{-# LANGUAGE DeriveGeneric #-}
{-# LANGUAGE DuplicateRecordFields #-}
{-# LANGUAGE NamedFieldPuns #-}
{-# LANGUAGE OverloadedStrings #-}
{-# LANGUAGE RecordWildCards #-}
{-# LANGUAGE StrictData #-}
{-# LANGUAGE TypeFamilies #-}
{-# LANGUAGE NoImplicitPrelude #-}
{-# OPTIONS_GHC -fno-warn-unused-binds #-}
{-# OPTIONS_GHC -fno-warn-unused-imports #-}
{-# OPTIONS_GHC -fno-warn-unused-matches #-}

-- Derived from AWS service descriptions, licensed under Apache 2.0.

-- |
-- Module      : Amazonka.S3.PutBucketAcl
-- Copyright   : (c) 2013-2023 Brendan Hay
-- License     : Mozilla Public License, v. 2.0.
-- Maintainer  : Brendan Hay
-- Stability   : auto-generated
-- Portability : non-portable (GHC extensions)
--
-- Sets the permissions on an existing bucket using access control lists
-- (ACL). For more information, see
-- <https://docs.aws.amazon.com/AmazonS3/latest/dev/S3_ACLs_UsingACLs.html Using ACLs>.
-- To set the ACL of a bucket, you must have @WRITE_ACP@ permission.
--
-- You can use one of the following two ways to set a bucket\'s
-- permissions:
--
-- -   Specify the ACL in the request body
--
-- -   Specify permissions using request headers
--
-- You cannot specify access permission using both the body and the request
-- headers.
--
-- Depending on your application needs, you may choose to set the ACL on a
-- bucket using either the request body or the headers. For example, if you
-- have an existing application that updates a bucket ACL using the request
-- body, then you can continue to use that approach.
--
-- If your bucket uses the bucket owner enforced setting for S3 Object
-- Ownership, ACLs are disabled and no longer affect permissions. You must
-- use policies to grant access to your bucket and the objects in it.
-- Requests to set ACLs or update ACLs fail and return the
-- @AccessControlListNotSupported@ error code. Requests to read ACLs are
-- still supported. For more information, see
-- <https://docs.aws.amazon.com/AmazonS3/latest/userguide/about-object-ownership.html Controlling object ownership>
-- in the /Amazon S3 User Guide/.
--
-- __Access Permissions__
--
-- You can set access permissions using one of the following methods:
--
-- -   Specify a canned ACL with the @x-amz-acl@ request header. Amazon S3
--     supports a set of predefined ACLs, known as /canned ACLs/. Each
--     canned ACL has a predefined set of grantees and permissions. Specify
--     the canned ACL name as the value of @x-amz-acl@. If you use this
--     header, you cannot use other access control-specific headers in your
--     request. For more information, see
--     <https://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html#CannedACL Canned ACL>.
--
-- -   Specify access permissions explicitly with the @x-amz-grant-read@,
--     @x-amz-grant-read-acp@, @x-amz-grant-write-acp@, and
--     @x-amz-grant-full-control@ headers. When using these headers, you
--     specify explicit access permissions and grantees (Amazon Web
--     Services accounts or Amazon S3 groups) who will receive the
--     permission. If you use these ACL-specific headers, you cannot use
--     the @x-amz-acl@ header to set a canned ACL. These parameters map to
--     the set of permissions that Amazon S3 supports in an ACL. For more
--     information, see
--     <https://docs.aws.amazon.com/AmazonS3/latest/dev/acl-overview.html Access Control List (ACL) Overview>.
--
--     You specify each grantee as a type=value pair, where the type is one
--     of the following:
--
--     -   @id@ – if the value specified is the canonical user ID of an
--         Amazon Web Services account
--
--     -   @uri@ – if you are granting permissions to a predefined group
--
--     -   @emailAddress@ – if the value specified is the email address of
--         an Amazon Web Services account
--
--         Using email addresses to specify a grantee is only supported in
--         the following Amazon Web Services Regions:
--
--         -   US East (N. Virginia)
--
--         -   US West (N. California)
--
--         -   US West (Oregon)
--
--         -   Asia Pacific (Singapore)
--
--         -   Asia Pacific (Sydney)
--
--         -   Asia Pacific (Tokyo)
--
--         -   Europe (Ireland)
--
--         -   South America (São Paulo)
--
--         For a list of all the Amazon S3 supported Regions and endpoints,
--         see
--         <https://docs.aws.amazon.com/general/latest/gr/rande.html#s3_region Regions and Endpoints>
--         in the Amazon Web Services General Reference.
--
--     For example, the following @x-amz-grant-write@ header grants create,
--     overwrite, and delete objects permission to LogDelivery group
--     predefined by Amazon S3 and two Amazon Web Services accounts
--     identified by their email addresses.
--
--     @x-amz-grant-write: uri=\"http:\/\/acs.amazonaws.com\/groups\/s3\/LogDelivery\", id=\"111122223333\", id=\"555566667777\" @
--
-- You can use either a canned ACL or specify access permissions
-- explicitly. You cannot do both.
--
-- __Grantee Values__
--
-- You can specify the person (grantee) to whom you\'re assigning access
-- rights (using request elements) in the following ways:
--
-- -   By the person\'s ID:
--
--     @\<Grantee xmlns:xsi=\"http:\/\/www.w3.org\/2001\/XMLSchema-instance\" xsi:type=\"CanonicalUser\">\<ID>\<>ID\<>\<\/ID>\<DisplayName>\<>GranteesEmail\<>\<\/DisplayName> \<\/Grantee>@
--
--     DisplayName is optional and ignored in the request
--
-- -   By URI:
--
--     @\<Grantee xmlns:xsi=\"http:\/\/www.w3.org\/2001\/XMLSchema-instance\" xsi:type=\"Group\">\<URI>\<>http:\/\/acs.amazonaws.com\/groups\/global\/AuthenticatedUsers\<>\<\/URI>\<\/Grantee>@
--
-- -   By Email address:
--
--     @\<Grantee xmlns:xsi=\"http:\/\/www.w3.org\/2001\/XMLSchema-instance\" xsi:type=\"AmazonCustomerByEmail\">\<EmailAddress>\<>Grantees\@email.com\<>\<\/EmailAddress>lt;\/Grantee>@
--
--     The grantee is resolved to the CanonicalUser and, in a response to a
--     GET Object acl request, appears as the CanonicalUser.
--
--     Using email addresses to specify a grantee is only supported in the
--     following Amazon Web Services Regions:
--
--     -   US East (N. Virginia)
--
--     -   US West (N. California)
--
--     -   US West (Oregon)
--
--     -   Asia Pacific (Singapore)
--
--     -   Asia Pacific (Sydney)
--
--     -   Asia Pacific (Tokyo)
--
--     -   Europe (Ireland)
--
--     -   South America (São Paulo)
--
--     For a list of all the Amazon S3 supported Regions and endpoints, see
--     <https://docs.aws.amazon.com/general/latest/gr/rande.html#s3_region Regions and Endpoints>
--     in the Amazon Web Services General Reference.
--
-- __Related Resources__
--
-- -   <https://docs.aws.amazon.com/AmazonS3/latest/API/API_CreateBucket.html CreateBucket>
--
-- -   <https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteBucket.html DeleteBucket>
--
-- -   <https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetObjectAcl.html GetObjectAcl>
module Amazonka.S3.PutBucketAcl
  ( -- * Creating a Request
    PutBucketAcl (..),
    newPutBucketAcl,

