Amazon Macie · JSON Structure

Amazon Macie Bucket Count Policy Allows Unencrypted Object Uploads Structure

Provides information about the number of S3 buckets whose bucket policies do or don't require server-side encryption of objects when objects are added to the buckets.

Type: object Properties: 3
Data SecuritySensitive DataPrivacyComplianceMachine LearningS3

BucketCountPolicyAllowsUnencryptedObjectUploads is a JSON Structure definition published by Amazon Macie, describing 3 properties. It conforms to the https://json-structure.org/meta/core/v0/# meta-schema.

Properties

allowsUnencryptedObjectUploads deniesUnencryptedObjectUploads unknown

Meta-schema: https://json-structure.org/meta/core/v0/#

JSON Structure

Raw ↑ 
{
  "$schema": "https://json-structure.org/meta/core/v0/#",
  "$id": "https://raw.githubusercontent.com/api-evangelist/amazon-macie/refs/heads/main/json-structure/amazon-macie-bucket-count-policy-allows-unencrypted-object-uploads-structure.json",
  "name": "BucketCountPolicyAllowsUnencryptedObjectUploads",
  "description": "Provides information about the number of S3 buckets whose bucket policies do or don't require server-side encryption of objects when objects are added to the buckets.",
  "type": "object",
  "properties": {
    "allowsUnencryptedObjectUploads": {
      "allOf": [
        {
          "$ref": "#/components/schemas/__long"
        },
        {
          "description": "The total number of buckets that don't have a bucket policy or have a bucket policy that doesn't require server-side encryption of new objects. If a bucket policy exists, the policy doesn't require PutObject requests to include a valid server-side encryption header: the x-amz-server-side-encryption header with a value of AES256 or aws:kms, or the x-amz-server-side-encryption-customer-algorithm header with a value of AES256."
        }
      ]
    },
    "deniesUnencryptedObjectUploads": {
      "allOf": [
        {
          "$ref": "#/components/schemas/__long"
        },
        {
          "description": "The total number of buckets whose bucket policies require server-side encryption of new objects. PutObject requests for these buckets must include a valid server-side encryption header: the x-amz-server-side-encryption header with a value of AES256 or aws:kms, or the x-amz-server-side-encryption-customer-algorithm header with a value of AES256."
        }
      ]
    },
    "unknown": {
      "allOf": [
        {
          "$ref": "#/components/schemas/__long"
        },
        {
          "description": "The total number of buckets that Amazon Macie wasn't able to evaluate server-side encryption requirements for. Macie can't determine whether the bucket policies for these buckets require server-side encryption of new objects."
        }
      ]
    }
  }
}