Posted On: Sep 11, 2020
Amazon S3 now provides bucket owner condition, allowing you to validate the AWS Account ID of the owner of an S3 bucket. Bucket owner condition helps you to easily verify that the S3 buckets that you interact with are owned by expected AWS Accounts.
S3 Request APIs can now include an optional bucket ownership condition parameter containing an AWS Account ID, that helps customers to verify that a specified AWS Account ID is associated with the bucket they are communicating with. When bucket owner condition is used, S3 API requests will only succeed if the bucket owner matches the account specified. This helps to prevent accidental interaction with buckets owned by unexpected AWS Accounts.
S3 clients will need to be updated to support bucket owner condition. Bucket owner condition is available in the latest AWS Command Line Interface (CLI), Application Programming Interface (API), and the updated AWS Software Development Kit (SDK).
S3 bucket owner condition is available at no additional cost in all AWS Regions, including the AWS GovCloud (US) Regions, the AWS China (Beijing) Region, operated by Sinnet, and the AWS China (Ningxia) Region, operated by NWCD.
To learn more about the bucket owner condition, visit the S3 Documentation.