Please vote on this issue by adding a 👍 reaction to the original issue to help the community and maintainers prioritize this request.
Please do not leave "+1" or "me too" comments. They generate extra noise for issue followers and do not help prioritize the request.
Elastic Beanstalk creates a single S3 bucket: elasticbeanstalk-${AWS::Region}-${AWS::AccountId} when the first Elastic Beanstalk environment for an account/region is created, and uses that S3 bucket for all applications implemented within the account/region.
This S3 bucket is created unencrypted and with Public Access.
Please update the Elastic Beanstalk options for creating the default S3 bucket to allow for the options:
Thank you for your interest in Elastic Beanstalk. Access to the S3 bucket you referred to here is restricted by policy. Encryption is enabled by default.
Community Note
Elastic Beanstalk creates a single S3 bucket:
elasticbeanstalk-${AWS::Region}-${AWS::AccountId}
when the first Elastic Beanstalk environment for an account/region is created, and uses that S3 bucket for all applications implemented within the account/region.This S3 bucket is created unencrypted and with Public Access.
Please update the Elastic Beanstalk options for creating the default S3 bucket to allow for the options: