// Code generated by smithy-go-codegen DO NOT EDIT. package s3 import ( "context" awsmiddleware "github.com/aws/aws-sdk-go-v2/aws/middleware" "github.com/aws/aws-sdk-go-v2/aws/signer/v4" s3cust "github.com/aws/aws-sdk-go-v2/service/s3/internal/customizations" "github.com/aws/aws-sdk-go-v2/service/s3/types" "github.com/aws/smithy-go/middleware" smithyhttp "github.com/aws/smithy-go/transport/http" ) // Creates a new S3 bucket. To create a bucket, you must register with Amazon S3 // and have a valid Amazon Web Services Access Key ID to authenticate requests. // Anonymous requests are never allowed to create buckets. By creating the bucket, // you become the bucket owner. Not every string is an acceptable bucket name. For // information about bucket naming restrictions, see Bucket naming rules // (https://docs.aws.amazon.com/AmazonS3/latest/userguide/bucketnamingrules.html). // If you want to create an Amazon S3 on Outposts bucket, see Create Bucket // (https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_CreateBucket.html). // By default, the bucket is created in the US East (N. Virginia) Region. You can // optionally specify a Region in the request body. You might choose a Region to // optimize latency, minimize costs, or address regulatory requirements. For // example, if you reside in Europe, you will probably find it advantageous to // create buckets in the Europe (Ireland) Region. For more information, see // Accessing a bucket // (https://docs.aws.amazon.com/AmazonS3/latest/dev/UsingBucket.html#access-bucket-intro). // If you send your create bucket request to the s3.amazonaws.com endpoint, the // request goes to the us-east-1 Region. Accordingly, the signature calculations in // Signature Version 4 must use us-east-1 as the Region, even if the location // constraint in the request specifies another Region where the bucket is to be // created. If you create a bucket in a Region other than US East (N. Virginia), // your application must be able to handle 307 redirect. For more information, see // Virtual hosting of buckets // (https://docs.aws.amazon.com/AmazonS3/latest/dev/VirtualHosting.html). When // creating a bucket using this operation, you can optionally specify the accounts // or groups that should be granted specific permissions on the bucket. There are // two ways to grant the appropriate permissions using the request headers. // // * // Specify a canned ACL using the x-amz-acl request header. Amazon S3 supports a // set of predefined ACLs, known as canned ACLs. Each canned ACL has a predefined // set of grantees and permissions. For more information, see Canned ACL // (https://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html#CannedACL). // // * // Specify access permissions explicitly using the x-amz-grant-read, // x-amz-grant-write, x-amz-grant-read-acp, x-amz-grant-write-acp, and // x-amz-grant-full-control headers. These headers map to the set of permissions // Amazon S3 supports in an ACL. For more information, see Access control list // (ACL) overview // (https://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html). You specify // each grantee as a type=value pair, where the type is one of the following: // // * id // – if the value specified is the canonical user ID of an Amazon Web Services // account // // * uri – if you are granting permissions to a predefined group // // * // emailAddress – if the value specified is the email address of an Amazon Web // Services account Using email addresses to specify a grantee is only supported in // the following Amazon Web Services Regions: // // * US East (N. Virginia) // // * US West // (N. California) // // * US West (Oregon) // // * Asia Pacific (Singapore) // // * Asia Pacific // (Sydney) // // * Asia Pacific (Tokyo) // // * Europe (Ireland) // // * South America (São // Paulo) // // For a list of all the Amazon S3 supported Regions and endpoints, see // Regions and Endpoints // (https://docs.aws.amazon.com/general/latest/gr/rande.html#s3_region) in the // Amazon Web Services General Reference. // // For example, the following // x-amz-grant-read header grants the Amazon Web Services accounts identified by // account IDs permissions to read object data and its metadata: x-amz-grant-read: // id="11112222333", id="444455556666" // // You can use either a canned ACL or specify // access permissions explicitly. You cannot do both. Permissions If your // CreateBucket request specifies ACL permissions and the ACL is public-read, // public-read-write, authenticated-read, or if you specify access permissions // explicitly through any other ACL, both s3:CreateBucket and s3:PutBucketAcl // permissions are needed. If the ACL the CreateBucket request is private, only // s3:CreateBucket permission is needed. If ObjectLockEnabledForBucket is set to // true in your CreateBucket request, s3:PutBucketObjectLockConfiguration and // s3:PutBucketVersioning permissions are required. The following operations are // related to CreateBucket: // // * PutObject // (https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutObject.html) // // * // DeleteBucket // (https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteBucket.html) func (c *Client) CreateBucket(ctx context.Context, params *CreateBucketInput, optFns ...func(*Options)) (*CreateBucketOutput, error) { if params == nil { params = &CreateBucketInput{} } result, metadata, err := c.invokeOperation(ctx, "CreateBucket", params, optFns, c.addOperationCreateBucketMiddlewares) if err != nil { return nil, err } out := result.