    -- * Request Lenses
    putBucketAcl_acl,
    putBucketAcl_accessControlPolicy,
    putBucketAcl_checksumAlgorithm,
    putBucketAcl_contentMD5,
    putBucketAcl_expectedBucketOwner,
    putBucketAcl_grantFullControl,
    putBucketAcl_grantRead,
    putBucketAcl_grantReadACP,
    putBucketAcl_grantWrite,
    putBucketAcl_grantWriteACP,
    putBucketAcl_bucket,

    -- * Destructuring the Response
    PutBucketAclResponse (..),
    newPutBucketAclResponse,
  )
where

import qualified Amazonka.Core as Core
import qualified Amazonka.Core.Lens.Internal as Lens
import qualified Amazonka.Data as Data
import qualified Amazonka.Prelude as Prelude
import qualified Amazonka.Request as Request
import qualified Amazonka.Response as Response
import Amazonka.S3.Types

-- | /See:/ 'newPutBucketAcl' smart constructor.
data PutBucketAcl = PutBucketAcl'
  { -- | The canned ACL to apply to the bucket.
    PutBucketAcl -> Maybe BucketCannedACL
acl :: Prelude.Maybe BucketCannedACL,
    -- | Contains the elements that set the ACL permissions for an object per
    -- grantee.
    PutBucketAcl -> Maybe AccessControlPolicy
accessControlPolicy :: Prelude.Maybe AccessControlPolicy,
    -- | Indicates the algorithm used to create the checksum for the object when
    -- using the SDK. This header will not provide any additional functionality
    -- if not using the SDK. When sending this header, there must be a
    -- corresponding @x-amz-checksum@ or @x-amz-trailer@ header sent.
    -- Otherwise, Amazon S3 fails the request with the HTTP status code
    -- @400 Bad Request@. For more information, see
    -- <https://docs.aws.amazon.com/AmazonS3/latest/userguide/checking-object-integrity.html Checking object integrity>
    -- in the /Amazon S3 User Guide/.
    --
    -- If you provide an individual checksum, Amazon S3 ignores any provided
    -- @ChecksumAlgorithm@ parameter.
    PutBucketAcl -> Maybe ChecksumAlgorithm
checksumAlgorithm :: Prelude.Maybe ChecksumAlgorithm,
    -- | The base64-encoded 128-bit MD5 digest of the data. This header must be
    -- used as a message integrity check to verify that the request body was
    -- not corrupted in transit. For more information, go to
    -- <http://www.ietf.org/rfc/rfc1864.txt RFC 1864.>
    --
    -- For requests made using the Amazon Web Services Command Line Interface
    -- (CLI) or Amazon Web Services SDKs, this field is calculated
    -- automatically.
    PutBucketAcl -> Maybe Text
contentMD5 :: Prelude.Maybe Prelude.Text,
    -- | The account ID of the expected bucket owner. If the bucket is owned by a
    -- different account, the request fails with the HTTP status code
    -- @403 Forbidden@ (access denied).
    PutBucketAcl -> Maybe Text
expectedBucketOwner :: Prelude.Maybe Prelude.Text,
    -- | Allows grantee the read, write, read ACP, and write ACP permissions on
    -- the bucket.
    PutBucketAcl -> Maybe Text
grantFullControl :: Prelude.Maybe Prelude.Text,
    -- | Allows grantee to list the objects in the bucket.
    PutBucketAcl -> Maybe Text
grantRead :: Prelude.Maybe Prelude.Text,
    -- | Allows grantee to read the bucket ACL.
    PutBucketAcl -> Maybe Text
grantReadACP :: Prelude.Maybe Prelude.Text,
    -- | Allows grantee to create new objects in the bucket.
    --
    -- For the bucket and object owners of existing objects, also allows
    -- deletions and overwrites of those objects.
    PutBucketAcl -> Maybe Text
grantWrite :: Prelude.Maybe Prelude.Text,
    -- | Allows grantee to write the ACL for the applicable bucket.
    PutBucketAcl -> Maybe Text
grantWriteACP :: Prelude.Maybe Prelude.Text,
    -- | The bucket to which to apply the ACL.
    PutBucketAcl -> BucketName
bucket :: BucketName
  }
  deriving (PutBucketAcl -> PutBucketAcl -> Bool
forall a. (a -> a -> Bool) -> (a -> a -> Bool) -> Eq a
/= :: PutBucketAcl -> PutBucketAcl -> Bool
$c/= :: PutBucketAcl -> PutBucketAcl -> Bool
== :: PutBucketAcl -> PutBucketAcl -> Bool
$c== :: PutBucketAcl -> PutBucketAcl -> Bool
Prelude.Eq, ReadPrec [PutBucketAcl]
ReadPrec PutBucketAcl
Int -> ReadS PutBucketAcl
ReadS [PutBucketAcl]
forall a.
(Int -> ReadS a)
-> ReadS [a] -> ReadPrec a -> ReadPrec [a] -> Read a
readListPrec :: ReadPrec [PutBucketAcl]
$creadListPrec :: ReadPrec [PutBucketAcl]
readPrec :: ReadPrec PutBucketAcl
$creadPrec :: ReadPrec PutBucketAcl
readList :: ReadS [PutBucketAcl]
$creadList :: ReadS [PutBucketAcl]
readsPrec :: Int -> ReadS PutBucketAcl
$creadsPrec :: Int -> ReadS PutBucketAcl
Prelude.Read, Int -> PutBucketAcl -> ShowS
[PutBucketAcl] -> ShowS
PutBucketAcl -> String
forall a.
(Int -> a -> ShowS) -> (a -> String) -> ([a] -> ShowS) -> Show a
showList :: [PutBucketAcl] -> ShowS
$cshowList :: [PutBucketAcl] -> ShowS
show :: PutBucketAcl -> String
$cshow :: PutBucketAcl -> String
showsPrec :: Int -> PutBucketAcl -> ShowS
$cshowsPrec :: Int -> PutBucketAcl -> ShowS
Prelude.Show, forall x. Rep PutBucketAcl x -> PutBucketAcl
forall x. PutBucketAcl -> Rep PutBucketAcl x
forall a.
(forall x. a -> Rep a x) -> (forall x. Rep a x -> a) -> Generic a
$cto :: forall x. Rep PutBucketAcl x -> PutBucketAcl
$cfrom :: forall x. PutBucketAcl -> Rep PutBucketAcl x
Prelude.Generic)

