Sha256: 103a2c9146b04fe27298be054e2b9d33843d98235b1e7e06683ce7220c5acb74
Contents?: true
Size: 1.11 KB
Versions: 6
Compression:
Stored size: 1.11 KB
Contents
class S3Secure::Policy
class Enforce < Base
def initialize(options={})
super
@sid = options[:sid]
end
def run
@s3 = s3_regional_client(@bucket)
list = S3Secure::Policy::List.new(@options)
list.set_s3(@s3)
bucket_policy = list.get_policy(@bucket)
document = Document.new(@bucket, bucket_policy)
if document.has?(@sid)
puts "Bucket policy for #{@bucket} has ForceSSLOnlyAccess policy statement already:"
puts bucket_policy
else
# Set encryption rules
# Ruby docs: https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/S3/Client.html#put_bucket_policy-instance_method
# API docs: https://docs.aws.amazon.com/AmazonS3/latest/API/API_ServerSideEncryptionByDefault.html
#
# put_bucket_policy returns #<struct Aws::EmptyStructure>
#
policy_document = document.policy_document(@sid)
@s3.put_bucket_policy(
bucket: @bucket,
policy: policy_document,
)
puts "Add bucket policy to bucket #{@bucket}:"
puts policy_document
end
end
end
end
Version data entries
6 entries across 6 versions & 1 rubygems