From 2c68a19ea94bd7ce4182160b4833dfcee9f3764f Mon Sep 17 00:00:00 2001
From: MrDevOpsMan <joshuacallis@icloud.com>
Date: Tue, 15 Oct 2024 11:32:05 +0100
Subject: [PATCH] Update module_s3_bucket_cloudfront_logging.tf

need to also disable acl for usual cloudfront distros
---
 module_s3_bucket_cloudfront_logging.tf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/module_s3_bucket_cloudfront_logging.tf b/module_s3_bucket_cloudfront_logging.tf
index 7ede0f6..f8fd0a5 100644
--- a/module_s3_bucket_cloudfront_logging.tf
+++ b/module_s3_bucket_cloudfront_logging.tf
@@ -5,7 +5,7 @@ module "bucket_cloudwatch_logs_backup" {
   bucket                   = local.logging_bucket_name
   force_destroy            = false
   tags                     = var.common_tags
-  acl                      = var.whitelabel_domain ? null : "private"
+  acl                      = var.whitelabel_domain || var.acl_disabled ? null : "private"
   object_ownership         = "ObjectWriter"
   control_object_ownership = var.whitelabel_domain ? true : false
   attach_access_log_delivery_policy = var.whitelabel_domain ? true : false