-- |
-- Create a value of 'PutBucketAcl' with all optional fields omitted.
--
-- Use <https://hackage.haskell.org/package/generic-lens generic-lens> or <https://hackage.haskell.org/package/optics optics> to modify other optional fields.
--
-- The following record fields are available, with the corresponding lenses provided
-- for backwards compatibility:
--
-- 'acl', 'putBucketAcl_acl' - The canned ACL to apply to the bucket.
--
-- 'accessControlPolicy', 'putBucketAcl_accessControlPolicy' - Contains the elements that set the ACL permissions for an object per
-- grantee.
--
-- 'checksumAlgorithm', 'putBucketAcl_checksumAlgorithm' - Indicates the algorithm used to create the checksum for the object when
-- using the SDK. This header will not provide any additional functionality
-- if not using the SDK. When sending this header, there must be a
-- corresponding @x-amz-checksum@ or @x-amz-trailer@ header sent.
-- Otherwise, Amazon S3 fails the request with the HTTP status code
-- @400 Bad Request@. For more information, see
-- <https://docs.aws.amazon.com/AmazonS3/latest/userguide/checking-object-integrity.html Checking object integrity>
-- in the /Amazon S3 User Guide/.
--
-- If you provide an individual checksum, Amazon S3 ignores any provided
-- @ChecksumAlgorithm@ parameter.
--
-- 'contentMD5', 'putBucketAcl_contentMD5' - The base64-encoded 128-bit MD5 digest of the data. This header must be
-- used as a message integrity check to verify that the request body was
-- not corrupted in transit. For more information, go to
-- <http://www.ietf.org/rfc/rfc1864.txt RFC 1864.>
--
-- For requests made using the Amazon Web Services Command Line Interface
-- (CLI) or Amazon Web Services SDKs, this field is calculated
-- automatically.
--
-- 'expectedBucketOwner', 'putBucketAcl_expectedBucketOwner' - The account ID of the expected bucket owner. If the bucket is owned by a
-- different account, the request fails with the HTTP status code
-- @403 Forbidden@ (access denied).
--
-- 'grantFullControl', 'putBucketAcl_grantFullControl' - Allows grantee the read, write, read ACP, and write ACP permissions on
-- the bucket.
--
-- 'grantRead', 'putBucketAcl_grantRead' - Allows grantee to list the objects in the bucket.
--
-- 'grantReadACP', 'putBucketAcl_grantReadACP' - Allows grantee to read the bucket ACL.
--
-- 'grantWrite', 'putBucketAcl_grantWrite' - Allows grantee to create new objects in the bucket.
--
-- For the bucket and object owners of existing objects, also allows
-- deletions and overwrites of those objects.
--
-- 'grantWriteACP', 'putBucketAcl_grantWriteACP' - Allows grantee to write the ACL for the applicable bucket.
--
-- 'bucket', 'putBucketAcl_bucket' - The bucket to which to apply the ACL.
newPutBucketAcl ::
  -- | 'bucket'
  BucketName ->
  PutBucketAcl
newPutBucketAcl :: BucketName -> PutBucketAcl
newPutBucketAcl BucketName
pBucket_ =
  PutBucketAcl'
    { $sel:acl:PutBucketAcl' :: Maybe BucketCannedACL
acl = forall a. Maybe a
Prelude.Nothing,
      $sel:accessControlPolicy:PutBucketAcl' :: Maybe AccessControlPolicy
accessControlPolicy = forall a. Maybe a
Prelude.Nothing,
      $sel:checksumAlgorithm:PutBucketAcl' :: Maybe ChecksumAlgorithm
checksumAlgorithm = forall a. Maybe a
Prelude.Nothing,
      $sel:contentMD5:PutBucketAcl' :: Maybe Text
contentMD5 = forall a. Maybe a
Prelude.Nothing,
      $sel:expectedBucketOwner:PutBucketAcl' :: Maybe Text
expectedBucketOwner = forall a. Maybe a
Prelude.Nothing,
      $sel:grantFullControl:PutBucketAcl' :: Maybe Text
grantFullControl = forall a. Maybe a
Prelude.Nothing,
      $sel:grantRead:PutBucketAcl' :: Maybe Text
grantRead = forall a. Maybe a
Prelude.Nothing,
      $sel:grantReadACP:PutBucketAcl' :: Maybe Text
grantReadACP = forall a. Maybe a
Prelude.Nothing,
      $sel:grantWrite:PutBucketAcl' :: Maybe Text
grantWrite = forall a. Maybe a
Prelude.Nothing,
      $sel:grantWriteACP:PutBucketAcl' :: Maybe Text
grantWriteACP = forall a. Maybe a
Prelude.Nothing,
      $sel:bucket:PutBucketAcl' :: BucketName
bucket = BucketName
pBucket_
    }

-- | The canned ACL to apply to the bucket.
putBucketAcl_acl :: Lens.Lens' PutBucketAcl (Prelude.Maybe BucketCannedACL)
putBucketAcl_acl :: Lens' PutBucketAcl (Maybe BucketCannedACL)
putBucketAcl_acl = forall s a b t. (s -> a) -> (s -> b -> t) -> Lens s t a b
Lens.lens (\PutBucketAcl' {Maybe BucketCannedACL
acl :: Maybe BucketCannedACL
$sel:acl:PutBucketAcl' :: PutBucketAcl -> Maybe BucketCannedACL
acl} -> Maybe BucketCannedACL
acl) (\s :: PutBucketAcl
s@PutBucketAcl' {} Maybe BucketCannedACL
a -> PutBucketAcl
s {$sel:acl:PutBucketAcl' :: Maybe BucketCannedACL
acl = Maybe BucketCannedACL
a} :: PutBucketAcl)

-- | Contains the elements that set the ACL permissions for an object per
-- grantee.
putBucketAcl_accessControlPolicy :: Lens.Lens' PutBucketAcl (Prelude.Maybe AccessControlPolicy)
putBucketAcl_accessControlPolicy :: Lens' PutBucketAcl (Maybe AccessControlPolicy)
putBucketAcl_accessControlPolicy = forall s a b t. (s -> a) -> (s -> b -> t) -> Lens s t a b
Lens.lens (\PutBucketAcl' {Maybe AccessControlPolicy
accessControlPolicy :: Maybe AccessControlPolicy
$sel:accessControlPolicy:PutBucketAcl' :: PutBucketAcl -> Maybe AccessControlPolicy
accessControlPolicy} -> Maybe AccessControlPolicy
accessControlPolicy) (\s :: PutBucketAcl
s@PutBucketAcl' {} Maybe AccessControlPolicy
a -> PutBucketAcl
s {$sel:accessControlPolicy:PutBucketAcl' :: Maybe AccessControlPolicy
accessControlPolicy = Maybe AccessControlPolicy
a} :: PutBucketAcl)

-- | Indicates the algorithm used to create the checksum for the object when
-- using the SDK. This header will not provide any additional functionality
-- if not using the SDK. When sending this header, there must be a
-- corresponding @x-amz-checksum@ or @x-amz-trailer@ header sent.
-- Otherwise, Amazon S3 fails the request with the HTTP status code
-- @400 Bad Request@. For more information, see
-- <https://docs.aws.amazon.com/AmazonS3/latest/userguide/checking-object-integrity.html Checking object integrity>
-- in the /Amazon S3 User Guide/.
--
-- If you provide an individual checksum, Amazon S3 ignores any provided
-- @ChecksumAlgorithm@ parameter.
putBucketAcl_checksumAlgorithm :: Lens.Lens' PutBucketAcl (Prelude.Maybe ChecksumAlgorithm)
putBucketAcl_checksumAlgorithm :: Lens' PutBucketAcl (Maybe ChecksumAlgorithm)
putBucketAcl_checksumAlgorithm = forall s a b t. (s -> a) -> (s -> b -> t) -> Lens s t a b
Lens.lens (\PutBucketAcl' {Maybe ChecksumAlgorithm
checksumAlgorithm :: Maybe ChecksumAlgorithm
$sel:checksumAlgorithm:PutBucketAcl' :: PutBucketAcl -> Maybe ChecksumAlgorithm
checksumAlgorithm} -> Maybe ChecksumAlgorithm
checksumAlgorithm) (\s :: PutBucketAcl
s@PutBucketAcl' {} Maybe ChecksumAlgorithm
a -> PutBucketAcl
s {$sel:checksumAlgorithm:PutBucketAcl' :: Maybe ChecksumAlgorithm
checksumAlgorithm = Maybe ChecksumAlgorithm
a} :: PutBucketAcl)

-- | The base64-encoded 128-bit MD5 digest of the data. This header must be
-- used as a message integrity check to verify that the request body was
-- not corrupted in transit. For more information, go to
-- <http://www.ietf.org/rfc/rfc1864.txt RFC 1864.>
--
-- For requests made using the Amazon Web Services Command Line Interface
-- (CLI) or Amazon Web Services SDKs, this field is calculated
-- automatically.
putBucketAcl_contentMD5 :: Lens.Lens' PutBucketAcl (Prelude.Maybe Prelude.Text)
putBucketAcl_contentMD5 :: Lens' PutBucketAcl (Maybe Text)
putBucketAcl_contentMD5 = forall s a b t. (s -> a) -> (s -> b -> t) -> Lens s t a b
Lens.lens (\PutBucketAcl' {Maybe Text
contentMD5 :: Maybe Text
$sel:contentMD5:PutBucketAcl' :: PutBucketAcl -> Maybe Text
contentMD5} -> Maybe Text
contentMD5) (\s :: PutBucketAcl
s@PutBucketAcl' {} Maybe Text
a -> PutBucketAcl
s {$sel:contentMD5:PutBucketAcl' :: Maybe Text
contentMD5 = Maybe Text
a} :: PutBucketAcl)

