[Enhancement] - More customizations for the default buckets used by CloudFormation

[mrlikl]

Name of the resource

Other

Resource name

No response

Description

The feature request is to

1. Allow the ability for end users or Organizations to configure a default bucket when a user uploads template via Console.
2. Potentially an option to disable default cf-template-* buckets creation
3. And/Or a way to disable the upload a template option in web console

Other Details

No response

[georgealton]

Maybe your use case is solved by using Effect: Deny on the cloudformation:CreateUploadBucket action

Here's information from the docs

Actions	Description	Access level	Resource types (*required)	Condition keys	Dependent actions
CreateUploadBucket [permission only]	Grants permission to upload templates to Amazon S3 buckets. Used only by the AWS CloudFormation console and is not documented in the API reference	Write

https://docs.aws.amazon.com/service-authorization/latest/reference/list_awscloudformation.html

CloudFormation console-specific actions

Users who use the CloudFormation console require additional permissions that aren't required for using the AWS Command Line Interface or CloudFormation APIs. Compared to the AWS CLI and API, the console provides additional features that require additional permissions, such as template uploads to Amazon S3 buckets and drop-down lists for AWS-specific parameter types.

For all the following actions, grant permissions to all resources; don't limit actions to specific stacks or buckets.

The following required action is used only by the CloudFormation console and is not documented in the API reference. The action allows users to upload templates to Amazon S3 buckets.

cloudformation:CreateUploadBucket

https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-iam-template.html#using-iam-template-actions