AwsS3BucketDetails - AWS Security Hub
ContentsSee Also

AwsS3BucketDetails

The details of an Amazon Simple Storage Service (Amazon S3) bucket.

Contents

AccessControlList

The access control list for the S3 bucket.

Type: String

Pattern: .*\S.*

Required: No

BucketLifecycleConfiguration

The lifecycle configuration for objects in the specified bucket.

Type: AwsS3BucketBucketLifecycleConfigurationDetails object

Required: No

BucketLoggingConfiguration

The logging configuration for the S3 bucket.

Type: AwsS3BucketLoggingConfiguration object

Required: No

BucketNotificationConfiguration

The notification configuration for the S3 bucket.

Type: AwsS3BucketNotificationConfiguration object

Required: No

BucketVersioningConfiguration

The versioning state of an S3 bucket.

Type: AwsS3BucketBucketVersioningConfiguration object

Required: No

BucketWebsiteConfiguration

The website configuration parameters for the S3 bucket.

Type: AwsS3BucketWebsiteConfiguration object

Required: No

CreatedAt

Indicates when the S3 bucket was created.

This field accepts only the specified formats. Timestamps can end with Z or ("+" / "-") time-hour [":" time-minute]. The time-secfrac after seconds is limited to a maximum of 9 digits. The offset is bounded by +/-18:00. Here are valid timestamp formats that you can send to Security Hub:

  • YYYY-MM-DDTHH:MM:SSZ (for example, 2019-01-31T23:00:00Z)

  • YYYY-MM-DDTHH:MM:SS.mmmmmmmmmZ (for example, 2019-01-31T23:00:00.123456789Z)

  • YYYY-MM-DDTHH:MM:SS+HH:MM (for example, 2024-01-04T15:25:10+17:59)

  • YYYY-MM-DDTHH:MM:SS-HHMM (for example, 2024-01-04T15:25:10-1759)

  • YYYY-MM-DDTHH:MM:SS.mmmmmmmmm+HH:MM (for example, 2024-01-04T15:25:10.123456789+17:59)

If a finding provider sends a finding to Security Hub that contains a timestamp in nanoseconds, we round it to milliseconds. For example, we round 2024-10-31T23:00:00.123456789Z to 2024-10-31T23:00:00.123Z.

Type: String

Pattern: .*\S.*

Required: No

Name

The name of the bucket.

Type: String

Pattern: .*\S.*

Required: No

ObjectLockConfiguration

Specifies which rule Amazon S3 applies by default to every new object placed in the bucket.

Type: AwsS3BucketObjectLockConfiguration object

Required: No

OwnerAccountId

The AWS account identifier of the account that owns the S3 bucket.

Type: String

Pattern: .*\S.*

Required: No

OwnerId

The canonical user ID of the owner of the S3 bucket.

Type: String

Pattern: .*\S.*

Required: No

OwnerName

The display name of the owner of the S3 bucket.

Type: String

Pattern: .*\S.*

Required: No

PublicAccessBlockConfiguration

Provides information about the Amazon S3 Public Access Block configuration for the S3 bucket.

Type: AwsS3AccountPublicAccessBlockDetails object

Required: No

ServerSideEncryptionConfiguration

The encryption rules that are applied to the S3 bucket.

Type: AwsS3BucketServerSideEncryptionConfiguration object

Required: No

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following: