Periodic update - 2023-02-24

Author: aws-alan

doc_source/ServerLogs.md

@@ -51,6 +51,9 @@ Amazon S3 uses a special log delivery account to write server access logs\. Thes
 
 When you enable server access logging and grant access for access log delivery through your bucket policy, you update the bucket policy on the target bucket to allow `s3:PutObject` access for the logging service principal\. If you use the Amazon S3 console to enable server access logging on a bucket, the console automatically updates the bucket policy on the target bucket to grant these permissions to the logging service principal\. For more information about granting permissions for server access log delivery, see [Permissions for log delivery](enable-server-access-logging.md#grant-log-delivery-permissions-general)\. 
 
+**Note**  
+Amazon S3 does not support delivery of server access logs to the requester or the bucket owner for VPC endpoint requests when the VPC endpoint policy denies them\.
+
 **Bucket owner enforced setting for S3 Object Ownership**  
 If the target bucket uses the bucket owner enforced setting for Object Ownership, ACLs are disabled and no longer affect permissions\. You must update the bucket policy on the target bucket to grant access to the logging service principal\. For more information about Object Ownership, see [Grant access to S3 log delivery group for server access logging](object-ownership-migrating-acls-prerequisites.md#object-ownership-server-access-logs)\.
 

doc_source/cloudtrail-logging.md

@@ -14,6 +14,9 @@ You can use AWS CloudTrail logs together with server access logs for Amazon S3\.
 
 You can also use CloudTrail logs together with Amazon CloudWatch for Amazon S3\. CloudTrail integration with CloudWatch Logs delivers S3 bucket\-level API activity captured by CloudTrail to a CloudWatch log stream in the CloudWatch log group that you specify\. You can create CloudWatch alarms for monitoring specific API activity and receive email notifications when the specific API activity occurs\. For more information about CloudWatch alarms for monitoring specific API activity, see the [AWS CloudTrail User Guide](https://docs.aws.amazon.com/awscloudtrail/latest/userguide/)\. For more information about using CloudWatch with Amazon S3, see [Monitoring metrics with Amazon CloudWatch](cloudwatch-monitoring.md)\.
 
+**Note**  
+S3 does not support delivery of CloudTrail logs to the requester or the bucket owner for VPC endpoint requests when the VPC endpoint policy denies them\.
+
 ## CloudTrail tracking with Amazon S3 SOAP API calls<a name="cloudtrail-s3-soap"></a>
 
 CloudTrail tracks Amazon S3 SOAP API calls\. Amazon S3 SOAP support over HTTP is deprecated, but it is still available over HTTPS\. For more information about Amazon S3 SOAP support, see [Appendix a: Using the SOAP API](SOAPAPI3.md)\. 

doc_source/example_s3_HeadObject_section.md

@@ -10,7 +10,7 @@ The source code for these examples is in the [AWS Code Examples GitHub repositor
 
 **SDK for Java 2\.x**  
  There's more on GitHub\. Find the complete example and learn how to set up and run in the [AWS Code Examples Repository](https://github.com/awsdocs/aws-doc-sdk-examples/tree/main/javav2/example_code/s3#readme)\. 
-  
+Determine the content type of an object\.  
 
 ```
     public static void getContentType (S3Client s3, String bucketName, String keyName) {
@@ -31,6 +31,25 @@ The source code for these examples is in the [AWS Code Examples GitHub repositor
         }
     }
 ```
+Get the restore status of an object\.  
+
+```
+    public static void checkStatus(S3Client s3, String bucketName, String keyName) {
+        try {
+            HeadObjectRequest headObjectRequest = HeadObjectRequest.builder()
+                .bucket(bucketName)
+                .key(keyName)
+                .build();
+
+            HeadObjectResponse response = s3.headObject(headObjectRequest);
+            System.out.println("The Amazon S3 object restoration status is "+response.restore());
+
+        } catch (S3Exception e) {
+            System.err.println(e.awsErrorDetails().errorMessage());
+            System.exit(1);
+        }
+    }
+```
 +  For API details, see [HeadObject](https://docs.aws.amazon.com/goto/SdkForJavaV2/s3-2006-03-01/HeadObject) in *AWS SDK for Java 2\.x API Reference*\. 
 
 ------

doc_source/logging-with-S3.md

@@ -34,4 +34,6 @@ The following table lists the key properties of CloudTrail logs and Amazon S3 se
 
 1. CloudTrail does not deliver logs for requests that fail authentication \(in which the provided credentials are not valid\)\. However, it does include logs for requests in which authorization fails \(`AccessDenied`\) and requests that are made by anonymous users\.
 
-1. The S3 bucket owner receives CloudTrail logs when the account does not have full access to the object in the request\. For more information, see [Object\-level actions in cross\-account scenarios](cloudtrail-logging-s3-info.md#cloudtrail-object-level-crossaccount)\. 
+1. The S3 bucket owner receives CloudTrail logs when the account does not have full access to the object in the request\. For more information, see [Object\-level actions in cross\-account scenarios](cloudtrail-logging-s3-info.md#cloudtrail-object-level-crossaccount)\. 
+
+1. S3 does not support delivery of CloudTrail logs or server access logs to the requester or the bucket owner for VPC endpoint requests when the VPC endpoint policy denies them\. 

doc_source/olap-create.md

@@ -107,7 +107,7 @@ This example uses the AWS prebuilt function `decompress`\. For more information
    {
        "SupportingAccessPoint" : "arn:aws:s3:us-east-1:111122223333:accesspoint/example-ap",
        "TransformationConfigurations": [{
-           "Actions" : ["GetObject", "HeadObject", "ListObject", "ListObjectV2],
+           "Actions" : ["GetObject", "HeadObject", "ListObjects", "ListObjectsV2"],
            "ContentTransformation" : {
                "AwsLambda": {
                    "FunctionPayload" : "{\"compressionType\":\"gzip\"}",
@@ -165,7 +165,7 @@ This example uses the AWS prebuilt function `decompress`\. For more information
    	"SupportingAccessPoint": "AccessPointArn",
    	"CloudWatchMetricsEnabled": false,
    	"TransformationConfigurations": [{
-   		"Actions": ["GetObject", "HeadObject", "ListObject", "ListObjectV2],
+   		"Actions": ["GetObject", "HeadObject", "ListObjects", "ListObjectsV2"],
    		"ContentTransformation": {
    			"AwsLambda": {
    				"FunctionArn": "FunctionArn",

doc_source/olap-use.md

@@ -43,10 +43,4 @@ To use an Object Lambda access point with the AWS CLI or AWS SDKs, you need to k
    }
    ```
 
-------
-
-## S3 Object Lambda tutorials<a name="olap-tutorials-use"></a>
-
-The following tutorials present complete end\-to\-end procedures for some S3 Object Lambda tasks\.
-+ [Tutorial: Transforming data for your application with S3 Object Lambda](tutorial-s3-object-lambda-uppercase.md)
-+ [Tutorial: Detecting and redacting PII data with S3 Object Lambda and Amazon Comprehend](tutorial-s3-object-lambda-redact-pii.md)
+------

doc_source/s3-outposts-privatelink-interface-endpoints.md

@@ -49,7 +49,7 @@ aws s3control list-regional-buckets --region us-east-1 --endpoint-url https://vp
 
 ### AWS SDK examples<a name="s3-outposts-privatelink-aws-sdk-examples"></a>
 
-Update your SDKs to the latest version, and configure your clients to use an endpoint URL for accessing the S3 control API for S3 on Outposts interface endpoints\. For more information, see AWS SDK examples for AWS PrivateLink\.
+Update your SDKs to the latest version, and configure your clients to use an endpoint URL for accessing the S3 control API for S3 on Outposts interface endpoints\.
 
 ------
 #### [ SDK for Python \(Boto3\) ]
@@ -64,6 +64,7 @@ region_name='us-east-1',
 endpoint_url='https://vpce-1a2b3c4d-5e6f.s3-outposts.us-east-1.vpce.amazonaws.com'
 )
 ```
+For more information, see [AWS PrivateLink for Amazon S3](https://boto3.amazonaws.com/v1/documentation/api/latest/guide/s3-example-privatelink.html) in the *Boto3 developer guide*\.
 
 ------
 #### [ SDK for Java 2\.x ]
@@ -78,6 +79,7 @@ s3ControlClient = S3ControlClient.builder().region(region)
                                  .endpointOverride(URI.create("https://vpce-1a2b3c4d-5e6f.s3-outposts.us-east-1.vpce.amazonaws.com"))
                                  .build()
 ```
+For more information, see [https://sdk.amazonaws.com/java/api/latest/software/amazon/awssdk/services/s3control/S3ControlClient.html](https://sdk.amazonaws.com/java/api/latest/software/amazon/awssdk/services/s3control/S3ControlClient.html) in the *AWS SDK for Java API Reference*\.
 
 ------