// Jest Snapshot v1, https://goo.gl/fbAQLP exports[`M2C2 logging bucket test 1`] = ` Object { "Resources": Object { "LoggingBucketLogBucket34BFFCE4": Object { "DeletionPolicy": "Retain", "Metadata": Object { "cdk_nag": Object { "rules_to_suppress": Array [ Object { "id": "AwsSolutions-S1", "reason": "This bucket is to store S3 logs, so it does not require access logs.", }, Object { "id": "AwsSolutions-S2", "reason": "Public Access Blocking is handled by objectOwnership", }, ], }, "cfn_nag": Object { "rules_to_suppress": Array [ Object { "id": "W35", "reason": "This bucket is to store S3 logs, so it does not require access logs.", }, ], }, }, "Properties": Object { "BucketEncryption": Object { "ServerSideEncryptionConfiguration": Array [ Object { "ServerSideEncryptionByDefault": Object { "SSEAlgorithm": "AES256", }, }, ], }, "BucketName": Object { "Fn::Join": Array [ "", Array [ Object { "Ref": "AWS::StackName", }, "-", Object { "Ref": "AWS::AccountId", }, "-log", ], ], }, "OwnershipControls": Object { "Rules": Array [ Object { "ObjectOwnership": "ObjectWriter", }, ], }, }, "Type": "AWS::S3::Bucket", "UpdateReplacePolicy": "Retain", }, "LoggingBucketLogBucketPolicy95173867": Object { "Properties": Object { "Bucket": Object { "Ref": "LoggingBucketLogBucket34BFFCE4", }, "PolicyDocument": Object { "Statement": Array [ Object { "Action": "s3:*", "Condition": Object { "Bool": Object { "aws:SecureTransport": "false", }, }, "Effect": "Deny", "Principal": Object { "AWS": "*", }, "Resource": Array [ Object { "Fn::GetAtt": Array [ "LoggingBucketLogBucket34BFFCE4", "Arn", ], }, Object { "Fn::Join": Array [ "", Array [ Object { "Fn::GetAtt": Array [ "LoggingBucketLogBucket34BFFCE4", "Arn", ], }, "/*", ], ], }, ], }, ], "Version": "2012-10-17", }, }, "Type": "AWS::S3::BucketPolicy", }, }, } `;