AWS S3 Logs Bucket

An AWS S3 bucket intended for storing logs

View Source Code
Deployments

31

Made by

Massdriver

Official

Yes

No

Compliance
No compliance
Clouds
AWS
Text Link
Tags
Storage
Text Link
Read me
Variables

aws-s3-logs-bucket

An AWS S3 bucket providing scalable, durable, and secure storage of logs allowing them to be stored, accessed, and analyzed in a highly available and cost-effective manner.

Use Cases

Application Logging

Low cost and durable storage of application logs for debugging and troubleshooting

Security and Compliance

Storing access logs allows security teams to monitor and detect unauthorized access attempts and security breaches, and helps to satisfy compliance requirements for data access audit trails.

Design

This bundle is designed around the specific use-case of storing application and access logs. For this reason, assumptions are made regarding the configuration of the bucket. For example, public access is disabled and object versioning is disabled.

Best Practices

High Availability

Deploys regional S3 for High availability in the event of zonal failure

Dedicated KMS Key

Uses a dedicated KMS key with narrowly scoped permission for encryption

Security

KMS Encryption

A KMS key is created and narrowly scoped to the bucket for encrypting all assets.

Private ACL

No public access is allowed to this bucket

Access Logging

Access logging can be enabled, which will create an additional S3 bucket to store access logs for compliance requirements

Policies

The following policies are created for managing access to the S3 bucket.

  • read: Grants read access to objects in the bucket
  • write: Grants access to write objects to the bucket
VariableTypeDescription
bucket.regionstringAWS Region to provision in.
lifecycle_settings.expirebooleanEnable the expiration (deletion) of objects after the specified time
lifecycle_settings.transition_rules[].daysintegerNumber of days after creation when objects are transitioned to the specified storage class.
lifecycle_settings.transition_rules[].storage_classstringS3 storage class to transition to. Refer to the AWS S3 storage class documentation for details on each storage class.
monitoring.access_loggingbooleanEnabling this will create an additional bucket for storing access logs
System Operational

Marketplace

AWSGCPAzure

Solutions

Healthcare
Internal Developer Platform
Cost Management
DevOps Advisor
Platform Engineering Accelerator

Company

About UsJobsNewsContact UsNews

Resources

PricingBlogDocsWebinars
Get Started
Massdriver Reviews
Massdriver Reviews
© Massdriver, Inc. 2024
Terms of Service
Privacy Policy
Security
Healthcare
Internal Developer Platform
Cost Management
DevOps Advisor
Platform Engineering Accelerator
GameStake Achieves Zero-Downtime Deployments with a 25% Reduction in Cloud Costs
How AMD Global Telemedicine Reduced Software Release Effort by 89% With Massdriver
Writing Maintainable IaC: Use Case Specific OpenTofu / Terraform Modules
Open Office Hours
Airlock: Massdriver's New Open-Source Project
How to enable API endpoints with Massdriver apps
Open Office Hours
Generating OpenTofu / Terraform from Existing Cloud Resources
Running KubeVirt on AWS EKS
Scripting with Massdriver
Open Office Hours
Observability in Kubernetes using Jaeger
Debugging applications in Kubernetes
Observability in Kubernetes using Prometheus
Scaling Ops: Embracing platform engineering’s potential
Open Office Hours
AI Made Simple: Deploying Stable Diffusion with Massdriver and SageMaker
Test driven development with OpenTelemetry
Zero Down Time Deployments in Kubernetes
Writing Maintainable Infrastructure as Code
Massdriver Feature Showcase: Bundle Building
Massdriver Feature Showcase: Environmental Parity
AKS Made Easy on Massdriver
Best Practices for Containerizing Web Apps with Docker
Debugging Applications in Kubernetes
Best Practices for Containerizing Web Apps with Docker
Load Testing with Grafana K6
Debugging Applications in Kubernetes
Running Azure OpenAI with Massdriver
Best Practices for Containerizing Web Apps with Docker
Upgrading PostgreSQL Versions with Minimal Downtime
Deploying 3-tier Web Applications on Kubernetes with Massdriver
Massdriver Feature Showcase: Bundle Building
Massdriver Feature Showcase: Diffing Environments & Deployments
Storage
AWS