ionoscloud_s3_bucket_policy

Creates and manages IonosCloud IONOS Object Storage Buckets policies.

Manages Buckets policies on IonosCloud.

⚠️ Note: The Terraform provider only supports contract-owned buckets. User-owned buckets are not supported, and there are no plans to introduce support for them. As a result, user-owned buckets cannot be created, updated, deleted, read, or imported using this provider.

Example Usage


resource "ionoscloud_s3_bucket" "example" {
  name = "example"
}

resource "ionoscloud_s3_bucket_policy" "example" {
  bucket = ionoscloud_s3_bucket.example.name
  policy = jsonencode({
    Version = "2012-10-17"
    Statement = [
      {
        Sid = "Delegate certain actions to another user"
        Action = [
          "s3:ListBucket",
          "s3:PutObject",
          "s3:GetObject"
        ]
        Effect = "Allow"
        Resource = [
          "arn:aws:s3:::example",
          "arn:aws:s3:::example/*"
        ]
        Condition = {
          IpAddress = [
            "123.123.123.123/32"
          ]
        }
        Principal = [
          "arn:aws:iam:::user/31000000:9acd8251-2857-410e-b1fd-ca86462bdcec"
        ]
      }
    ]
  })
}

Argument Reference

The following arguments are supported:

bucket - (Required)[string] The name of the bucket where the object will be stored.
policy - (Required)[string] The policy document. This is a JSON formatted string.

Import

Resource Policy can be imported using the bucket name

terraform import ionoscloud_s3_bucket_policy.example example

Previousionoscloud_s3_object_lock_configuration Nextionoscloud_s3_public_access_block

Last updated 3 months ago