Updates for v2 release

[sdickenson]

Breaking Changes

• This release removes the kms_key_id option, due to its incompatibility with ALB logging. Existing buckets will have their encryption settings changed to SSE-S3. Users of previous versions of this module should evaluate their existing configuration for any negative impact of this change before upgrading.
• This releases uses a dedicated aws_s3_bucket_lifecycle_configuration resource. Existing deployments will need to explicitly import the lifecycle configuration into state when upgrading using an import block:

import {
  to   = module.MODULE_NAME.aws_s3_bucket_lifecycle_configuration.this
  from = my_elblogging_bucket_name
}

• The default behavior of the new source_accounts options is to restrict bucket access to the same account. Set this to an empty list to revert to the old behavior.

Features

• Uses newer bucket policy for ALB logging. Legacy policy can be enabled with the use_legacy_elb_policy option.
• May restrict bucket access to one of source_accounts or source_organizations list. Defaults to the current account, following AWS security best practices.

Changes

• Moves the S3 lifecycle configuration out of the bucket resource, due to that option being deprecated
• Defaults to modern bucket policy for ALB logging
• Bucket policy now restricts access to the current account by default.
• Removes option for using customer-managed keys due to incompatibility with ALB logging