Production sanity test to verify that S3 buckets remain private over time

private_buckets_test.rb

  def buckets
    [
      'myapp-production-backups',
      'myapp-staging-backups',
      'myapp-s3-logs'
    ]
  end

  def test_buckets_subdomain_private
    buckets.each do |bucket_name|
      subdomain_url = "http://#{bucket_name}.s3.amazonaws.com/"
      assert_includes(`curl --silent --location #{subdomain_url}`, 'AccessDenied')
    end
  end