-- | The account ID of the expected bucket owner. If the bucket is owned by a
-- different account, the request fails with the HTTP status code
-- @403 Forbidden@ (access denied).
putBucketAcl_expectedBucketOwner :: Lens.Lens' PutBucketAcl (Prelude.Maybe Prelude.Text)
putBucketAcl_expectedBucketOwner :: Lens' PutBucketAcl (Maybe Text)
putBucketAcl_expectedBucketOwner = forall s a b t. (s -> a) -> (s -> b -> t) -> Lens s t a b
Lens.lens (\PutBucketAcl' {Maybe Text
expectedBucketOwner :: Maybe Text
$sel:expectedBucketOwner:PutBucketAcl' :: PutBucketAcl -> Maybe Text
expectedBucketOwner} -> Maybe Text
expectedBucketOwner) (\s :: PutBucketAcl
s@PutBucketAcl' {} Maybe Text
a -> PutBucketAcl
s {$sel:expectedBucketOwner:PutBucketAcl' :: Maybe Text
expectedBucketOwner = Maybe Text
a} :: PutBucketAcl)

-- | Allows grantee the read, write, read ACP, and write ACP permissions on
-- the bucket.
putBucketAcl_grantFullControl :: Lens.Lens' PutBucketAcl (Prelude.Maybe Prelude.Text)
putBucketAcl_grantFullControl :: Lens' PutBucketAcl (Maybe Text)
putBucketAcl_grantFullControl = forall s a b t. (s -> a) -> (s -> b -> t) -> Lens s t a b
Lens.lens (\PutBucketAcl' {Maybe Text
grantFullControl :: Maybe Text
$sel:grantFullControl:PutBucketAcl' :: PutBucketAcl -> Maybe Text
grantFullControl} -> Maybe Text
grantFullControl) (\s :: PutBucketAcl
s@PutBucketAcl' {} Maybe Text
a -> PutBucketAcl
s {$sel:grantFullControl:PutBucketAcl' :: Maybe Text
grantFullControl = Maybe Text
a} :: PutBucketAcl)

-- | Allows grantee to list the objects in the bucket.
putBucketAcl_grantRead :: Lens.Lens' PutBucketAcl (Prelude.Maybe Prelude.Text)
putBucketAcl_grantRead :: Lens' PutBucketAcl (Maybe Text)
putBucketAcl_grantRead = forall s a b t. (s -> a) -> (s -> b -> t) -> Lens s t a b
Lens.lens (\PutBucketAcl' {Maybe Text
grantRead :: Maybe Text
$sel:grantRead:PutBucketAcl' :: PutBucketAcl -> Maybe Text
grantRead} -> Maybe Text
grantRead) (\s :: PutBucketAcl
s@PutBucketAcl' {} Maybe Text
a -> PutBucketAcl
s {$sel:grantRead:PutBucketAcl' :: Maybe Text
grantRead = Maybe Text
a} :: PutBucketAcl)

-- | Allows grantee to read the bucket ACL.
putBucketAcl_grantReadACP :: Lens.Lens' PutBucketAcl (Prelude.Maybe Prelude.Text)
putBucketAcl_grantReadACP :: Lens' PutBucketAcl (Maybe Text)
putBucketAcl_grantReadACP = forall s a b t. (s -> a) -> (s -> b -> t) -> Lens s t a b
Lens.lens (\PutBucketAcl' {Maybe Text
grantReadACP :: Maybe Text
$sel:grantReadACP:PutBucketAcl' :: PutBucketAcl -> Maybe Text
grantReadACP} -> Maybe Text
grantReadACP) (\s :: PutBucketAcl
s@PutBucketAcl' {} Maybe Text
a -> PutBucketAcl
s {$sel:grantReadACP:PutBucketAcl' :: Maybe Text
grantReadACP = Maybe Text
a} :: PutBucketAcl)

-- | Allows grantee to create new objects in the bucket.
--
-- For the bucket and object owners of existing objects, also allows
-- deletions and overwrites of those objects.
putBucketAcl_grantWrite :: Lens.Lens' PutBucketAcl (Prelude.Maybe Prelude.Text)
putBucketAcl_grantWrite :: Lens' PutBucketAcl (Maybe Text)
putBucketAcl_grantWrite = forall s a b t. (s -> a) -> (s -> b -> t) -> Lens s t a b
Lens.lens (\PutBucketAcl' {Maybe Text
grantWrite :: Maybe Text
$sel:grantWrite:PutBucketAcl' :: PutBucketAcl -> Maybe Text
grantWrite} -> Maybe Text
grantWrite) (\s :: PutBucketAcl
s@PutBucketAcl' {} Maybe Text
a -> PutBucketAcl
s {$sel:grantWrite:PutBucketAcl' :: Maybe Text
grantWrite = Maybe Text
a} :: PutBucketAcl)

-- | Allows grantee to write the ACL for the applicable bucket.
putBucketAcl_grantWriteACP :: Lens.Lens' PutBucketAcl (Prelude.Maybe Prelude.Text)
putBucketAcl_grantWriteACP :: Lens' PutBucketAcl (Maybe Text)
putBucketAcl_grantWriteACP = forall s a b t. (s -> a) -> (s -> b -> t) -> Lens s t a b
Lens.lens (\PutBucketAcl' {Maybe Text
grantWriteACP :: Maybe Text
$sel:grantWriteACP:PutBucketAcl' :: PutBucketAcl -> Maybe Text
grantWriteACP} -> Maybe Text
grantWriteACP) (\s :: PutBucketAcl
s@PutBucketAcl' {} Maybe Text
a -> PutBucketAcl
s {$sel:grantWriteACP:PutBucketAcl' :: Maybe Text
grantWriteACP = Maybe Text
a} :: PutBucketAcl)

