FIPS is not supported for S3 Accesspoint

[trivikr]

Confirm by changing [ ] to [x] below to ensure that it's a bug:

• I've gone through Developer Guide and API reference
• I've checked AWS Forums and StackOverflow for answers
• I've searched for previous similar issues and didn't find any solution
• This is an issue with version 2.x of the SDK

Describe the bug
FIPS is not supported for S3 Accesspoint

Is the issue in the browser/Node.js?
All

If on Node.js, are you running this on AWS Lambda?
No

Details of the browser/Node.js version
All

SDK version number
aws-sdk@2.1027.0

To Reproduce (observed behavior)

• Create an access point for a test bucket.
• Run the below example code.
• Note that following error is thrown: InvalidConfiguration: ARN endpoint is not compatible with FIPS region

Code

import AWS from "aws-sdk";

// ARN for the accesspoint
const Bucket =
  "arn:aws:s3:us-west-2:123456789012:accesspoint/trivikr-accesspoint-testing";

const client = new AWS.S3({ region: "fips-us-west-2" });
await client.listObjects({ Bucket }).promise();

Expected behavior
The SDK should attempt calling {accesspoint-name}-{account-id}.s3-accesspoint[-fips][.dualstack].{region}.{partition}

The accesspoint provided in test case: arn:aws:s3:us-west-2:123456789012:accesspoint/trivikr-accesspoint-testing
The resulting endpoint should be: trivikr-accesspoint-testing-123456789012.s3-accesspoint-fips.us-west-2.amazonaws.com

[trivikr]

Equivalent AWS CLI code:

$ aws --version
aws-cli/2.3.6 Python/3.8.8 Darwin/20.6.0 exe/x86_64 prompt/off

$ aws s3api list-objects --bucket arn:aws:s3:us-west-2:123456789012:accesspoint/trivikr-accesspoint-testing --region fips-us-west-2 --debug 2>&1 | grep "urllib3.connectionpool"
2021-11-12 08:51:55,908 - MainThread - urllib3.connectionpool - DEBUG - Starting new HTTPS connection (1): trivikr-accesspoint-testing-123456789012.s3-accesspoint-fips.us-west-2.amazonaws.com:443
2021-11-12 08:51:56,025 - MainThread - urllib3.connectionpool - DEBUG - https://trivikr-accesspoint-testing-123456789012.s3-accesspoint-fips.us-west-2.amazonaws.com:443 "GET /?encoding-type=url HTTP/1.1" 403 None

[trivikr]

Verified that FIPS is supported for S3 Accesspoint in v3:

Code

import { S3 } from "@aws-sdk/client-s3";

const logHostnameMiddleware = (next) => async (args) => {
  console.log({ hostname: args.request.hostname });
  return next(args);
};
const logHostnameMiddlewareOptions = { step: "deserialize" };

// ARN for the accesspoint
const Bucket =
  "arn:aws:s3:us-west-2:123456789012:accesspoint/trivikr-accesspoint-testing";

const client = new S3({ region: "fips-us-west-2", logger: console });
client.middlewareStack.add(logHostnameMiddleware, logHostnameMiddlewareOptions);
await client.listObjects({ Bucket });

Output

{
  hostname: 'trivikr-accesspoint-testing-123456789012.s3-accesspoint-fips.us-west-2.amazonaws.com'
}