Granting an IAM User with the Operation Permissions for a Specified Bucket

Procedure

1. In the bucket list, click the bucket to be operated. The Overview page of the bucket is displayed.
2. In the navigation pane on the left, click Permissions to go to the permission management page.
3. Choose Bucket Policies > Custom Bucket Policies.
4. Click Create Bucket Policy. The Create Bucket Policy dialog box is displayed.
5. Set the following parameters to authorize the IAM user with the permission to access the bucket (listing objects in the bucket).

   Table 1 Parameters for authorizing the permission to access a specified bucket

   Parameter	Value
   Policy Mode	Customized
   Effect	Allow
   Principal	Include Cloud service user. Select the current account, and in the account, select the IAM user to be authorized.
   Resources	Include Leave it blank.
   Actions	Include ListBucket

6. Click OK.
7. Click Create Bucket Policy. The Create Bucket Policy dialog box is displayed.
8. Set the following parameters to authorize the IAM user with the permission to upload objects to the bucket.
   

   Before authorizing the IAM user with the permission to operate objects, ensure that the user has the permission to access the bucket.

   Table 2 Parameters for authorizing the permission to upload objects

   Parameter	Value
   Policy Mode	Customized
   Effect	Allow
   Principal	Include Cloud service user. Select the current account, and in the account, select the IAM user to be authorized.
   Resources	Include Resource name: *
   Actions	Include PutObject NOTE: In this example, only the permission to upload objects is granted. You can select multiple actions and granting other operation permissions to the IAM user The asterisk (*) indicates all operations. For details about the supported actions, see Actions.

9. Click OK.