npm - @gammarers/aws-secure-bucket - Versions diffs - 1.4.6 → 2.0.0 - Mend

@gammarers/aws-secure-bucket 1.4.6 → 2.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/.jsii CHANGED Viewed

@@ -3453,7 +3453,7 @@
     "stability": "stable"
   },
   "homepage": "https://github.com/gammarers/aws-secure-bucket.git",
-  "jsiiVersion": "5.3.41 (build 58bc54e)",
+  "jsiiVersion": "5.4.25 (build 09cecf6)",
   "keywords": [
     "aws",
     "aws-cdk",
@@ -3508,7 +3508,7 @@
         },
         "locationInModule": {
           "filename": "src/index.ts",
-          "line": 50
+          "line": 8
         },
         "parameters": [
           {
@@ -3535,41 +3535,11 @@
       "kind": "class",
       "locationInModule": {
         "filename": "src/index.ts",
-        "line": 49
+        "line": 7
       },
       "name": "SecureBucket",
       "symbolId": "src/index:SecureBucket"
     },
-    "@gammarers/aws-secure-bucket.SecureBucketEncryption": {
-      "assembly": "@gammarers/aws-secure-bucket",
-      "docs": {
-        "stability": "stable"
-      },
-      "fqn": "@gammarers/aws-secure-bucket.SecureBucketEncryption",
-      "kind": "enum",
-      "locationInModule": {
-        "filename": "src/index.ts",
-        "line": 14
-      },
-      "members": [
-        {
-          "docs": {
-            "stability": "stable",
-            "summary": "Server-side KMS encryption with a master key managed by KMS."
-          },
-          "name": "KMS_MANAGED"
-        },
-        {
-          "docs": {
-            "stability": "stable",
-            "summary": "Server-side encryption with a master key managed by S3."
-          },
-          "name": "S3_MANAGED"
-        }
-      ],
-      "name": "SecureBucketEncryption",
-      "symbolId": "src/index:SecureBucketEncryption"
-    },
     "@gammarers/aws-secure-bucket.SecureBucketProps": {
       "assembly": "@gammarers/aws-secure-bucket",
       "datatype": true,
@@ -3577,158 +3547,18 @@
         "stability": "stable"
       },
       "fqn": "@gammarers/aws-secure-bucket.SecureBucketProps",
+      "interfaces": [
+        "aws-cdk-lib.aws_s3.BucketProps"
+      ],
       "kind": "interface",
       "locationInModule": {
         "filename": "src/index.ts",
         "line": 5
       },
       "name": "SecureBucketProps",
-      "properties": [
-        {
-          "abstract": true,
-          "docs": {
-            "stability": "stable"
-          },
-          "immutable": true,
-          "locationInModule": {
-            "filename": "src/index.ts",
-            "line": 6
-          },
-          "name": "bucketName",
-          "optional": true,
-          "type": {
-            "primitive": "string"
-          }
-        },
-        {
-          "abstract": true,
-          "docs": {
-            "stability": "stable"
-          },
-          "immutable": true,
-          "locationInModule": {
-            "filename": "src/index.ts",
-            "line": 7
-          },
-          "name": "encryption",
-          "optional": true,
-          "type": {
-            "fqn": "@gammarers/aws-secure-bucket.SecureBucketEncryption"
-          }
-        },
-        {
-          "abstract": true,
-          "docs": {
-            "stability": "stable"
-          },
-          "immutable": true,
-          "locationInModule": {
-            "filename": "src/index.ts",
-            "line": 9
-          },
-          "name": "eventBridgeEnabled",
-          "optional": true,
-          "type": {
-            "primitive": "boolean"
-          }
-        },
-        {
-          "abstract": true,
-          "docs": {
-            "stability": "stable"
-          },
-          "immutable": true,
-          "locationInModule": {
-            "filename": "src/index.ts",
-            "line": 10
-          },
-          "name": "lifecycleRules",
-          "optional": true,
-          "type": {
-            "collection": {
-              "elementtype": {
-                "fqn": "aws-cdk-lib.aws_s3.LifecycleRule"
-              },
-              "kind": "array"
-            }
-          }
-        },
-        {
-          "abstract": true,
-          "docs": {
-            "stability": "stable"
-          },
-          "immutable": true,
-          "locationInModule": {
-            "filename": "src/index.ts",
-            "line": 11
-          },
-          "name": "objectOwnership",
-          "optional": true,
-          "type": {
-            "fqn": "@gammarers/aws-secure-bucket.SecureObjectOwnership"
-          }
-        },
-        {
-          "abstract": true,
-          "docs": {
-            "stability": "stable"
-          },
-          "immutable": true,
-          "locationInModule": {
-            "filename": "src/index.ts",
-            "line": 8
-          },
-          "name": "versioned",
-          "optional": true,
-          "type": {
-            "primitive": "boolean"
-          }
-        }
-      ],
       "symbolId": "src/index:SecureBucketProps"
-    },
-    "@gammarers/aws-secure-bucket.SecureObjectOwnership": {
-      "assembly": "@gammarers/aws-secure-bucket",
-      "docs": {
-        "see": "https://docs.aws.amazon.com/AmazonS3/latest/dev/about-object-ownership.html",
-        "stability": "stable",
-        "summary": "The ObjectOwnership of the bucket."
