Open in app

Sign in

Write

Sign in

AWS disabled S3 ACL

Myron Zaiets
Terraform/AWS tips
Published in
2 min readMay 2, 2023

Hi,

As per this news: https://aws.amazon.com/about-aws/whats-new/2022/12/amazon-s3-automatically-enable-block-public-access-disable-access-control-lists-buckets-april-2023/, all new buckets will have ACL automatically disabled.

If you go to bucket permissions, you will something like this:

If we click edit, we have:

So we have our ACL disabled and access is controlled by using bucket policies.

When using Terraform, this code (ACL part) will not apply:

The bucket will be created, but when applying ACL, you will see this error:

So ACL is not allowed for all new buckets. To enable ACL (which is not recommended) we can add those lines:

Bucket ownership control will change ACL to private, in a console we have:

As you see, this option is not a very good solution. That’s all.

To summarize, ACLs are now disabled for all new buckets, and you only need to use bucket policies to control access to your bucket.

AWS
S3
Bucket Policy
Acl
Terraform

--

--

Myron Zaiets
Terraform/AWS tips

Written by Myron Zaiets

98 Followers
Editor for

AWS Cloud Engineer/DevOps/✔5x AWS Certified

Help

Status

About

Careers

Press

Blog

Privacy

Terms

Text to speech

Teams