- Newest
- Most votes
- Most comments
Disabling Block Public Access (BPS) doesn't make buckets or objects automatically public, but it means you are able to. (That is, having it enabled means that even if you try to make something public, you can't.) You will need to grant public read permissions on the object in order for it to be public. Note that of the methods on that page, I'd recommend using a Bucket Policy rather than modifying the ACL.
Without knowing your exact use case, I'd also recommend having a particular Bucket to use only for public objects, which you will disable BPA on. Other Buckets in your account should have BPA enabled still, to make it obvious if your object(s) could be public or not from the Bucket they're in.
You may also want to look at using CloudFront to serve objects from S3, which avoids the need to make the objects public or disable BPA.
Relevant content
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 2 years ago