Support for Object ACL's on S3 Object Creation

[blakestoddard]

Affected Resource(s)

Please list the resources as a list, for example:

• aws_s3_bucket_object

Terraform Configuration Files

resource "aws_s3_bucket_object" "object" {
    bucket = "bucket-name"
    key = "test.txt"
    source = "./test.txt"
}.

Currently, when you control the lifecycle of a bucket with Terraform, the only place that you are able to set the ACL is at the bucket level, through the aws_s3_bucket resource. If you create a private bucket and want to upload an object that is publicly accessible, which is common, you are stuck to using the AWS Console to mark that object as public or edit the ACL for it.

The AWS CLI supports a put-object-acl command which allows you to edit the ACL of an object that already exists in a bucket. Could something similar be implemented so that object permissions could be modified through Terraform?

[catsby]

Seems like a reasonable thing to provider here, thanks!

[JonRoma]

+1

I find this a rather large omission!

[stack72]

Closed via #8091

[dbeckham]

Issue #8091 addresses canned ACL's, but not object or bucket ACLs that can be set through the put-object-acl or put-bucket-acl API commands, which this ticket is specifically asking for.

[yermulnik]

Can this be re-opened?

[ghost]

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues.

If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.