-- | The bucket to which to apply the ACL.
putBucketAcl_bucket :: Lens.Lens' PutBucketAcl BucketName
putBucketAcl_bucket :: Lens' PutBucketAcl BucketName
putBucketAcl_bucket = forall s a b t. (s -> a) -> (s -> b -> t) -> Lens s t a b
Lens.lens (\PutBucketAcl' {BucketName
bucket :: BucketName
$sel:bucket:PutBucketAcl' :: PutBucketAcl -> BucketName
bucket} -> BucketName
bucket) (\s :: PutBucketAcl
s@PutBucketAcl' {} BucketName
a -> PutBucketAcl
s {$sel:bucket:PutBucketAcl' :: BucketName
bucket = BucketName
a} :: PutBucketAcl)

instance Core.AWSRequest PutBucketAcl where
  type AWSResponse PutBucketAcl = PutBucketAclResponse
  request :: (Service -> Service) -> PutBucketAcl -> Request PutBucketAcl
request Service -> Service
overrides =
    forall a. Request a -> Request a
Request.s3vhost
      forall b c a. (b -> c) -> (a -> b) -> a -> c
Prelude.. forall a. (ToRequest a, ToElement a) => Service -> a -> Request a
Request.putXML (Service -> Service
overrides Service
defaultService)
  response :: forall (m :: * -> *).
MonadResource m =>
(ByteStringLazy -> IO ByteStringLazy)
-> Service
-> Proxy PutBucketAcl
-> ClientResponse ClientBody
-> m (Either Error (ClientResponse (AWSResponse PutBucketAcl)))
response = forall (m :: * -> *) a.
MonadResource m =>
AWSResponse a
-> (ByteStringLazy -> IO ByteStringLazy)
-> Service
-> Proxy a
-> ClientResponse ClientBody
-> m (Either Error (ClientResponse (AWSResponse a)))
Response.receiveNull PutBucketAclResponse
PutBucketAclResponse'

instance Prelude.Hashable PutBucketAcl where
  hashWithSalt :: Int -> PutBucketAcl -> Int
hashWithSalt Int
_salt PutBucketAcl' {Maybe Text
Maybe BucketCannedACL
Maybe ChecksumAlgorithm
Maybe AccessControlPolicy
BucketName
bucket :: BucketName
grantWriteACP :: Maybe Text
grantWrite :: Maybe Text
grantReadACP :: Maybe Text
grantRead :: Maybe Text
grantFullControl :: Maybe Text
expectedBucketOwner :: Maybe Text
contentMD5 :: Maybe Text
checksumAlgorithm :: Maybe ChecksumAlgorithm
accessControlPolicy :: Maybe AccessControlPolicy
acl :: Maybe BucketCannedACL
$sel:bucket:PutBucketAcl' :: PutBucketAcl -> BucketName
$sel:grantWriteACP:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:grantWrite:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:grantReadACP:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:grantRead:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:grantFullControl:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:expectedBucketOwner:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:contentMD5:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:checksumAlgorithm:PutBucketAcl' :: PutBucketAcl -> Maybe ChecksumAlgorithm
$sel:accessControlPolicy:PutBucketAcl' :: PutBucketAcl -> Maybe AccessControlPolicy
$sel:acl:PutBucketAcl' :: PutBucketAcl -> Maybe BucketCannedACL
..} =
    Int
_salt
      forall a. Hashable a => Int -> a -> Int
`Prelude.hashWithSalt` Maybe BucketCannedACL
acl
      forall a. Hashable a => Int -> a -> Int
`Prelude.hashWithSalt` Maybe AccessControlPolicy
accessControlPolicy
      forall a. Hashable a => Int -> a -> Int
`Prelude.hashWithSalt` Maybe ChecksumAlgorithm
checksumAlgorithm
      forall a. Hashable a => Int -> a -> Int
`Prelude.hashWithSalt` Maybe Text
contentMD5
      forall a. Hashable a => Int -> a -> Int
`Prelude.hashWithSalt` Maybe Text
expectedBucketOwner
      forall a. Hashable a => Int -> a -> Int
`Prelude.hashWithSalt` Maybe Text
grantFullControl
      forall a. Hashable a => Int -> a -> Int
`Prelude.hashWithSalt` Maybe Text
grantRead
      forall a. Hashable a => Int -> a -> Int
`Prelude.hashWithSalt` Maybe Text
grantReadACP
      forall a. Hashable a => Int -> a -> Int
`Prelude.hashWithSalt` Maybe Text
grantWrite
      forall a. Hashable a => Int -> a -> Int
`Prelude.hashWithSalt` Maybe Text
grantWriteACP
      forall a. Hashable a => Int -> a -> Int
`Prelude.hashWithSalt` BucketName
bucket

