Fastly will upload log messages to the S3 bucket in the format specified in the S3 object.

Data model

access_keyStringYour S3 account access key.
aclStringThe access control list (ACL) specific request header. See the AWS documentation for Access Control List (ACL) Specific Request Headers for more information.
bucket_nameStringThe bucket name for S3 account.
created_atStringTime-stamp (GMT) when the endpoint was created.
deleted_atStringTime-stamp (GMT) when the endpoint was deleted.
domainStringThe domain of the Amazon S3 endpoint.
formatStringApache style log formatting.
format_versionIntegerThe version of the custom logging format used for the configured endpoint. Can be either 2 (the default, version 2 log format) or 1 (the version 1 log format). The logging call gets placed by default in vcl_log if format_version is set to 2 and in vcl_deliver if format_version is set to 1.
gzip_levelIntegerWhat level of gzip encoding to have when dumping logs (default 0, no compression).
message_typeStringHow the message should be formatted One of:.
classic(default) RFC 3164 syslog prefix.
logglyRFC 5424 structured syslog.
logplexHeroku-style length prefixed syslog.
blankNo prefix. Useful for writing JSON and CSV.
nameStringThe name of the s3 rule.
pathStringThe path to upload logs to.
periodIntegerHow frequently log files are finalized so they can be available for reading (in seconds, default 3600).
placementStringWhere in the generated VCL the logging call should be placed, overriding any format_version default. Can be none or waf_debug. This field is not required and has no default value.
public_keyStringA PGP public key that Fastly will use to encrypt your log files before writing them to disk.
redundancyStringThe S3 redundancy level.
response_conditionStringThe name of an existing condition in the configured endpoint, or leave blank to always execute.
secret_keyStringYour S3 account secret key.
server_side_encryption_kms_key_idStringOptional server-side KMS Key Id. Must be set if server_side_encryption is set to aws:kms.
server_side_encryptionStringSet this to AES256 or aws:kms to enable S3 Server Side Encryption.
service_idStringThe alphanumeric string identifying a service.
timestamp_formatStringstrftime specified timestamp formatting (default "%Y-%m-%dT%H:%M:%S.000").
updated_atStringTime-stamp (GMT) when the endpoint was deleted.
versionIntegerThe current version of a service.


List AWS S3 log endpoints


Get an AWS S3 log endpoint


Create an AWS S3 log endpoint


Update an AWS S3 log endpoint


Delete an AWS S3 log endpoint


User contributed notes

We welcome comments that add use cases, ideas, tips, and caveats. All comments will be moderated before publication. To post support questions, visit our support center and we'll find you the help you need.