-      },
-      "fqn": "@gammarers/aws-secure-bucket.SecureObjectOwnership",
-      "kind": "enum",
-      "locationInModule": {
-        "filename": "src/index.ts",
-        "line": 31
-      },
-      "members": [
-        {
-          "docs": {
-            "remarks": "ACLs no longer affect permissions to data in the S3 bucket.\nThe bucket uses policies to define access control.",
-            "stability": "stable",
-            "summary": "ACLs are disabled, and the bucket owner automatically owns and has full control over every object in the bucket."
-          },
-          "name": "BUCKET_OWNER_ENFORCED"
-        },
-        {
-          "docs": {
-            "stability": "stable",
-            "summary": "Objects uploaded to the bucket change ownership to the bucket owner ."
-          },
-          "name": "BUCKET_OWNER_PREFERRED"
-        },
-        {
-          "docs": {
-            "stability": "stable",
-            "summary": "The uploading account will own the object."
-          },
-          "name": "OBJECT_WRITER"
-        }
-      ],
-      "name": "SecureObjectOwnership",
-      "symbolId": "src/index:SecureObjectOwnership"
     }
   },
-  "version": "1.4.6",
-  "fingerprint": "mLTh5AAazx63v0l/2H4OcqEkooAIBxovkJIcpCWnWLY="
+  "version": "2.0.0",
+  "fingerprint": "lUhprqbRXbSajr3Eu37J32GNE4/PNBB9RD8BqlT73Hs="
 }

package/API.md CHANGED Viewed

@@ -1135,12 +1135,103 @@ const secureBucketProps: SecureBucketProps = { ... }
 | **Name** | **Type** | **Description** |
 | --- | --- | --- |
-| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.bucketName">bucketName</a></code> | <code>string</code> | *No description.* |
-| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.encryption">encryption</a></code> | <code><a href="#@gammarers/aws-secure-bucket.SecureBucketEncryption">SecureBucketEncryption</a></code> | *No description.* |
-| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.eventBridgeEnabled">eventBridgeEnabled</a></code> | <code>boolean</code> | *No description.* |
-| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.lifecycleRules">lifecycleRules</a></code> | <code>aws-cdk-lib.aws_s3.LifecycleRule[]</code> | *No description.* |
-| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.objectOwnership">objectOwnership</a></code> | <code><a href="#@gammarers/aws-secure-bucket.SecureObjectOwnership">SecureObjectOwnership</a></code> | *No description.* |
-| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.versioned">versioned</a></code> | <code>boolean</code> | *No description.* |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.accessControl">accessControl</a></code> | <code>aws-cdk-lib.aws_s3.BucketAccessControl</code> | Specifies a canned ACL that grants predefined permissions to the bucket. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.autoDeleteObjects">autoDeleteObjects</a></code> | <code>boolean</code> | Whether all objects should be automatically deleted when the bucket is removed from the stack or when the stack is deleted. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.blockPublicAccess">blockPublicAccess</a></code> | <code>aws-cdk-lib.aws_s3.BlockPublicAccess</code> | The block public access configuration of this bucket. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.bucketKeyEnabled">bucketKeyEnabled</a></code> | <code>boolean</code> | Whether Amazon S3 should use its own intermediary key to generate data keys. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.bucketName">bucketName</a></code> | <code>string</code> | Physical name of this bucket. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.cors">cors</a></code> | <code>aws-cdk-lib.aws_s3.CorsRule[]</code> | The CORS configuration of this bucket. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.encryption">encryption</a></code> | <code>aws-cdk-lib.aws_s3.BucketEncryption</code> | The kind of server-side encryption to apply to this bucket. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.encryptionKey">encryptionKey</a></code> | <code>aws-cdk-lib.aws_kms.IKey</code> | External KMS key to use for bucket encryption. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.enforceSSL">enforceSSL</a></code> | <code>boolean</code> | Enforces SSL for requests. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.eventBridgeEnabled">eventBridgeEnabled</a></code> | <code>boolean</code> | Whether this bucket should send notifications to Amazon EventBridge or not. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.intelligentTieringConfigurations">intelligentTieringConfigurations</a></code> | <code>aws-cdk-lib.aws_s3.IntelligentTieringConfiguration[]</code> | Inteligent Tiering Configurations. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.inventories">inventories</a></code> | <code>aws-cdk-lib.aws_s3.Inventory[]</code> | The inventory configuration of the bucket. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.lifecycleRules">lifecycleRules</a></code> | <code>aws-cdk-lib.aws_s3.LifecycleRule[]</code> | Rules that define how Amazon S3 manages objects during their lifetime. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.metrics">metrics</a></code> | <code>aws-cdk-lib.aws_s3.BucketMetrics[]</code> | The metrics configuration of this bucket. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.notificationsHandlerRole">notificationsHandlerRole</a></code> | <code>aws-cdk-lib.aws_iam.IRole</code> | The role to be used by the notifications handler. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.objectLockDefaultRetention">objectLockDefaultRetention</a></code> | <code>aws-cdk-lib.aws_s3.ObjectLockRetention</code> | The default retention mode and rules for S3 Object Lock. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.objectLockEnabled">objectLockEnabled</a></code> | <code>boolean</code> | Enable object lock on the bucket. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.objectOwnership">objectOwnership</a></code> | <code>aws-cdk-lib.aws_s3.ObjectOwnership</code> | The objectOwnership of the bucket. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.publicReadAccess">publicReadAccess</a></code> | <code>boolean</code> | Grants public read access to all objects in the bucket. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.removalPolicy">removalPolicy</a></code> | <code>aws-cdk-lib.RemovalPolicy</code> | Policy to apply when the bucket is removed from this stack. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.serverAccessLogsBucket">serverAccessLogsBucket</a></code> | <code>aws-cdk-lib.aws_s3.IBucket</code> | Destination bucket for the server access logs. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.serverAccessLogsPrefix">serverAccessLogsPrefix</a></code> | <code>string</code> | Optional log file prefix to use for the bucket's access logs. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.transferAcceleration">transferAcceleration</a></code> | <code>boolean</code> | Whether this bucket should have transfer acceleration turned on or not. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.versioned">versioned</a></code> | <code>boolean</code> | Whether this bucket should have versioning turned on or not. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.websiteErrorDocument">websiteErrorDocument</a></code> | <code>string</code> | The name of the error document (e.g. "404.html") for the website. `websiteIndexDocument` must also be set if this is set. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.websiteIndexDocument">websiteIndexDocument</a></code> | <code>string</code> | The name of the index document (e.g. "index.html") for the website. Enables static website hosting for this bucket. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.websiteRedirect">websiteRedirect</a></code> | <code>aws-cdk-lib.aws_s3.RedirectTarget</code> | Specifies the redirect behavior of all requests to a website endpoint of a bucket. |
+| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketProps.property.websiteRoutingRules">websiteRoutingRules</a></code> | <code>aws-cdk-lib.aws_s3.RoutingRule[]</code> | Rules that define when a redirect is applied and the redirect behavior. |
+---
+##### `accessControl`<sup>Optional</sup> <a name="accessControl" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.accessControl"></a>
+```typescript
+public readonly accessControl: BucketAccessControl;
+```
+- *Type:* aws-cdk-lib.aws_s3.BucketAccessControl
+- *Default:* BucketAccessControl.PRIVATE
+Specifies a canned ACL that grants predefined permissions to the bucket.
+---
+##### `autoDeleteObjects`<sup>Optional</sup> <a name="autoDeleteObjects" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.autoDeleteObjects"></a>
+```typescript
+public readonly autoDeleteObjects: boolean;
+```
+- *Type:* boolean
+- *Default:* false
+Whether all objects should be automatically deleted when the bucket is removed from the stack or when the stack is deleted.
+Requires the `removalPolicy` to be set to `RemovalPolicy.DESTROY`.
+**Warning** if you have deployed a bucket with `autoDeleteObjects: true`,
+switching this to `false` in a CDK version *before* `1.126.0` will lead to
+all objects in the bucket being deleted. Be sure to update your bucket resources
+by deploying with CDK version `1.126.0` or later **before** switching this value to `false`.
+---
+##### `blockPublicAccess`<sup>Optional</sup> <a name="blockPublicAccess" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.blockPublicAccess"></a>
+```typescript
+public readonly blockPublicAccess: BlockPublicAccess;
+```
+- *Type:* aws-cdk-lib.aws_s3.BlockPublicAccess
+- *Default:* CloudFormation defaults will apply. New buckets and objects don't allow public access, but users can modify bucket policies or object permissions to allow public access
+The block public access configuration of this bucket.
+> [https://docs.aws.amazon.com/AmazonS3/latest/dev/access-control-block-public-access.html](https://docs.aws.amazon.com/AmazonS3/latest/dev/access-control-block-public-access.html)
+---
+##### `bucketKeyEnabled`<sup>Optional</sup> <a name="bucketKeyEnabled" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.bucketKeyEnabled"></a>
+```typescript
+public readonly bucketKeyEnabled: boolean;
+```
+- *Type:* boolean
+- *Default:* false
+Whether Amazon S3 should use its own intermediary key to generate data keys.
+Only relevant when using KMS for encryption.
+- If not enabled, every object GET and PUT will cause an API call to KMS (with the
+  attendant cost implications of that).
+- If enabled, S3 will use its own time-limited key instead.
+Only relevant, when Encryption is set to `BucketEncryption.KMS` or `BucketEncryption.KMS_MANAGED`.
 ---
@@ -1151,16 +1242,74 @@ public readonly bucketName: string;
 ```
 - *Type:* string
+- *Default:* Assigned by CloudFormation (recommended).
+Physical name of this bucket.
+---
+##### `cors`<sup>Optional</sup> <a name="cors" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.cors"></a>
+```typescript
+public readonly cors: CorsRule[];
+```
+- *Type:* aws-cdk-lib.aws_s3.CorsRule[]
+- *Default:* No CORS configuration.
+The CORS configuration of this bucket.
+> [https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-s3-bucket-cors.html](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-s3-bucket-cors.html)
 ---
 ##### `encryption`<sup>Optional</sup> <a name="encryption" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.encryption"></a>
 ```typescript
-public readonly encryption: SecureBucketEncryption;
+public readonly encryption: BucketEncryption;
 ```
-- *Type:* <a href="#@gammarers/aws-secure-bucket.SecureBucketEncryption">SecureBucketEncryption</a>
+- *Type:* aws-cdk-lib.aws_s3.BucketEncryption
+- *Default:* `Kms` if `encryptionKey` is specified, or `Managed` otherwise.
+The kind of server-side encryption to apply to this bucket.
+If you choose KMS, you can specify a KMS key via `encryptionKey`. If
+encryption key is not specified, a key will automatically be created.
+---
+##### `encryptionKey`<sup>Optional</sup> <a name="encryptionKey" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.encryptionKey"></a>
+```typescript
+public readonly encryptionKey: IKey;
+```
+- *Type:* aws-cdk-lib.aws_kms.IKey
+- *Default:* If encryption is set to "Kms" and this property is undefined, a new KMS key will be created and associated with this bucket.
+External KMS key to use for bucket encryption.
+The 'encryption' property must be either not specified or set to "Kms".
+An error will be emitted if encryption is set to "Unencrypted" or
+"Managed".
+---
+##### `enforceSSL`<sup>Optional</sup> <a name="enforceSSL" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.enforceSSL"></a>
+```typescript
+public readonly enforceSSL: boolean;
+```
+- *Type:* boolean
+- *Default:* false
+Enforces SSL for requests.
+S3.5 of the AWS Foundational Security Best Practices Regarding S3.
+> [https://docs.aws.amazon.com/config/latest/developerguide/s3-bucket-ssl-requests-only.html](https://docs.aws.amazon.com/config/latest/developerguide/s3-bucket-ssl-requests-only.html)
 ---
@@ -1171,6 +1320,39 @@ public readonly eventBridgeEnabled: boolean;
 ```
 - *Type:* boolean
+- *Default:* false
+Whether this bucket should send notifications to Amazon EventBridge or not.
+---
+##### `intelligentTieringConfigurations`<sup>Optional</sup> <a name="intelligentTieringConfigurations" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.intelligentTieringConfigurations"></a>
+```typescript
+public readonly intelligentTieringConfigurations: IntelligentTieringConfiguration[];
+```
+- *Type:* aws-cdk-lib.aws_s3.IntelligentTieringConfiguration[]
+- *Default:* No Intelligent Tiiering Configurations.
+Inteligent Tiering Configurations.
+> [https://docs.aws.amazon.com/AmazonS3/latest/userguide/intelligent-tiering.html](https://docs.aws.amazon.com/AmazonS3/latest/userguide/intelligent-tiering.html)
+---
+##### `inventories`<sup>Optional</sup> <a name="inventories" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.inventories"></a>
+```typescript
+public readonly inventories: Inventory[];
+```
+- *Type:* aws-cdk-lib.aws_s3.Inventory[]
+- *Default:* No inventory configuration
+The inventory configuration of the bucket.
+> [https://docs.aws.amazon.com/AmazonS3/latest/dev/storage-inventory.html](https://docs.aws.amazon.com/AmazonS3/latest/dev/storage-inventory.html)
 ---
@@ -1181,94 +1363,226 @@ public readonly lifecycleRules: LifecycleRule[];
 ```
 - *Type:* aws-cdk-lib.aws_s3.LifecycleRule[]
+- *Default:* No lifecycle rules.
+Rules that define how Amazon S3 manages objects during their lifetime.
+---
+##### `metrics`<sup>Optional</sup> <a name="metrics" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.metrics"></a>
+```typescript
+public readonly metrics: BucketMetrics[];
+```
+- *Type:* aws-cdk-lib.aws_s3.BucketMetrics[]
+- *Default:* No metrics configuration.
+The metrics configuration of this bucket.
+> [https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-s3-bucket-metricsconfiguration.html](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-s3-bucket-metricsconfiguration.html)
+---
+##### `notificationsHandlerRole`<sup>Optional</sup> <a name="notificationsHandlerRole" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.notificationsHandlerRole"></a>
+```typescript
+public readonly notificationsHandlerRole: IRole;
+```
+- *Type:* aws-cdk-lib.aws_iam.IRole
+- *Default:* a new role will be created.
+The role to be used by the notifications handler.
+---
+##### `objectLockDefaultRetention`<sup>Optional</sup> <a name="objectLockDefaultRetention" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.objectLockDefaultRetention"></a>
+```typescript
+public readonly objectLockDefaultRetention: ObjectLockRetention;
+```
+- *Type:* aws-cdk-lib.aws_s3.ObjectLockRetention
+- *Default:* no default retention period
+The default retention mode and rules for S3 Object Lock.
+Default retention can be configured after a bucket is created if the bucket already
+has object lock enabled. Enabling object lock for existing buckets is not supported.
+> [https://docs.aws.amazon.com/AmazonS3/latest/userguide/object-lock-overview.html#object-lock-bucket-config-enable](https://docs.aws.amazon.com/AmazonS3/latest/userguide/object-lock-overview.html#object-lock-bucket-config-enable)
+---
+##### `objectLockEnabled`<sup>Optional</sup> <a name="objectLockEnabled" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.objectLockEnabled"></a>
+```typescript
+public readonly objectLockEnabled: boolean;
+```
+- *Type:* boolean
+- *Default:* false, unless objectLockDefaultRetention is set (then, true)
+Enable object lock on the bucket.
+Enabling object lock for existing buckets is not supported. Object lock must be
+enabled when the bucket is created.
+> [https://docs.aws.amazon.com/AmazonS3/latest/userguide/object-lock-overview.html#object-lock-bucket-config-enable](https://docs.aws.amazon.com/AmazonS3/latest/userguide/object-lock-overview.html#object-lock-bucket-config-enable)
 ---
 ##### `objectOwnership`<sup>Optional</sup> <a name="objectOwnership" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.objectOwnership"></a>
 ```typescript
-public readonly objectOwnership: SecureObjectOwnership;
+public readonly objectOwnership: ObjectOwnership;
 ```
-- *Type:* <a href="#@gammarers/aws-secure-bucket.SecureObjectOwnership">SecureObjectOwnership</a>
+- *Type:* aws-cdk-lib.aws_s3.ObjectOwnership
+- *Default:* No ObjectOwnership configuration, uploading account will own the object.
+The objectOwnership of the bucket.
+> [https://docs.aws.amazon.com/AmazonS3/latest/dev/about-object-ownership.html](https://docs.aws.amazon.com/AmazonS3/latest/dev/about-object-ownership.html)
 ---
-##### `versioned`<sup>Optional</sup> <a name="versioned" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.versioned"></a>
+##### `publicReadAccess`<sup>Optional</sup> <a name="publicReadAccess" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.publicReadAccess"></a>
 ```typescript
-public readonly versioned: boolean;
+public readonly publicReadAccess: boolean;
 ```
 - *Type:* boolean
+- *Default:* false
+Grants public read access to all objects in the bucket.
+Similar to calling `bucket.grantPublicAccess()`
 ---
+##### `removalPolicy`<sup>Optional</sup> <a name="removalPolicy" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.removalPolicy"></a>
+```typescript
+public readonly removalPolicy: RemovalPolicy;
+```
+- *Type:* aws-cdk-lib.RemovalPolicy
+- *Default:* The bucket will be orphaned.
+Policy to apply when the bucket is removed from this stack.
-## Enums <a name="Enums" id="Enums"></a>
+---
-### SecureBucketEncryption <a name="SecureBucketEncryption" id="@gammarers/aws-secure-bucket.SecureBucketEncryption"></a>
+##### `serverAccessLogsBucket`<sup>Optional</sup> <a name="serverAccessLogsBucket" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.serverAccessLogsBucket"></a>
-#### Members <a name="Members" id="Members"></a>
+```typescript
+public readonly serverAccessLogsBucket: IBucket;
+```
-| **Name** | **Description** |
-| --- | --- |
-| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketEncryption.KMS_MANAGED">KMS_MANAGED</a></code> | Server-side KMS encryption with a master key managed by KMS. |
-| <code><a href="#@gammarers/aws-secure-bucket.SecureBucketEncryption.S3_MANAGED">S3_MANAGED</a></code> | Server-side encryption with a master key managed by S3. |
+- *Type:* aws-cdk-lib.aws_s3.IBucket
+- *Default:* If "serverAccessLogsPrefix" undefined - access logs disabled, otherwise - log to current bucket.
