Sha256: 7e32bf33378c9b9a8f3b6e9c919a89f492aa6f233056c83937035513f39dd335
Contents?: true
Size: 1.18 KB
Versions: 3
Compression:
Stored size: 1.18 KB
Contents
module S3Secure::Policy
class Unforce < Base
def initialize(options={})
super
@sid = options[:sid]
end
def run
show = S3Secure::Policy::Show.new(@options)
bucket_policy = show.policy
document = Document.new(@bucket, bucket_policy, remove: true)
if document.has?(@sid)
# Set encryption rules
# Ruby docs: https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/S3/Client.html#put_bucket_policy-instance_method
# API docs: https://docs.aws.amazon.com/AmazonS3/latest/API/API_ServerSideEncryptionByDefault.html
#
# put_bucket_policy returns #<struct Aws::EmptyStructure>
#
policy_document = document.policy_document(@sid)
if policy_document
s3.put_bucket_policy(
bucket: @bucket,
policy: policy_document,
)
else
s3.delete_bucket_policy(bucket: @bucket)
end
say "Remove bucket policy statement from bucket #{@bucket}:"
say policy_document if policy_document
else
say "Bucket policy for #{@bucket} does not have ForceSSLOnlyAccess policy statement. Nothing to be done."
end
end
end
end
Version data entries
3 entries across 3 versions & 1 rubygems
| Version | Path |
|---|---|
| s3-secure-0.7.0 | lib/s3_secure/policy/unforce.rb |
| s3-secure-0.6.1 | lib/s3_secure/policy/unforce.rb |
| s3-secure-0.6.0 | lib/s3_secure/policy/unforce.rb |