---
# generated by https://github.com/hashicorp/terraform-plugin-docs
page_title: "awscc_s3_access_point Resource - terraform-provider-awscc"
subcategory: ""
description: |-
  The AWS::S3::AccessPoint resource is an Amazon S3 resource type that you can use to access buckets.
---

# awscc_s3_access_point (Resource)

The AWS::S3::AccessPoint resource is an Amazon S3 resource type that you can use to access buckets.



<!-- schema generated by tfplugindocs -->
## Schema

### Required

- `bucket` (String) The name of the bucket that you want to associate this Access Point with.

### Optional

- `policy` (Map of String) The Access Point Policy you want to apply to this access point.
- `policy_status` (Attributes) (see [below for nested schema](#nestedatt--policy_status))
- `public_access_block_configuration` (Attributes) The PublicAccessBlock configuration that you want to apply to this Access Point. You can enable the configuration options in any combination. For more information about when Amazon S3 considers a bucket or object public, see https://docs.aws.amazon.com/AmazonS3/latest/dev/access-control-block-public-access.html#access-control-block-public-access-policy-status 'The Meaning of Public' in the Amazon Simple Storage Service Developer Guide. (see [below for nested schema](#nestedatt--public_access_block_configuration))
- `vpc_configuration` (Attributes) If you include this field, Amazon S3 restricts access to this Access Point to requests from the specified Virtual Private Cloud (VPC). (see [below for nested schema](#nestedatt--vpc_configuration))

### Read-Only

- `alias` (String) The alias of this Access Point. This alias can be used for compatibility purposes with other AWS services and third-party applications.
- `arn` (String) The Amazon Resource Name (ARN) of the specified accesspoint.
- `id` (String) Uniquely identifies the resource.
- `name` (String) The name you want to assign to this Access Point. If you don't specify a name, AWS CloudFormation generates a unique ID and uses that ID for the access point name.
- `network_origin` (String) Indicates whether this Access Point allows access from the public Internet. If VpcConfiguration is specified for this Access Point, then NetworkOrigin is VPC, and the Access Point doesn't allow access from the public Internet. Otherwise, NetworkOrigin is Internet, and the Access Point allows access from the public Internet, subject to the Access Point and bucket access policies.

<a id="nestedatt--policy_status"></a>
### Nested Schema for `policy_status`

Optional:

- `is_public` (String) Specifies whether the policy is public or not.


<a id="nestedatt--public_access_block_configuration"></a>
### Nested Schema for `public_access_block_configuration`

Optional:

- `block_public_acls` (Boolean) Specifies whether Amazon S3 should block public access control lists (ACLs) for buckets in this account. Setting this element to TRUE causes the following behavior:
- PUT Bucket acl and PUT Object acl calls fail if the specified ACL is public.
 - PUT Object calls fail if the request includes a public ACL.
. - PUT Bucket calls fail if the request includes a public ACL.
Enabling this setting doesn't affect existing policies or ACLs.
- `block_public_policy` (Boolean) Specifies whether Amazon S3 should block public bucket policies for buckets in this account. Setting this element to TRUE causes Amazon S3 to reject calls to PUT Bucket policy if the specified bucket policy allows public access. Enabling this setting doesn't affect existing bucket policies.
- `ignore_public_acls` (Boolean) Specifies whether Amazon S3 should ignore public ACLs for buckets in this account. Setting this element to TRUE causes Amazon S3 to ignore all public ACLs on buckets in this account and any objects that they contain. Enabling this setting doesn't affect the persistence of any existing ACLs and doesn't prevent new public ACLs from being set.
- `restrict_public_buckets` (Boolean) Specifies whether Amazon S3 should restrict public bucket policies for this bucket. Setting this element to TRUE restricts access to this bucket to only AWS services and authorized users within this account if the bucket has a public policy.
Enabling this setting doesn't affect previously stored bucket policies, except that public and cross-account access within any public bucket policy, including non-public delegation to specific accounts, is blocked.


<a id="nestedatt--vpc_configuration"></a>
### Nested Schema for `vpc_configuration`

Optional:

- `vpc_id` (String) If this field is specified, this access point will only allow connections from the specified VPC ID.

## Import

Import is supported using the following syntax:

```shell
$ terraform import awscc_s3_access_point.example <resource ID>
```