+Destination bucket for the server access logs.
 ---
-##### `KMS_MANAGED` <a name="KMS_MANAGED" id="@gammarers/aws-secure-bucket.SecureBucketEncryption.KMS_MANAGED"></a>
+##### `serverAccessLogsPrefix`<sup>Optional</sup> <a name="serverAccessLogsPrefix" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.serverAccessLogsPrefix"></a>
+```typescript
+public readonly serverAccessLogsPrefix: string;
+```
-Server-side KMS encryption with a master key managed by KMS.
+- *Type:* string
+- *Default:* No log file prefix
+Optional log file prefix to use for the bucket's access logs.
+If defined without "serverAccessLogsBucket", enables access logs to current bucket with this prefix.
 ---
+##### `transferAcceleration`<sup>Optional</sup> <a name="transferAcceleration" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.transferAcceleration"></a>
+```typescript
+public readonly transferAcceleration: boolean;
+```
-##### `S3_MANAGED` <a name="S3_MANAGED" id="@gammarers/aws-secure-bucket.SecureBucketEncryption.S3_MANAGED"></a>
+- *Type:* boolean
+- *Default:* false
-Server-side encryption with a master key managed by S3.
+Whether this bucket should have transfer acceleration turned on or not.
 ---
+##### `versioned`<sup>Optional</sup> <a name="versioned" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.versioned"></a>
+```typescript
+public readonly versioned: boolean;
+```
+- *Type:* boolean
+- *Default:* false (unless object lock is enabled, then true)
+Whether this bucket should have versioning turned on or not.
-### SecureObjectOwnership <a name="SecureObjectOwnership" id="@gammarers/aws-secure-bucket.SecureObjectOwnership"></a>
+---
-The ObjectOwnership of the bucket.
+##### `websiteErrorDocument`<sup>Optional</sup> <a name="websiteErrorDocument" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.websiteErrorDocument"></a>
-> [https://docs.aws.amazon.com/AmazonS3/latest/dev/about-object-ownership.html](https://docs.aws.amazon.com/AmazonS3/latest/dev/about-object-ownership.html)
+```typescript
+public readonly websiteErrorDocument: string;
+```
-#### Members <a name="Members" id="Members"></a>
+- *Type:* string
+- *Default:* No error document.
-| **Name** | **Description** |
-| --- | --- |
-| <code><a href="#@gammarers/aws-secure-bucket.SecureObjectOwnership.BUCKET_OWNER_ENFORCED">BUCKET_OWNER_ENFORCED</a></code> | ACLs are disabled, and the bucket owner automatically owns and has full control over every object in the bucket. |
-| <code><a href="#@gammarers/aws-secure-bucket.SecureObjectOwnership.BUCKET_OWNER_PREFERRED">BUCKET_OWNER_PREFERRED</a></code> | Objects uploaded to the bucket change ownership to the bucket owner . |
-| <code><a href="#@gammarers/aws-secure-bucket.SecureObjectOwnership.OBJECT_WRITER">OBJECT_WRITER</a></code> | The uploading account will own the object. |
+The name of the error document (e.g. "404.html") for the website. `websiteIndexDocument` must also be set if this is set.
 ---
-##### `BUCKET_OWNER_ENFORCED` <a name="BUCKET_OWNER_ENFORCED" id="@gammarers/aws-secure-bucket.SecureObjectOwnership.BUCKET_OWNER_ENFORCED"></a>
+##### `websiteIndexDocument`<sup>Optional</sup> <a name="websiteIndexDocument" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.websiteIndexDocument"></a>
-ACLs are disabled, and the bucket owner automatically owns and has full control over every object in the bucket.
+```typescript
+public readonly websiteIndexDocument: string;
+```
-ACLs no longer affect permissions to data in the S3 bucket.
-The bucket uses policies to define access control.
+- *Type:* string
+- *Default:* No index document.
+The name of the index document (e.g. "index.html") for the website. Enables static website hosting for this bucket.
 ---
+##### `websiteRedirect`<sup>Optional</sup> <a name="websiteRedirect" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.websiteRedirect"></a>
+```typescript
+public readonly websiteRedirect: RedirectTarget;
+```
+- *Type:* aws-cdk-lib.aws_s3.RedirectTarget
+- *Default:* No redirection.
-##### `BUCKET_OWNER_PREFERRED` <a name="BUCKET_OWNER_PREFERRED" id="@gammarers/aws-secure-bucket.SecureObjectOwnership.BUCKET_OWNER_PREFERRED"></a>
+Specifies the redirect behavior of all requests to a website endpoint of a bucket.