instance Prelude.NFData PutBucketAcl where
  rnf :: PutBucketAcl -> ()
rnf PutBucketAcl' {Maybe Text
Maybe BucketCannedACL
Maybe ChecksumAlgorithm
Maybe AccessControlPolicy
BucketName
bucket :: BucketName
grantWriteACP :: Maybe Text
grantWrite :: Maybe Text
grantReadACP :: Maybe Text
grantRead :: Maybe Text
grantFullControl :: Maybe Text
expectedBucketOwner :: Maybe Text
contentMD5 :: Maybe Text
checksumAlgorithm :: Maybe ChecksumAlgorithm
accessControlPolicy :: Maybe AccessControlPolicy
acl :: Maybe BucketCannedACL
$sel:bucket:PutBucketAcl' :: PutBucketAcl -> BucketName
$sel:grantWriteACP:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:grantWrite:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:grantReadACP:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:grantRead:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:grantFullControl:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:expectedBucketOwner:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:contentMD5:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:checksumAlgorithm:PutBucketAcl' :: PutBucketAcl -> Maybe ChecksumAlgorithm
$sel:accessControlPolicy:PutBucketAcl' :: PutBucketAcl -> Maybe AccessControlPolicy
$sel:acl:PutBucketAcl' :: PutBucketAcl -> Maybe BucketCannedACL
..} =
    forall a. NFData a => a -> ()
Prelude.rnf Maybe BucketCannedACL
acl
      seq :: forall a b. a -> b -> b
`Prelude.seq` forall a. NFData a => a -> ()
Prelude.rnf Maybe AccessControlPolicy
accessControlPolicy
      seq :: forall a b. a -> b -> b
`Prelude.seq` forall a. NFData a => a -> ()
Prelude.rnf Maybe ChecksumAlgorithm
checksumAlgorithm
      seq :: forall a b. a -> b -> b
`Prelude.seq` forall a. NFData a => a -> ()
Prelude.rnf Maybe Text
contentMD5
      seq :: forall a b. a -> b -> b
`Prelude.seq` forall a. NFData a => a -> ()
Prelude.rnf Maybe Text
expectedBucketOwner
      seq :: forall a b. a -> b -> b
`Prelude.seq` forall a. NFData a => a -> ()
Prelude.rnf Maybe Text
grantFullControl
      seq :: forall a b. a -> b -> b
`Prelude.seq` forall a. NFData a => a -> ()
Prelude.rnf Maybe Text
grantRead
      seq :: forall a b. a -> b -> b
`Prelude.seq` forall a. NFData a => a -> ()
Prelude.rnf Maybe Text
grantReadACP
      seq :: forall a b. a -> b -> b
`Prelude.seq` forall a. NFData a => a -> ()
Prelude.rnf Maybe Text
grantWrite
      seq :: forall a b. a -> b -> b
`Prelude.seq` forall a. NFData a => a -> ()
Prelude.rnf Maybe Text
grantWriteACP
      seq :: forall a b. a -> b -> b
`Prelude.seq` forall a. NFData a => a -> ()
Prelude.rnf BucketName
bucket

instance Data.ToElement PutBucketAcl where
  toElement :: PutBucketAcl -> Element
toElement PutBucketAcl' {Maybe Text
Maybe BucketCannedACL
Maybe ChecksumAlgorithm
Maybe AccessControlPolicy
BucketName
bucket :: BucketName
grantWriteACP :: Maybe Text
grantWrite :: Maybe Text
grantReadACP :: Maybe Text
grantRead :: Maybe Text
grantFullControl :: Maybe Text
expectedBucketOwner :: Maybe Text
contentMD5 :: Maybe Text
checksumAlgorithm :: Maybe ChecksumAlgorithm
accessControlPolicy :: Maybe AccessControlPolicy
acl :: Maybe BucketCannedACL
$sel:bucket:PutBucketAcl' :: PutBucketAcl -> BucketName
$sel:grantWriteACP:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:grantWrite:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:grantReadACP:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:grantRead:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:grantFullControl:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:expectedBucketOwner:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:contentMD5:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:checksumAlgorithm:PutBucketAcl' :: PutBucketAcl -> Maybe ChecksumAlgorithm
$sel:accessControlPolicy:PutBucketAcl' :: PutBucketAcl -> Maybe AccessControlPolicy
$sel:acl:PutBucketAcl' :: PutBucketAcl -> Maybe BucketCannedACL
..} =
    forall a. ToXML a => Name -> a -> Element
Data.mkElement
      Name
"{http://s3.amazonaws.com/doc/2006-03-01/}AccessControlPolicy"
      Maybe AccessControlPolicy
accessControlPolicy

instance Data.ToHeaders PutBucketAcl where
  toHeaders :: PutBucketAcl -> [Header]
toHeaders PutBucketAcl' {Maybe Text
Maybe BucketCannedACL
Maybe ChecksumAlgorithm
Maybe AccessControlPolicy
BucketName
bucket :: BucketName
grantWriteACP :: Maybe Text
grantWrite :: Maybe Text
grantReadACP :: Maybe Text
grantRead :: Maybe Text
grantFullControl :: Maybe Text
expectedBucketOwner :: Maybe Text
contentMD5 :: Maybe Text
checksumAlgorithm :: Maybe ChecksumAlgorithm
accessControlPolicy :: Maybe AccessControlPolicy
acl :: Maybe BucketCannedACL
$sel:bucket:PutBucketAcl' :: PutBucketAcl -> BucketName
$sel:grantWriteACP:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:grantWrite:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:grantReadACP:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:grantRead:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:grantFullControl:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:expectedBucketOwner:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:contentMD5:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:checksumAlgorithm:PutBucketAcl' :: PutBucketAcl -> Maybe ChecksumAlgorithm
$sel:accessControlPolicy:PutBucketAcl' :: PutBucketAcl -> Maybe AccessControlPolicy
$sel:acl:PutBucketAcl' :: PutBucketAcl -> Maybe BucketCannedACL
..} =
    forall a. Monoid a => [a] -> a
Prelude.mconcat
      [ HeaderName
"x-amz-acl" forall a. ToHeader a => HeaderName -> a -> [Header]
Data.=# Maybe BucketCannedACL
acl,
        HeaderName
"x-amz-sdk-checksum-algorithm"
          forall a. ToHeader a => HeaderName -> a -> [Header]
Data.=# Maybe ChecksumAlgorithm
checksumAlgorithm,
        HeaderName
"Content-MD5" forall a. ToHeader a => HeaderName -> a -> [Header]
Data.=# Maybe Text
contentMD5,
        HeaderName
"x-amz-expected-bucket-owner"
          forall a. ToHeader a => HeaderName -> a -> [Header]
Data.=# Maybe Text
expectedBucketOwner,
        HeaderName
"x-amz-grant-full-control" forall a. ToHeader a => HeaderName -> a -> [Header]
Data.=# Maybe Text
grantFullControl,
        HeaderName
"x-amz-grant-read" forall a. ToHeader a => HeaderName -> a -> [Header]
Data.=# Maybe Text
grantRead,
        HeaderName
"x-amz-grant-read-acp" forall a. ToHeader a => HeaderName -> a -> [Header]
Data.=# Maybe Text
grantReadACP,
        HeaderName
"x-amz-grant-write" forall a. ToHeader a => HeaderName -> a -> [Header]
Data.=# Maybe Text
grantWrite,
        HeaderName
"x-amz-grant-write-acp" forall a. ToHeader a => HeaderName -> a -> [Header]
Data.=# Maybe Text
grantWriteACP
      ]

