Answer-first summary for fast verification
Answer: Use S3 Object Ownership to default bucket owner to be the owner of all objects in the bucket
Use S3 Object Ownership to default bucket owner to be the owner of all objects in the bucket S3 Object Ownership is an Amazon S3 bucket setting that you can use to control ownership of new objects that are uploaded to your buckets. By default, when other AWS accounts upload objects to your bucket, the objects remain owned by the uploading account. With S3 Object Ownership, any new objects that are written by other accounts with the bucket-owner-full-control canned access control list (ACL) automatically become owned by the bucket owner, who then has full control of the objects. S3 Object Ownership has two settings: 1. Object writer – The uploading account will own the object. 2. Bucket owner preferred – The bucket owner will own the object if the object is uploaded with the bucket-owner-full-control canned ACL. Without this setting and canned ACL, the object is uploaded and remains owned by the uploading account. Incorrect options: Use S3 CORS to make the S3 bucket owner, the owner of all objects in the bucket - Cross-origin resource sharing (CORS) defines a way for client web applications that are loaded in one domain to interact with resources in a different domain. Use S3 Access Analyzer to identify the owners of all objects and change the ownership to the bucket owner - Access Analyzer for S3 helps review all buckets that have bucket access control lists (ACLs), bucket policies, or access point policies that grant public or shared access. Access Analyzer for S3 alerts you to buckets that are configured to allow access to anyone on the internet or other AWS accounts, including AWS accounts outside of your organization. Use Bucket Access Control Lists (ACLs) to control access on S3 bucket and then define its owner - Amazon S3 access control lists (ACLs) enable you to manage access to buckets and objects. Each bucket and object has an ACL attached to it as a subresource. A bucket ACLs allow you to control access at bucket level. None of the above features are useful for the current scenario and hence are incorrect options.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
No comments yet.
A development team collaborates by using shared Amazon S3 buckets to upload various files. Due to this shared access among multiple AWS accounts, the objects uploaded to these S3 buckets have different owners, which complicates the overall management of the objects.
In your role as a Developer Associate, which of the following would you recommend to ensure that the S3 bucket owner automatically becomes the owner of all objects uploaded to the bucket, regardless of the AWS account that performed the upload?
A
Use S3 Access Analyzer to identify the owners of all objects and change the ownership to the bucket owner
B
Use S3 Object Ownership to default bucket owner to be the owner of all objects in the bucket
C
Use Bucket Access Control Lists (ACLs) to control access on S3 bucket and then define its owner
D
Use S3 CORS to make the S3 bucket owner, the owner of all objects in the bucket