'cdk destroy' is not working as intended or I am not understanding it correctly?

Question

Here is my demo stack,

export class HelloCdkStack extends cdk.Stack {
  constructor(parent: cdk.App, id: string, props?: cdk.StackProps) {
    super(parent, id, props);
    new s3.Bucket(this, 'MyFirstBucket', {
      versioned: true,
      encryption: s3.BucketEncryption.KmsManaged,
    });
  }
}

'cdk deploy' creates a new bucket, but when I execute 'cdk destroy' it does not delete the bucket. Am I doing anything wrong?

score 11 · Answer 1 · edited Jul 26 '19 at 06:36

11

By default, S3 buckets are configured to be 'orphaned' when a stack is deleted. Setting removalPolicy to Destroy will physically destroy the bucket on deletion.

edited Jul 26 '19 at 06:36

woodykiddy

6,074
16
59
100

answered Feb 05 '19 at 21:30

Debora Ito

111
2

Also refer to this doc: https://docs.aws.amazon.com/cdk/api/latest/docs/@aws-cdk_core.RemovalPolicy.html – woodykiddy Jul 26 '19 at 06:38
5

I think it will only delete if Destroy is set AND the bucket is empty – Tim Ker Aug 04 '19 at 04:27
1

Yes this setting will destroy the bucket, but ONLY if it is empty. A feature request for non empty buckets is being tracked here: https://github.com/aws/aws-cdk/issues/3297 – Keshav Potluri May 08 '20 at 19:02

score 2 · Answer 2 · answered Mar 29 '21 at 13:28

2

You can set destroy to removalPolicy, it will remove the bucket if it's empty: https://docs.aws.amazon.com/cdk/api/latest/docs/@aws-cdk_aws-s3.Bucket.html#removalpolicy

If you want to destroy even non-empty bucket, you should also set autoDeleteObjects property to true: https://docs.aws.amazon.com/cdk/api/latest/docs/@aws-cdk_aws-s3.Bucket.html#autodeleteobjects

answered Mar 29 '21 at 13:28

Rustem Zinnatullin

386
3
12

This is the correct answer for recent versions of CDK1 and 2 – Mark Feb 02 '22 at 15:30

score 1 · Answer 3 · answered Jan 28 '20 at 16:29

If you need to automatically destroy a bucket with files in it, check out this CDK construct: https://www.npmjs.com/package/@mobileposse/auto-delete-bucket

If you need to automatically destroy a bucket that is expected to be empty, use the standard bucket and set removalPolicy to DESTROY. https://docs.aws.amazon.com/cdk/api/latest/docs/@aws-cdk_aws-s3.Bucket.html#removalpolicy

score 1 · Answer 4 · answered Feb 07 '22 at 14:16

In my case the problem was, cdk was trying to fetch different accounts Credentials. Add the --verbose or -v flag to see if any exception is thrown internally.

It's a shame that the exception was not getting logged to stdout or stderr (as it should for any tool)

score 0 · Answer 5 · answered May 17 '21 at 08:47

In python, following the getting started, you can add removal_policy=cdk.RemovalPolicy.DESTROY parameter when instantiate the s3.Bucket object, so the bucket will be delete on cdk destroy.

from aws_cdk import core as cdk
from aws_cdk import aws_s3 as s3


class HelloCdkStack(cdk.Stack):

    def __init__(self, scope: cdk.Construct, construct_id: str, **kwargs) -> None:
        super().__init__(scope, construct_id, **kwargs)
        bucket = s3.Bucket(self,
                           "MyFirstBucket",
                           versioned=True,
                           removal_policy=cdk.RemovalPolicy.DESTROY)  # delete bucket on destroy

'cdk destroy' is not working as intended or I am not understanding it correctly?

5 Answers5