Type
XRD
Group
s3.aws.example.cloud
Version
v1alpha1
apiVersion: s3.aws.example.cloud/v1alpha1
kind: CompositeBucketPolicy
An BucketPolicySpec defines the desired state of an BucketPolicy.
BucketPolicyParameters define the desired state of an AWS BucketPolicy.
BucketNameRef references to an S3Bucket to retrieve its bucketName
Policies for referencing.
BucketNameSelector selects a reference to an S3Bucket to retrieve its bucketName
Policies for selection.
Policy is a well defined type which can be parsed into an JSON S3 Bucket Policy either policy or rawPolicy must be specified in the policy
Statements is the list of statement this policy applies either jsonStatements or statements must be specified in the policy
Each element of the PolicyAction array describes the specific action or actions that will be allowed or denied with this PolicyStatement.
Condition specifies where conditions for policy are in effect. https://docs.aws.amazon.com/AmazonS3/latest/dev/amazon-s3-policy-keys.html
Conditions represents each of the key/value pairs for the operator key
ConditionListValue is the list value of the key from the parent condition
Each element of the NotPolicyAction array will allow the property to match all but the listed actions.
Used with the S3 policy to specify the users which are not included in this policy
This list contains the all of the AWS IAM users which are affected by the policy statement.
IAMRoleARNRef contains the reference to an IAMRole
Policies for referencing.
IAMRoleARNSelector queries for an IAM role to retrieve its userName
Policies for selection.
UserARNRef contains the reference to an User
Policies for referencing.
UserARNSelector queries for an User to retrieve its userName
Policies for selection.
Service define the services which can have access to this bucket
This will explicitly match all resource paths except the ones specified in this array
Used with the S3 policy to specify the principal that is allowed or denied access to a resource.
This list contains the all of the AWS IAM users which are affected by the policy statement.
IAMRoleARNRef contains the reference to an IAMRole
Policies for referencing.
IAMRoleARNSelector queries for an IAM role to retrieve its userName
Policies for selection.
UserARNRef contains the reference to an User
Policies for referencing.
UserARNSelector queries for an User to retrieve its userName
Policies for selection.
Service define the services which can have access to this bucket
The paths on which this resource will apply
ProviderConfigReference specifies how the provider that will be used to create, observe, update, and delete this managed resource should be configured.
Policies for referencing.
PublishConnectionDetailsTo specifies the connection secret config which contains a name, metadata and a reference to secret store config to which any connection details for this managed resource should be written. Connection details frequently include the endpoint, username, and password required to connect to the managed resource.