(*CreateBucketOutput) out.ResultMetadata = metadata return out, nil } type CreateBucketInput struct { // The name of the bucket to create. // // This member is required. Bucket *string // The canned ACL to apply to the bucket. ACL types.BucketCannedACL // The configuration information for the bucket. CreateBucketConfiguration *types.CreateBucketConfiguration // Allows grantee the read, write, read ACP, and write ACP permissions on the // bucket. GrantFullControl *string // Allows grantee to list the objects in the bucket. GrantRead *string // Allows grantee to read the bucket ACL. GrantReadACP *string // Allows grantee to create new objects in the bucket. For the bucket and object // owners of existing objects, also allows deletions and overwrites of those // objects. GrantWrite *string // Allows grantee to write the ACL for the applicable bucket. GrantWriteACP *string // Specifies whether you want S3 Object Lock to be enabled for the new bucket. ObjectLockEnabledForBucket bool noSmithyDocumentSerde } type CreateBucketOutput struct { // Specifies the Region where the bucket will be created. If you are creating a // bucket on the US East (N. Virginia) Region (us-east-1), you do not need to // specify the location. Location *string // Metadata pertaining to the operation's result. ResultMetadata middleware.Metadata noSmithyDocumentSerde } func (c *Client) addOperationCreateBucketMiddlewares(stack *middleware.Stack, options Options) (err error) { err = stack.Serialize.Add(&awsRestxml_serializeOpCreateBucket{}, middleware.After) if err != nil { return err } err = stack.Deserialize.Add(&awsRestxml_deserializeOpCreateBucket{}, middleware.After) if err != nil { return err } if err = addSetLoggerMiddleware(stack, options); err != nil { return err } if err = awsmiddleware.AddClientRequestIDMiddleware(stack); err != nil { return err } if err = smithyhttp.AddComputeContentLengthMiddleware(stack); err != nil { return err } if err = addResolveEndpointMiddleware(stack, options); err != nil { return err } if err = v4.AddComputePayloadSHA256Middleware(stack); err != nil { return err } if err = addRetryMiddlewares(stack, options); err != nil { return err } if err = addHTTPSignerV4Middleware(stack, options); err != nil { return err } if err = awsmiddleware.AddRawResponseToMetadata(stack); err != nil { return err } if err = awsmiddleware.AddRecordResponseTiming(stack); err != nil { return err } if err = addClientUserAgent(stack); err != nil { return err } if err = smithyhttp.AddErrorCloseResponseBodyMiddleware(stack); err != nil { return err } if err = smithyhttp.AddCloseResponseBodyMiddleware(stack); err != nil { return err } if err = swapWithCustomHTTPSignerMiddleware(stack, options); err != nil { return err } if err = addOpCreateBucketValidationMiddleware(stack); err != nil { return err } if err = stack.Initialize.Add(newServiceMetadataMiddleware_opCreateBucket(options.Region), middleware.Before); err != nil { return err } if err = addMetadataRetrieverMiddleware(stack); err != nil { return err } if err = addCreateBucketUpdateEndpoint(stack, options); err != nil { return err } if err = addResponseErrorMiddleware(stack); err != nil { return err } if err = v4.AddContentSHA256HeaderMiddleware(stack); err != nil { return err } if err = disableAcceptEncodingGzip(stack); err != nil { return err } if err = addRequestResponseLogging(stack, options); err != nil { return err } return nil } func newServiceMetadataMiddleware_opCreateBucket(region string) *awsmiddleware.RegisterServiceMetadata { return &awsmiddleware.RegisterServiceMetadata{ Region: region, ServiceID: ServiceID, SigningName: "s3", OperationName: "CreateBucket", } } // getCreateBucketBucketMember returns a pointer to string denoting a provided // bucket member valueand a boolean indicating if the input has a modeled bucket // name, func getCreateBucketBucketMember(input interface{}) (*string, bool) { in := input.(*CreateBucketInput) if in.Bucket == nil { return nil, false } return in.Bucket, true } func addCreateBucketUpdateEndpoint(stack *middleware.Stack, options Options) error { return s3cust.UpdateEndpoint(stack, s3cust.UpdateEndpointOptions{ Accessor: s3cust.UpdateEndpointParameterAccessor{ GetBucketFromInput: getCreateBucketBucketMember, }, UsePathStyle: options.UsePathStyle, UseAccelerate: options.UseAccelerate, SupportsAccelerate: false, TargetS3ObjectLambda: false, EndpointResolver: options.EndpointResolver, EndpointResolverOptions: options.EndpointOptions, UseARNRegion: options.UseARNRegion, DisableMultiRegionAccessPoints: options.DisableMultiRegionAccessPoints, }) }