AWS AmazonS3 documentation change
Summary
Updated terminology to specify 'general purpose bucket' in Object Ownership context
Security assessment
Change clarifies bucket type in existing security context but does not introduce new security features or address vulnerabilities
Diff
diff --git a/AmazonS3/latest/userguide/how-s3-evaluates-access-control.md b/AmazonS3/latest/userguide/how-s3-evaluates-access-control.md index e192a79fc..64a0a768a 100644 --- a//AmazonS3/latest/userguide/how-s3-evaluates-access-control.md +++ b//AmazonS3/latest/userguide/how-s3-evaluates-access-control.md @@ -46 +46 @@ If the request is for an operation on an object that the bucket owner doesn't ow -By default, when another AWS account uploads an object to your S3 bucket, that account (the object writer) owns the object, has access to it, and can grant other users access to it through access control lists (ACLs). You can use Object Ownership to change this default behavior so that ACLs are disabled and you, as the bucket owner, automatically own every object in your bucket. As a result, access control for your data is based on policies, such as IAM user policies, S3 bucket policies, virtual private cloud (VPC) endpoint policies, and AWS Organizations service control policies (SCPs). For more information, see [Controlling ownership of objects and disabling ACLs for your bucket](./about-object-ownership.html). +By default, when another AWS account uploads an object to your S3 general purpose bucket, that account (the object writer) owns the object, has access to it, and can grant other users access to it through access control lists (ACLs). You can use Object Ownership to change this default behavior so that ACLs are disabled and you, as the bucket owner, automatically own every object in your general purpose bucket. As a result, access control for your data is based on policies, such as IAM user policies, S3 bucket policies, virtual private cloud (VPC) endpoint policies, and AWS Organizations service control policies (SCPs). For more information, see [Controlling ownership of objects and disabling ACLs for your bucket](./about-object-ownership.html).