schema:AWS.S3ServerAccessdescription:S3ServerAccess is an AWS S3 Access Log.referenceURL:https://docs.aws.amazon.com/AmazonS3/latest/dev/LogFormat.htmlfields: - name:bucketownerrequired:truedescription:The canonical user ID of the owner of the source bucket. The canonical user ID is another form of the AWS account ID.type:string - name:bucketdescription:The name of the bucket that the request was processed against. If the system receives a malformed request and cannot determine the bucket, the request will not appear in any server access log.type:string - name:timedescription:The time at which the request was received (UTC).type:timestamptimeFormat:rfc3339 - name:remoteipdescription:The apparent internet address of the requester. Intermediate proxies and firewalls might obscure the actual address of the machine making the request.type:string - name:requesterdescription:The canonical user ID of the requester, or NULL for unauthenticated requests. If the requester was an IAM user, this field returns the requester's IAM user name along with the AWS root account that the IAM user belongs to. This identifier is the same one used for access control purposes.type:string - name:requestiddescription:A string generated by Amazon S3 to uniquely identify each request.type:string - name:operationdescription:The operation listed here is declared as SOAP.operation, REST.HTTP_method.resource_type, WEBSITE.HTTP_method.resource_type, or BATCH.DELETE.OBJECT.type:string - name:keydescription:The key part of the request, URL encoded, or NULL if the operation does not take a key parameter.type:string - name:requesturidescription:The Request-URI part of the HTTP request message.type:string - name:httpstatusdescription:The numeric HTTP status code of the response.type:bigint - name:errorcodedescription:The Amazon S3 Error Code, or NULL if no error occurred.type:string - name:bytessentdescription:The number of response bytes sent, excluding HTTP protocol overhead, or NULL if zero.type:bigint - name:objectsizedescription:The total size of the object in question.type:bigint - name:totaltimedescription:The number of milliseconds the request was in flight from the server's perspective. This value is measured from the time your request is received to the time that the last byte of the response is sent. Measurements made from the client's perspective might be longer due to network latency.type:bigint - name:turnaroundtimedescription:The number of milliseconds that Amazon S3 spent processing your request. This value is measured from the time the last byte of your request was received until the time the first byte of the response was sent.type:bigint - name:referrerdescription:The value of the HTTP Referer header, if present. HTTP user-agents (for example, browsers) typically set this header to the URL of the linking or embedding page when making a request.type:string - name:useragentdescription:The value of the HTTP User-Agent header.type:string - name:versioniddescription:The version ID in the request, or NULL if the operation does not take a versionId parameter.type:string - name:hostiddescription:The x-amz-id-2 or Amazon S3 extended request ID.type:string - name:signatureversiondescription:The signature version, SigV2 or SigV4, that was used to authenticate the request or NULL for unauthenticated requests.type:string - name:ciphersuitedescription:The Secure Sockets Layer (SSL) cipher that was negotiated for HTTPS request or NULL for HTTP.type:string - name:authenticationtypedescription:The type of request authentication used, AuthHeader for authentication headers, QueryString for query string (pre-signed URL) or NULL for unauthenticated requests.type:string - name:hostheaderdescription:The endpoint used to connect to Amazon S3.type:string - name:tlsVersiondescription:"The Transport Layer Security (TLS) version negotiated by the client. The value is one of following: TLSv1, TLSv1.1, TLSv1.2; or NULL if TLS wasn't used."type:string - name:accesspointarndescription:"The Amazon Resource Name (ARN) of the access point of the request."type:string - name:aclrequireddescription:"A string that indicates whether the request required an access control list (ACL) for authorization."type:string - name:additionalFieldsdescription:The remaining columns in the record as an array.type:arrayelement:type:string