@@ -21,24 +21,28 @@ if [ "$STATUS" = "CREATE_COMPLETE" ] || [ "$STATUS" = "UPDATE_COMPLETE" ]; then
2121fi
2222
2323echo " Creating bucket: $BUCKET_NAME "
24- if [ " $REGION " = " us-east-1 " ] ; then
25- aws s3api create-bucket --bucket " $BUCKET_NAME "
24+ if aws s3api head-bucket --bucket " $BUCKET_NAME " 2> /dev/null ; then
25+ echo " Bucket already exists: $BUCKET_NAME "
2626else
27- aws s3api create-bucket --bucket " $BUCKET_NAME "
28- --create-bucket-configuration LocationConstraint=" $REGION "
27+ if [ " $REGION " = " us-east-1" ; then
28+ aws s3api create-bucket --bucket " $BUCKET_NAME "
29+ else
30+ aws s3api create-bucket --bucket " $BUCKET_NAME "
31+ --create-bucket-configuration LocationConstraint=" $REGION "
32+ fi
33+
34+ aws s3api put-bucket-encryption --bucket " $BUCKET_NAME "
35+ --server-side-encryption-configuration \
36+ ' {"Rules":[{"ApplyServerSideEncryptionByDefault":{"SSEAlgorithm":"AES256"}}]}'
37+
38+ aws s3api put-public-access-block --bucket " $BUCKET_NAME "
39+ --public-access-block-configuration \
40+ ' BlockPublicAcls=true,BlockPublicPolicy=true,IgnorePublicAcls=true,RestrictPublicBuckets=true'
2941fi
3042
31- aws s3api put-bucket-encryption --bucket " $BUCKET_NAME "
32- --server-side-encryption-configuration \
33- ' {"Rules":[{"ApplyServerSideEncryptionByDefault":{"SSEAlgorithm":"AES256"}}]}'
34-
35- aws s3api put-public-access-block --bucket " $BUCKET_NAME "
36- --public-access-block-configuration \
37- ' BlockPublicAcls=true,BlockPublicPolicy=true,IgnorePublicAcls=true,RestrictPublicBuckets=true'
38-
3943echo " Registering bucket with CloudFormation stack: $STACK_NAME "
4044aws cloudformation deploy \
41- --template-file " $SCRIPT_DIR /prereq -bucket.yaml"
45+ --template-file " $SCRIPT_DIR /cfn-prereqs -bucket.yaml"
4246 --stack-name " $STACK_NAME "
4347 --parameter-overrides " BucketName=$BUCKET_NAME "
4448
0 commit comments