1// Code generated by smithy-go-codegen DO NOT EDIT. 2 3package s3 4 5import ( 6 "context" 7 awsmiddleware "github.com/aws/aws-sdk-go-v2/aws/middleware" 8 "github.com/aws/aws-sdk-go-v2/aws/signer/v4" 9 s3cust "github.com/aws/aws-sdk-go-v2/service/s3/internal/customizations" 10 "github.com/aws/smithy-go/middleware" 11 smithyhttp "github.com/aws/smithy-go/transport/http" 12) 13 14// Returns the policy of a specified bucket. If you are using an identity other 15// than the root user of the Amazon Web Services account that owns the bucket, the 16// calling identity must have the GetBucketPolicy permissions on the specified 17// bucket and belong to the bucket owner's account in order to use this operation. 18// If you don't have GetBucketPolicy permissions, Amazon S3 returns a 403 Access 19// Denied error. If you have the correct permissions, but you're not using an 20// identity that belongs to the bucket owner's account, Amazon S3 returns a 405 21// Method Not Allowed error. As a security precaution, the root user of the Amazon 22// Web Services account that owns a bucket can always use this operation, even if 23// the policy explicitly denies the root user the ability to perform this action. 24// For more information about bucket policies, see Using Bucket Policies and User 25// Policies 26// (https://docs.aws.amazon.com/AmazonS3/latest/dev/using-iam-policies.html). The 27// following action is related to GetBucketPolicy: 28// 29// * GetObject 30// (https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetObject.html) 31func (c *Client) GetBucketPolicy(ctx context.Context, params *GetBucketPolicyInput, optFns ...func(*Options)) (*GetBucketPolicyOutput, error) { 32 if params == nil { 33 params = &GetBucketPolicyInput{} 34 } 35 36 result, metadata, err := c.invokeOperation(ctx, "GetBucketPolicy", params, optFns, c.addOperationGetBucketPolicyMiddlewares) 37 if err != nil { 38 return nil, err 39 } 40 41 out := result.(*GetBucketPolicyOutput) 42 out.ResultMetadata = metadata 43 return out, nil 44} 45 46type GetBucketPolicyInput struct { 47 48 // The bucket name for which to get the bucket policy. 49 // 50 // This member is required. 51 Bucket *string 52 53 // The account ID of the expected bucket owner. If the bucket is owned by a 54 // different account, the request will fail with an HTTP 403 (Access Denied) error. 55 ExpectedBucketOwner *string 56 57 noSmithyDocumentSerde 58} 59 60type GetBucketPolicyOutput struct { 61 62 // The bucket policy as a JSON document. 63 Policy *string 64 65 // Metadata pertaining to the operation's result. 66 ResultMetadata middleware.Metadata 67 68 noSmithyDocumentSerde 69} 70 71func (c *Client) addOperationGetBucketPolicyMiddlewares(stack *middleware.Stack, options Options) (err error) { 72 err = stack.Serialize.Add(&awsRestxml_serializeOpGetBucketPolicy{}, middleware.After) 73 if err != nil { 74 return err 75 } 76 err = stack.Deserialize.Add(&awsRestxml_deserializeOpGetBucketPolicy{}, middleware.After) 77 if err != nil { 78 return err 79 } 80 if err = addSetLoggerMiddleware(stack, options); err != nil { 81 return err 82 } 83 if err = awsmiddleware.AddClientRequestIDMiddleware(stack); err != nil { 84 return err 85 } 86 if err = smithyhttp.AddComputeContentLengthMiddleware(stack); err != nil { 87 return err 88 } 89 if err = addResolveEndpointMiddleware(stack, options); err != nil { 90 return err 91 } 92 if err = v4.AddComputePayloadSHA256Middleware(stack); err != nil { 93 return err 94 } 95 if err = addRetryMiddlewares(stack, options); err != nil { 96 return err 97 } 98 if err = addHTTPSignerV4Middleware(stack, options); err != nil { 99 return err 100 } 101 if err = awsmiddleware.AddRawResponseToMetadata(stack); err != nil { 102 return err 103 } 104 if err = awsmiddleware.AddRecordResponseTiming(stack); err != nil { 105 return err 106 } 107 if err = addClientUserAgent(stack); err != nil { 108 return err 109 } 110 if err = smithyhttp.AddErrorCloseResponseBodyMiddleware(stack); err != nil { 111 return err 112 } 113 if err = smithyhttp.AddCloseResponseBodyMiddleware(stack); err != nil { 114 return err 115 } 116 if err = swapWithCustomHTTPSignerMiddleware(stack, options); err != nil { 117 return err 118 } 119 if err = addOpGetBucketPolicyValidationMiddleware(stack); err != nil { 120 return err 121 } 122 if err = stack.Initialize.Add(newServiceMetadataMiddleware_opGetBucketPolicy(options.Region), middleware.Before); err != nil { 123 return err 124 } 125 if err = addMetadataRetrieverMiddleware(stack); err != nil { 126 return err 127 } 128 if err = addGetBucketPolicyUpdateEndpoint(stack, options); err != nil { 129 return err 130 } 131 if err = addResponseErrorMiddleware(stack); err != nil { 132 return err 133 } 134 if err = v4.AddContentSHA256HeaderMiddleware(stack); err != nil { 135 return err 136 } 137 if err = disableAcceptEncodingGzip(stack); err != nil { 138 return err 139 } 140 if err = addRequestResponseLogging(stack, options); err != nil { 141 return err 142 } 143 return nil 144} 145 146func newServiceMetadataMiddleware_opGetBucketPolicy(region string) *awsmiddleware.RegisterServiceMetadata { 147 return &awsmiddleware.RegisterServiceMetadata{ 148 Region: region, 149 ServiceID: ServiceID, 150 SigningName: "s3", 151 OperationName: "GetBucketPolicy", 152 } 153} 154 155// getGetBucketPolicyBucketMember returns a pointer to string denoting a provided 156// bucket member valueand a boolean indicating if the input has a modeled bucket 157// name, 158func getGetBucketPolicyBucketMember(input interface{}) (*string, bool) { 159 in := input.(*GetBucketPolicyInput) 160 if in.Bucket == nil { 161 return nil, false 162 } 163 return in.Bucket, true 164} 165func addGetBucketPolicyUpdateEndpoint(stack *middleware.Stack, options Options) error { 166 return s3cust.UpdateEndpoint(stack, s3cust.UpdateEndpointOptions{ 167 Accessor: s3cust.UpdateEndpointParameterAccessor{ 168 GetBucketFromInput: getGetBucketPolicyBucketMember, 169 }, 170 UsePathStyle: options.UsePathStyle, 171 UseAccelerate: options.UseAccelerate, 172 SupportsAccelerate: true, 173 TargetS3ObjectLambda: false, 174 EndpointResolver: options.EndpointResolver, 175 EndpointResolverOptions: options.EndpointOptions, 176 UseDualstack: options.UseDualstack, 177 UseARNRegion: options.UseARNRegion, 178 DisableMultiRegionAccessPoints: options.DisableMultiRegionAccessPoints, 179 }) 180} 181