instance Data.ToPath PutBucketAcl where
  toPath :: PutBucketAcl -> ByteString
toPath PutBucketAcl' {Maybe Text
Maybe BucketCannedACL
Maybe ChecksumAlgorithm
Maybe AccessControlPolicy
BucketName
bucket :: BucketName
grantWriteACP :: Maybe Text
grantWrite :: Maybe Text
grantReadACP :: Maybe Text
grantRead :: Maybe Text
grantFullControl :: Maybe Text
expectedBucketOwner :: Maybe Text
contentMD5 :: Maybe Text
checksumAlgorithm :: Maybe ChecksumAlgorithm
accessControlPolicy :: Maybe AccessControlPolicy
acl :: Maybe BucketCannedACL
$sel:bucket:PutBucketAcl' :: PutBucketAcl -> BucketName
$sel:grantWriteACP:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:grantWrite:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:grantReadACP:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:grantRead:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:grantFullControl:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:expectedBucketOwner:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:contentMD5:PutBucketAcl' :: PutBucketAcl -> Maybe Text
$sel:checksumAlgorithm:PutBucketAcl' :: PutBucketAcl -> Maybe ChecksumAlgorithm
$sel:accessControlPolicy:PutBucketAcl' :: PutBucketAcl -> Maybe AccessControlPolicy
$sel:acl:PutBucketAcl' :: PutBucketAcl -> Maybe BucketCannedACL
..} =
    forall a. Monoid a => [a] -> a
Prelude.mconcat [ByteString
"/", forall a. ToByteString a => a -> ByteString
Data.toBS BucketName
bucket]

instance Data.ToQuery PutBucketAcl where
  toQuery :: PutBucketAcl -> QueryString
toQuery = forall a b. a -> b -> a
Prelude.const (forall a. Monoid a => [a] -> a
Prelude.mconcat [QueryString
"acl"])

-- | /See:/ 'newPutBucketAclResponse' smart constructor.
data PutBucketAclResponse = PutBucketAclResponse'
  {
  }
  deriving (PutBucketAclResponse -> PutBucketAclResponse -> Bool
forall a. (a -> a -> Bool) -> (a -> a -> Bool) -> Eq a
/= :: PutBucketAclResponse -> PutBucketAclResponse -> Bool
$c/= :: PutBucketAclResponse -> PutBucketAclResponse -> Bool
== :: PutBucketAclResponse -> PutBucketAclResponse -> Bool
$c== :: PutBucketAclResponse -> PutBucketAclResponse -> Bool
Prelude.Eq, ReadPrec [PutBucketAclResponse]
ReadPrec PutBucketAclResponse
Int -> ReadS PutBucketAclResponse
ReadS [PutBucketAclResponse]
forall a.
(Int -> ReadS a)
-> ReadS [a] -> ReadPrec a -> ReadPrec [a] -> Read a
readListPrec :: ReadPrec [PutBucketAclResponse]
$creadListPrec :: ReadPrec [PutBucketAclResponse]
readPrec :: ReadPrec PutBucketAclResponse
$creadPrec :: ReadPrec PutBucketAclResponse
readList :: ReadS [PutBucketAclResponse]
$creadList :: ReadS [PutBucketAclResponse]
readsPrec :: Int -> ReadS PutBucketAclResponse
$creadsPrec :: Int -> ReadS PutBucketAclResponse
Prelude.Read, Int -> PutBucketAclResponse -> ShowS
[PutBucketAclResponse] -> ShowS
PutBucketAclResponse -> String
forall a.
(Int -> a -> ShowS) -> (a -> String) -> ([a] -> ShowS) -> Show a
showList :: [PutBucketAclResponse] -> ShowS
$cshowList :: [PutBucketAclResponse] -> ShowS
show :: PutBucketAclResponse -> String
$cshow :: PutBucketAclResponse -> String
showsPrec :: Int -> PutBucketAclResponse -> ShowS
$cshowsPrec :: Int -> PutBucketAclResponse -> ShowS
Prelude.Show, forall x. Rep PutBucketAclResponse x -> PutBucketAclResponse
forall x. PutBucketAclResponse -> Rep PutBucketAclResponse x
forall a.
(forall x. a -> Rep a x) -> (forall x. Rep a x -> a) -> Generic a
$cto :: forall x. Rep PutBucketAclResponse x -> PutBucketAclResponse
$cfrom :: forall x. PutBucketAclResponse -> Rep PutBucketAclResponse x
Prelude.Generic)

-- |
-- Create a value of 'PutBucketAclResponse' with all optional fields omitted.
--
-- Use <https://hackage.haskell.org/package/generic-lens generic-lens> or <https://hackage.haskell.org/package/optics optics> to modify other optional fields.
newPutBucketAclResponse ::
  PutBucketAclResponse
newPutBucketAclResponse :: PutBucketAclResponse
newPutBucketAclResponse = PutBucketAclResponse
PutBucketAclResponse'

instance Prelude.NFData PutBucketAclResponse where
  rnf :: PutBucketAclResponse -> ()
rnf PutBucketAclResponse
_ = ()