Skip to content

Latest commit

 

History

History

s3

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
README.md
README.md
 
 
sc-portfolio-s3.json
sc-portfolio-s3.json
 
 
sc-product-s3-private-enc.json
sc-product-s3-private-enc.json
 
 
sc-product-s3-private-mfa.json
sc-product-s3-private-mfa.json
 
 
sc-product-s3-private-trans.json
sc-product-s3-private-trans.json
 
 
sc-product-s3-private.json
sc-product-s3-private.json
 
 
sc-product-s3-public.json
sc-product-s3-public.json
 
 
sc-s3-cidr-ra-architecture.png
sc-s3-cidr-ra-architecture.png
 
 
sc-s3-cidr-ra.json
sc-s3-cidr-ra.json
 
 
sc-s3-encrypted-ra-architecture.png
sc-s3-encrypted-ra-architecture.png
 
 
sc-s3-encrypted-ra.json
sc-s3-encrypted-ra.json
 
 
sc-s3-mfa-ra-architecture.png
sc-s3-mfa-ra-architecture.png
 
 
sc-s3-mfa-ra.json
sc-s3-mfa-ra.json
 
 
sc-s3-public-ra-architecture.png
sc-s3-public-ra-architecture.png
 
 
sc-s3-public-ra.json
sc-s3-public-ra.json
 
 
sc-s3-simple-ra.json
sc-s3-simple-ra.json
 
 
sc-s3-transition-ra-architecture.png
sc-s3-transition-ra-architecture.png
 
 
sc-s3-transition-ra.json
sc-s3-transition-ra.json
 
 

README.md

AWS Service Catalog S3 Reference architecture

This reference architecture creates an AWS Service Catalog Portfolio called "Service Catalog S3 Reference Architecture" with five associated products. The AWS Service Catalog Product references cloudformation templates for the Amazon S3 buckets which can be launched by end users through Service Catalog. The AWS Service Catalog S3 products create S3 buckets with varying configurations:

  1. Read-Only bucket with access from anywhere
  2. Private bucket with access restricted to a source CIDR block
  3. Private bucket with access requiring multi-factor authentication
  4. Private bucket with contents encrypted with S3 server side encryption
  5. Private bucket with a transition ruleset to migrate innactive objects to S3-IA and Glacier.

Install

Launch the S3 portfolio stack:
CreateStack

AWS S3 public Access read-only bucket

sc-s3-public-ra-architecture.png

AWS S3 private bucket with restricted access from source CIDR block

sc-s3-cidr-ra-architecture.png

AWS S3 Private SSE-S3 Encrypted Bucket

sc-s3-encyprted-ra-architecture.png

AWS S3 Private MFA Restricted Access Bucket

sc-s3-mfa-ra-architecture.png

AWS S3 Private Bucket with transition policy for S3-IA and Glacier

sc-s3-transition-ra-architecture.png