-Objects uploaded to the bucket change ownership to the bucket owner .
+If you specify this property, you can't specify "websiteIndexDocument", "websiteErrorDocument" nor , "websiteRoutingRules".
 ---
+##### `websiteRoutingRules`<sup>Optional</sup> <a name="websiteRoutingRules" id="@gammarers/aws-secure-bucket.SecureBucketProps.property.websiteRoutingRules"></a>
-##### `OBJECT_WRITER` <a name="OBJECT_WRITER" id="@gammarers/aws-secure-bucket.SecureObjectOwnership.OBJECT_WRITER"></a>
+```typescript
+public readonly websiteRoutingRules: RoutingRule[];
+```
+- *Type:* aws-cdk-lib.aws_s3.RoutingRule[]
+- *Default:* No redirection rules.
-The uploading account will own the object.
+Rules that define when a redirect is applied and the redirect behavior.
 ---

package/lib/index.d.ts CHANGED Viewed

@@ -1,45 +1,6 @@
 import * as s3 from 'aws-cdk-lib/aws-s3';
 import { Construct } from 'constructs';
-export interface SecureBucketProps {
-    readonly bucketName?: string;
-    readonly encryption?: SecureBucketEncryption;
-    readonly versioned?: boolean;
-    readonly eventBridgeEnabled?: boolean;
-    readonly lifecycleRules?: s3.LifecycleRule[];
-    readonly objectOwnership?: SecureObjectOwnership;
-}
-export declare enum SecureBucketEncryption {
-    /**
-     * Server-side KMS encryption with a master key managed by KMS.
-     */
-    KMS_MANAGED = "KMS_MANAGED",
-    /**
-     * Server-side encryption with a master key managed by S3.
-     */
-    S3_MANAGED = "S3_MANAGED"
-}
-/**
- * The ObjectOwnership of the bucket.
- *
- * @see https://docs.aws.amazon.com/AmazonS3/latest/dev/about-object-ownership.html
- *
- */
-export declare enum SecureObjectOwnership {
-    /**
-     * ACLs are disabled, and the bucket owner automatically owns
-     * and has full control over every object in the bucket.
-     * ACLs no longer affect permissions to data in the S3 bucket.
-     * The bucket uses policies to define access control.
-     */
-    BUCKET_OWNER_ENFORCED = "BucketOwnerEnforced",
-    /**
-     * Objects uploaded to the bucket change ownership to the bucket owner .
-     */
-    BUCKET_OWNER_PREFERRED = "BucketOwnerPreferred",
-    /**
-     * The uploading account will own the object.
-     */
-    OBJECT_WRITER = "ObjectWriter"
+export interface SecureBucketProps extends s3.BucketProps {
 }
 export declare class SecureBucket extends s3.Bucket {
     constructor(scope: Construct, id: string, props?: SecureBucketProps);

package/lib/index.js CHANGED Viewed

@@ -1,77 +1,40 @@
 "use strict";
 var _a;
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.SecureBucket = exports.SecureObjectOwnership = exports.SecureBucketEncryption = void 0;
+exports.SecureBucket = void 0;
 const JSII_RTTI_SYMBOL_1 = Symbol.for("jsii.rtti");
 const cdk = require("aws-cdk-lib");
 const s3 = require("aws-cdk-lib/aws-s3");
-var SecureBucketEncryption;
-(function (SecureBucketEncryption) {
-    /**
-     * Server-side KMS encryption with a master key managed by KMS.
-     */
-    SecureBucketEncryption["KMS_MANAGED"] = "KMS_MANAGED";
-    /**
-     * Server-side encryption with a master key managed by S3.
-     */
-    SecureBucketEncryption["S3_MANAGED"] = "S3_MANAGED";
-})(SecureBucketEncryption || (exports.SecureBucketEncryption = SecureBucketEncryption = {}));
-/**
- * The ObjectOwnership of the bucket.
- *
- * @see https://docs.aws.amazon.com/AmazonS3/latest/dev/about-object-ownership.html
- *
- */
-var SecureObjectOwnership;
-(function (SecureObjectOwnership) {
-    /**
-     * ACLs are disabled, and the bucket owner automatically owns
-     * and has full control over every object in the bucket.
-     * ACLs no longer affect permissions to data in the S3 bucket.
-     * The bucket uses policies to define access control.
-     */
-    SecureObjectOwnership["BUCKET_OWNER_ENFORCED"] = "BucketOwnerEnforced";
-    /**
-     * Objects uploaded to the bucket change ownership to the bucket owner .
-     */
-    SecureObjectOwnership["BUCKET_OWNER_PREFERRED"] = "BucketOwnerPreferred";
-    /**
-     * The uploading account will own the object.
