S3Control / Client / put_public_access_block
put_public_access_block#
- S3Control.Client.put_public_access_block(**kwargs)#
- Note- This operation is not supported by directory buckets. - Creates or modifies the - PublicAccessBlockconfiguration for an Amazon Web Services account. For this operation, users must have the- s3:PutAccountPublicAccessBlockpermission. For more information, see Using Amazon S3 block public access.- Related actions include: - See also: AWS API Documentation - Request Syntax- response = client.put_public_access_block( PublicAccessBlockConfiguration={ 'BlockPublicAcls': True|False, 'IgnorePublicAcls': True|False, 'BlockPublicPolicy': True|False, 'RestrictPublicBuckets': True|False }, AccountId='string' ) - Parameters:
- PublicAccessBlockConfiguration (dict) – - [REQUIRED] - The - PublicAccessBlockconfiguration that you want to apply to the specified Amazon Web Services account.- BlockPublicAcls (boolean) – - Specifies whether Amazon S3 should block public access control lists (ACLs) for buckets in this account. Setting this element to - TRUEcauses the following behavior:- PutBucketAcland- PutObjectAclcalls fail if the specified ACL is public.
- PUT Object calls fail if the request includes a public ACL. 
- PUT Bucket calls fail if the request includes a public ACL. 
 - Enabling this setting doesn’t affect existing policies or ACLs. - This property is not supported for Amazon S3 on Outposts. 
- IgnorePublicAcls (boolean) – - Specifies whether Amazon S3 should ignore public ACLs for buckets in this account. Setting this element to - TRUEcauses Amazon S3 to ignore all public ACLs on buckets in this account and any objects that they contain.- Enabling this setting doesn’t affect the persistence of any existing ACLs and doesn’t prevent new public ACLs from being set. - This property is not supported for Amazon S3 on Outposts. 
- BlockPublicPolicy (boolean) – - Specifies whether Amazon S3 should block public bucket policies for buckets in this account. Setting this element to - TRUEcauses Amazon S3 to reject calls to PUT Bucket policy if the specified bucket policy allows public access.- Enabling this setting doesn’t affect existing bucket policies. - This property is not supported for Amazon S3 on Outposts. 
- RestrictPublicBuckets (boolean) – - Specifies whether Amazon S3 should restrict public bucket policies for buckets in this account. Setting this element to - TRUErestricts access to buckets with public policies to only Amazon Web Servicesservice principals and authorized users within this account.- Enabling this setting doesn’t affect previously stored bucket policies, except that public and cross-account access within any public bucket policy, including non-public delegation to specific accounts, is blocked. - This property is not supported for Amazon S3 on Outposts. 
 
- AccountId (string) – - [REQUIRED] - The account ID for the Amazon Web Services account whose - PublicAccessBlockconfiguration you want to set.
 
- Returns:
- None