This message was deleted.
# aws
s
This message was deleted.
b
okay, this is actually AWS creating a magic button to create a whole bunch of resources in the background. They don’t expose this via their API as a single setting, it’s actually a bucket policy.
👍 1
s
okay, this is actually AWS creating a magic button to create a whole bunch of resources in the background. They don’t expose this via their API as a single setting, it’s actually a bucket policy.
I understand for the “access control settings”. But what about “legacy access identities”? Also wonder what is
origin_id
there’s an example in typescript here: https://github.com/jaxxstorm/pulumi-examples/blob/main/typescript/aws/s3-cloudfront/index.ts
thanks, looking now, helps a lot
I see from your typescript example you need to apply a special policy to the bucket. Will try that
Even better, the example in Python in my case:
m
If your bucket uses SSE, you need to use AES256, KMS doesn't work with OAI
b
OAC isn’t in the cloud control API or terraform yet 😞
😞 1
😟 1