Our S3 Buckets
At Playground Tech, we leverage Amazon S3 buckets to store and manage various types of data, from cost reports to log files. Each bucket serves a distinct purpose within our AWS Management Account setup. Below is a detailed overview of the S3 buckets we have created and their specific uses.
S3 Buckets and Their Usage
aws-playgroundtech-<customer name>
This bucket stores the Terraform state files for Playground Tech. The Terraform state file is used for tracking the state of our CMP Module deployment.
org-trail-<customer aws account id>
-playground-tech
This bucket is designated for storing CloudTrail logs for the customer's AWS account. CloudTrail logs provide detailed event history of actions taken within the AWS account, which is essential for security analysis, compliance auditing, and tracking changes in the environment.
org-trail-access-logs-<customer aws account id>
-playground-tech
Access logs for the org-trail-<customer aws account id>-playground-tech
bucket are stored here. These logs help monitor and analyze access patterns to the CloudTrail logs, adding an additional layer of security and ensuring that log access is properly tracked and audited.
pgt-cur-<customer name>
This bucket stores cost and usage reports for Playground Tech. The cost and usage data stored here is utilized by the ClickHouseAccessRole-pgt-cur-access
role for detailed cost insights and analysis.
pgt-custodian-run-output-<customer name>
Custodian run logs are stored in this bucket. These logs are for understanding the actions taken during Cloud Custodian deployments; used by us at Playground Tech for troubleshooting.
vantage-cur-<random id>
This bucket stores cost and usage data for Vantage. The vantage_cross_account_connection
role uses this bucket to access cost and usage report data, which is then displayed in the Vantage portal.