #   bucket is associated with more than this number of access points,
+    #   the results include the pagination token `NextToken`. Make another
+    #   call using the `NextToken` to retrieve more results.
+    #   @return [Integer]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/s3control-2018-08-20/ListAccessPointsForDirectoryBucketsRequest AWS API Documentation
+    #
+    class ListAccessPointsForDirectoryBucketsRequest < Struct.new(
+      :account_id,
+      :directory_bucket,
+      :next_token,
+      :max_results)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # @!attribute [rw] access_point_list
+    #   Contains identification and configuration information for one or
+    #   more access points associated with the directory bucket.
+    #   @return [Array<Types::AccessPoint>]
+    #
+    # @!attribute [rw] next_token
+    #   If `NextToken` is returned, there are more access points available
+    #   than requested in the `maxResults` value. The value of `NextToken`
+    #   is a unique pagination token for each page. Make the call again
+    #   using the returned token to retrieve the next page. Keep all other
+    #   arguments unchanged. Each pagination token expires after 24 hours.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/s3control-2018-08-20/ListAccessPointsForDirectoryBucketsResult AWS API Documentation
+    #
+    class ListAccessPointsForDirectoryBucketsResult < Struct.new(
+      :access_point_list,
+      :next_token)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @!attribute [rw] account_id
     #   The account ID for the account that owns the specified Object Lambda
     #   Access Point.
@@ -6127,9 +6261,12 @@ module Aws::S3Control
     #
     # @!attribute [rw] policy
     #   The policy that you want to apply to the specified access point. For
-    #   more information about access point policies, see [Managing data
-    #   access with Amazon S3 access points][1] in the *Amazon S3 User
-    #   Guide*.
+    #   more information about access point policies, see [Managing access
+    #   to shared datasets in general purpose buckets with access points][1]
+    #   or [Managing access to shared datasets in directory bucekts with
+    #   access
+    #   points](AmazonS3/latest/userguide/access-points-directory-buckets.html)
+    #   in the *Amazon S3 User Guide*.
     #
     #
     #
@@ -6146,6 +6283,30 @@ module Aws::S3Control
       include Aws::Structure
     end
 
+    # @!attribute [rw] account_id
+    #   The Amazon Web Services account ID that owns the access point with
+    #   scope that you want to create or replace.
+    #   @return [String]
+    #
+    # @!attribute [rw] name
+    #   The name of the access point with the scope that you want to create
+    #   or replace.
+    #   @return [String]
+    #
+    # @!attribute [rw] scope
+    #   Object prefixes, API operations, or a combination of both.
+    #   @return [Types::Scope]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/s3control-2018-08-20/PutAccessPointScopeRequest AWS API Documentation
+    #
+    class PutAccessPointScopeRequest < Struct.new(
+      :account_id,
+      :name,
+      :scope)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @!attribute [rw] account_id
     #   The Amazon Web Services account ID of the Outposts bucket.
     #   @return [String]
@@ -7688,6 +7849,34 @@ module Aws::S3Control
     #
     class SSES3Encryption < Aws::EmptyStructure; end
 
+    # You can use the access point scope to restrict access to specific
+    # prefixes, API operations, or a combination of both.
+    #
+    # For more information, see [Manage the scope of your access points for
+    # directory buckets.][1]
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-points-directory-buckets-manage-scope.html
+    #
+    # @!attribute [rw] prefixes
+    #   You can specify any amount of prefixes, but the total length of
+    #   characters of all prefixes must be less than 512 KB in size.
+    #   @return [Array<String>]
+    #
+    # @!attribute [rw] permissions
+    #   You can include one or more API operations as permissions.
+    #   @return [Array<String>]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/s3control-2018-08-20/Scope AWS API Documentation
+    #
+    class Scope < Struct.new(
+      :prefixes,
+      :permissions)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @!attribute [rw] delimiter
     #   A container for the delimiter of the selection criteria being used.
     #   @return [String]

data/lib/aws-sdk-s3control.rb

@@ -54,7 +54,7 @@ module Aws::S3Control
   autoload :EndpointProvider, 'aws-sdk-s3control/endpoint_provider'
   autoload :Endpoints, 'aws-sdk-s3control/endpoints'
 
-  GEM_VERSION = '1.104.0'
+  GEM_VERSION = '1.105.0'
 
 end
 

data/sig/client.rbs

@@ -183,7 +183,11 @@ module Aws
                                    block_public_policy: bool?,
                                    restrict_public_buckets: bool?
                                  },
-                                 ?bucket_account_id: ::String
+                                 ?bucket_account_id: ::String,
+                                 ?scope: {
+                                   prefixes: Array[::String]?,
+                                   permissions: Array[("GetObject" | "GetObjectAttributes" | "ListMultipartUploadParts" | "ListBucket" | "ListBucketMultipartUploads" | "PutObject" | "DeleteObject" | "AbortMultipartUpload")]?
+                                 }
                                ) -> _CreateAccessPointResponseSuccess
                              | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _CreateAccessPointResponseSuccess
 
@@ -562,6 +566,13 @@ module Aws
                                                         ) -> ::Seahorse::Client::_ResponseSuccess[::Aws::EmptyStructure]
                                                       | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> ::Seahorse::Client::_ResponseSuccess[::Aws::EmptyStructure]
 
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/S3Control/Client.html#delete_access_point_scope-instance_method
+      def delete_access_point_scope: (
+                                       account_id: ::String,
+                                       name: ::String
+                                     ) -> ::Seahorse::Client::_ResponseSuccess[::Aws::EmptyStructure]
+                                   | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> ::Seahorse::Client::_ResponseSuccess[::Aws::EmptyStructure]
+
       # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/S3Control/Client.html#delete_bucket-instance_method
       def delete_bucket: (
                            ?account_id: ::String,
@@ -841,6 +852,17 @@ module Aws
                                                             ) -> _GetAccessPointPolicyStatusForObjectLambdaResponseSuccess
                                                           | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _GetAccessPointPolicyStatusForObjectLambdaResponseSuccess
 
+      interface _GetAccessPointScopeResponseSuccess
+        include ::Seahorse::Client::_ResponseSuccess[Types::GetAccessPointScopeResult]
+        def scope: () -> Types::Scope
+      end
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/S3Control/Client.html#get_access_point_scope-instance_method
+      def get_access_point_scope: (
+                                    account_id: ::String,
+                                    name: ::String
+                                  ) -> _GetAccessPointScopeResponseSuccess
+                                | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _GetAccessPointScopeResponseSuccess
+
       interface _GetBucketResponseSuccess
         include ::Seahorse::Client::_ResponseSuccess[Types::GetBucketResult]
         def bucket: () -> ::String
@@ -1085,6 +1107,20 @@ module Aws
                               ) -> _ListAccessPointsResponseSuccess
                             | (?Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _ListAccessPointsResponseSuccess
 
+      interface _ListAccessPointsForDirectoryBucketsResponseSuccess
+        include ::Seahorse::Client::_ResponseSuccess[Types::ListAccessPointsForDirectoryBucketsResult]
+        def access_point_list: () -> ::Array[Types::AccessPoint]
+        def next_token: () -> ::String
+      end
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/S3Control/Client.html#list_access_points_for_directory_buckets-instance_method
+      def list_access_points_for_directory_buckets: (
+                                                      account_id: ::String,
+                                                      ?directory_bucket: ::String,
+                                                      ?next_token: ::String,
+                                                      ?max_results: ::Integer
+                                                    ) -> _ListAccessPointsForDirectoryBucketsResponseSuccess
+                                                  | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _ListAccessPointsForDirectoryBucketsResponseSuccess
+
       interface _ListAccessPointsForObjectLambdaResponseSuccess
         include ::Seahorse::Client::_ResponseSuccess[Types::ListAccessPointsForObjectLambdaResult]
         def object_lambda_access_point_list: () -> ::Array[Types::ObjectLambdaAccessPoint]
@@ -1242,6 +1278,17 @@ module Aws
                                                      ) -> ::Seahorse::Client::_ResponseSuccess[::Aws::EmptyStructure]
                                                    | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> ::Seahorse::Client::_ResponseSuccess[::Aws::EmptyStructure]
 