-     */
-    SecureObjectOwnership["OBJECT_WRITER"] = "ObjectWriter";
-})(SecureObjectOwnership || (exports.SecureObjectOwnership = SecureObjectOwnership = {}));
 class SecureBucket extends s3.Bucket {
     constructor(scope, id, props) {
         super(scope, id, {
-            bucketName: props?.bucketName,
-            accessControl: s3.BucketAccessControl.PRIVATE,
+            ...props,
             removalPolicy: cdk.RemovalPolicy.RETAIN,
             encryption: (() => {
-                if (props?.encryption) {
-                    switch (props.encryption) {
-                        case SecureBucketEncryption.KMS_MANAGED:
-                            return s3.BucketEncryption.KMS_MANAGED;
-                        case SecureBucketEncryption.S3_MANAGED:
-                            return s3.BucketEncryption.S3_MANAGED;
+                if (!props?.encryption) {
+                    return s3.BucketEncryption.KMS_MANAGED;
+                }
+                else {
+                    if (props.encryption === s3.BucketEncryption.UNENCRYPTED) {
+                        throw new Error('DeplicatedArgumentFoundError: BucketEncryption.UNENCRYPTED is deplicated, Bucket cano not be unencrypted.');
                     }
                 }
-                return s3.BucketEncryption.KMS_MANAGED;
+                return props.encryption;
+            })(),
+            accessControl: (() => {
+                if (!props?.accessControl) {
+                    return s3.BucketAccessControl.PRIVATE;
+                }
+                return props.accessControl;
             })(),
+            eventBridgeEnabled: undefined,
             publicReadAccess: false,
             blockPublicAccess: s3.BlockPublicAccess.BLOCK_ALL,
             enforceSSL: true,
-            versioned: props?.versioned ? props.versioned : true,
-            lifecycleRules: props?.lifecycleRules,
+            versioned: props?.versioned !== undefined ? props.versioned : true,
             objectOwnership: (() => {
                 if (props?.objectOwnership) {
-                    switch (props.objectOwnership) {
-                        case SecureObjectOwnership.BUCKET_OWNER_ENFORCED:
-                            return s3.ObjectOwnership.BUCKET_OWNER_ENFORCED;
-                        case SecureObjectOwnership.BUCKET_OWNER_PREFERRED:
-                            return s3.ObjectOwnership.BUCKET_OWNER_PREFERRED;
-                        case SecureObjectOwnership.OBJECT_WRITER:
-                            return s3.ObjectOwnership.OBJECT_WRITER;
-                    }
+                    return props.objectOwnership;
                 }
                 return s3.ObjectOwnership.BUCKET_OWNER_ENFORCED;
             })(),
@@ -81,14 +44,9 @@ class SecureBucket extends s3.Bucket {
         if (props?.eventBridgeEnabled === true) {
             cfnBucket.addPropertyOverride('NotificationConfiguration.EventBridgeConfiguration.EventBridgeEnabled', true);
         }
-        // todo: cloudTrailEnabled
-        // const trail = new cloudtrail.Trail(this, 'Trail');
-        // trail.addS3EventSelector([{ bucket: this }], {
-        //   readWriteType: cloudtrail.ReadWriteType.ALL,
-        // });
     }
 }
 exports.SecureBucket = SecureBucket;
 _a = JSII_RTTI_SYMBOL_1;
-SecureBucket[_a] = { fqn: "@gammarers/aws-secure-bucket.SecureBucket", version: "1.4.6" };
-//# sourceMappingURL=data:application/json;base64,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
+SecureBucket[_a] = { fqn: "@gammarers/aws-secure-bucket.SecureBucket", version: "2.0.0" };
+//# sourceMappingURL=data:application/json;base64,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

package/package.json CHANGED Viewed

@@ -48,16 +48,16 @@
     "eslint-plugin-import": "^2.29.1",
     "jest": "^29.7.0",
     "jest-junit": "^15",
-    "jsii": "5.3.x",
+    "jsii": "5.4.x",
     "jsii-diff": "^1.101.0",
     "jsii-docgen": "^10.4.17",
     "jsii-pacmak": "^1.101.0",
-    "jsii-rosetta": "5.3.x",
+    "jsii-rosetta": "5.4.x",
     "projen": "^0.82.8",
     "standard-version": "^9",
     "ts-jest": "^29.1.5",
     "ts-node": "^10.9.2",
-    "typescript": "5.3.x"
+    "typescript": "5.4.x"
   },
   "peerDependencies": {
     "aws-cdk-lib": "^2.80.0",
@@ -80,7 +80,7 @@
   "publishConfig": {
     "access": "public"
   },
-  "version": "1.4.6",
+  "version": "2.0.0",
   "jest": {
     "coverageProvider": "v8",
     "testMatch": [