aws_s3_bucket_inventory

Provides a S3 bucket inventory configuration resource.

Example Usage

Add inventory configuration

resource "aws_s3_bucket" "test" {
  bucket = "my-tf-test-bucket"
}

resource "aws_s3_bucket" "inventory" {
  bucket = "my-tf-inventory-bucket"
}

resource "aws_s3_bucket_inventory" "test" {
  bucket = "${aws_s3_bucket.test.id}"
  name   = "EntireBucketDaily"

  included_object_versions = "All"

  schedule {
    frequency = "Daily"
  }

  destination {
    bucket {
      format = "ORC"
      bucket_arn = "${aws_s3_bucket.inventory.arn}"
    }
}

Add inventory configuration with S3 bucket object prefix

resource "aws_s3_bucket" "test" {
  bucket = "my-tf-test-bucket"
}

resource "aws_s3_bucket" "inventory" {
  bucket = "my-tf-inventory-bucket"
}

resource "aws_s3_bucket_inventory" "test-prefix" {
  bucket = "${aws_s3_bucket.test.id}"
  name   = "DocumentsWeekly"

  included_object_versions = "Weekly"

  schedule {
    frequency = "Daily"
  }

  filter {
    prefix = "documents/"
  }

  destination {
    bucket {
      format = "ORC"
      bucket = "${aws_s3_bucket.inventory.arn}"
      prefix = "inventory"
    }
  }
}

Argument Reference

The following arguments are supported:

• bucket - (Required) The name of the bucket to put inventory configuration.
• name - (Required) Unique identifier of the inventory configuration for the bucket.
• included_object_versions - (Required) Object filtering that accepts a prefix (documented below). Can be All or Current.
• schedule - (Required) Contains the frequency for generating inventory results (documented below).
• destination - (Required) Destination bucket where inventory list files are written (documented below).
• enabled - (Optional, Default: true) Specifies whether the inventory is enabled or disabled.
• filter - (Optional) Object filtering that accepts a prefix (documented below).
• optional_fields - (Optional) Contains the optional fields that are included in the inventory results.

The filter configuration supports the following:

• prefix - (Optional) Object prefix for filtering (singular).

The schedule configuration supports the following:

• frequency - (Required) Specifies how frequently inventory results are produced. Can be Daily or Weekly.

The destination configuration supports the following:

• bucket - (Required) The S3 bucket configuration where inventory results are published (documented below).

The bucket configuration supports the following:

• bucket_arn - (Required) The Amazon S3 bucket ARN of the destination.
• format - (Required) Specifies the output format of the inventory results. Can be CSV or ORC.
• account_id - (Optional) The ID of the account that owns the destination bucket. Recommended to be set to prevent problems if the destination bucket ownership changes.
• prefix - (Optional) The prefix that is prepended to all inventory results.
• encryption - (Optional) Contains the type of server-side encryption to use to encrypt the inventory (documented below).

The encryption configuration supports the following:

NOTE: sse_s3 is currently unsupported.

• sse_kms - (Optional) Specifies to use server-side encryption with AWS KMS-managed keys to encrypt the inventory file (documented below).
• sse_s3 - (Optional) Specifies to use server-side encryption with Amazon S3-managed keys (SSE-S3) to encrypt the inventory file.

The sse_kms configuration supports the following:

• kms_id - (Required) The ARN of the KMS customer master key (CMK) used to encrypt the inventory file.

Import

S3 bucket inventory configurations can be imported using bucket:inventory, e.g.

$ terraform import aws_s3_bucket_inventory.my-bucket-entire-bucket my-bucket:EntireBucket