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/S3Control/Client.html#put_access_point_scope-instance_method
+      def put_access_point_scope: (
+                                    account_id: ::String,
+                                    name: ::String,
+                                    scope: {
+                                      prefixes: Array[::String]?,
+                                      permissions: Array[("GetObject" | "GetObjectAttributes" | "ListMultipartUploadParts" | "ListBucket" | "ListBucketMultipartUploads" | "PutObject" | "DeleteObject" | "AbortMultipartUpload")]?
+                                    }
+                                  ) -> ::Seahorse::Client::_ResponseSuccess[::Aws::EmptyStructure]
+                                | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> ::Seahorse::Client::_ResponseSuccess[::Aws::EmptyStructure]
+
       # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/S3Control/Client.html#put_bucket_lifecycle_configuration-instance_method
       def put_bucket_lifecycle_configuration: (
                                                 ?account_id: ::String,

data/sig/types.rbs

@@ -206,6 +206,7 @@ module Aws::S3Control
       attr_accessor vpc_configuration: Types::VpcConfiguration
       attr_accessor public_access_block_configuration: Types::PublicAccessBlockConfiguration
       attr_accessor bucket_account_id: ::String
+      attr_accessor scope: Types::Scope
       SENSITIVE: []
     end
 
@@ -340,6 +341,12 @@ module Aws::S3Control
       SENSITIVE: []
     end
 
+    class DeleteAccessPointScopeRequest
+      attr_accessor account_id: ::String
+      attr_accessor name: ::String
+      SENSITIVE: []
+    end
+
     class DeleteBucketLifecycleConfigurationRequest
       attr_accessor account_id: ::String
       attr_accessor bucket: ::String
@@ -659,6 +666,17 @@ module Aws::S3Control
       SENSITIVE: []
     end
 
+    class GetAccessPointScopeRequest
+      attr_accessor account_id: ::String
+      attr_accessor name: ::String
+      SENSITIVE: []
+    end
+
+    class GetAccessPointScopeResult
+      attr_accessor scope: Types::Scope
+      SENSITIVE: []
+    end
+
     class GetBucketLifecycleConfigurationRequest
       attr_accessor account_id: ::String
       attr_accessor bucket: ::String
@@ -1131,6 +1149,20 @@ module Aws::S3Control
       SENSITIVE: []
     end
 
+    class ListAccessPointsForDirectoryBucketsRequest
+      attr_accessor account_id: ::String
+      attr_accessor directory_bucket: ::String
+      attr_accessor next_token: ::String
+      attr_accessor max_results: ::Integer
+      SENSITIVE: []
+    end
+
+    class ListAccessPointsForDirectoryBucketsResult
+      attr_accessor access_point_list: ::Array[Types::AccessPoint]
+      attr_accessor next_token: ::String
+      SENSITIVE: []
+    end
+
     class ListAccessPointsForObjectLambdaRequest
       attr_accessor account_id: ::String
       attr_accessor next_token: ::String
@@ -1447,6 +1479,13 @@ module Aws::S3Control
       SENSITIVE: []
     end
 
+    class PutAccessPointScopeRequest
+      attr_accessor account_id: ::String
+      attr_accessor name: ::String
+      attr_accessor scope: Types::Scope
+      SENSITIVE: []
+    end
+
     class PutBucketLifecycleConfigurationRequest
       attr_accessor account_id: ::String
       attr_accessor bucket: ::String
@@ -1775,6 +1814,12 @@ module Aws::S3Control
     class SSES3Encryption < Aws::EmptyStructure
     end
 
+    class Scope
+      attr_accessor prefixes: ::Array[::String]
+      attr_accessor permissions: ::Array[("GetObject" | "GetObjectAttributes" | "ListMultipartUploadParts" | "ListBucket" | "ListBucketMultipartUploads" | "PutObject" | "DeleteObject" | "AbortMultipartUpload")]
+      SENSITIVE: []
+    end
+
     class SelectionCriteria
       attr_accessor delimiter: ::String
       attr_accessor max_depth: ::Integer

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-s3control
 version: !ruby/object:Gem::Version
-  version: 1.104.0
+  version: 1.105.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2025-03-13 00:00:00.000000000 Z
+date: 2025-03-31 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core