Policy: AWS > S3 > Bucket > Access Logging

Define the Access Logging settings required for AWS > S3 > Bucket.

AWS > S3 > Bucket provides access logs that capture detailed information about requests sent to your bucket. Each log contains information such as the time the request was received, the client's IP address, latencies, request paths, and server responses. You can use these access logs to analyze traffic patterns and troubleshoot issues.

Resource Types

This policy targets the following resource types:

AWS > S3 > Bucket

Controls

AWS > S3 > Bucket > Access Logging

Policy Packs

This policy setting is used by the following policy packs:

Policy Specification

Schema Type	`string`
Default	`Skip`
Valid Values [YAML]	`Skip` `Check: Disabled` `Check: Enabled` `Check: Enabled to Access Logging > Bucket` `Enforce: Disabled` `Enforce: Enabled to Access Logging > Bucket`
Examples [YAML]	`Skip`

In Your Workspace

Policy Settings by Type report

Developers

Category URI

tmod:@turbot/turbot#/control/categories/resourceLogging

Policy Type URI

tmod:@turbot/aws-s3#/policy/types/bucketAccessLogging

GraphQL

query policyType(id: "tmod:@turbot/aws-s3#/policy/types/bucketAccessLogging") { … }

query policySettings(filter: "policyTypeId:'tmod:@turbot/aws-s3#/policy/types/bucketAccessLogging'") { … }

query policyValues(filter: "policyTypeId:'tmod:@turbot/aws-s3#/policy/types/bucketAccessLogging'") { … }

CLI

Get Policy Type

turbot graphql policy-type --id "tmod:@turbot/aws-s3#/policy/types/bucketAccessLogging"

Get Policy Settings

turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/aws-s3#/policy/types/bucketAccessLogging"