Jawei, Li 1a4c1a720a OBS s3api 2.0.38.SP5

Reviewed-by: Hasko, Vladimir <vladimir.hasko@t-systems.com>
Co-authored-by: Jawei, Li <lijiawei5@huawei.com>
Co-committed-by: Jawei, Li <lijiawei5@huawei.com>

2022-11-16 14:51:13 +00:00

986 B

Raw Permalink Blame History

Using ACL and Bucket Policy Simultaneously

If an ACL, roles, and a bucket policy are used at the same time and their authorization conflicts, the authorization priorities come as the bucket policy, roles, and the ACL.

If a bucket policy and an IAM policy are applied to an account together, an explicit deny overrides allows, and an allow overrides default denies.

Cross-tenant authorized access cannot be implemented for SSE-KMS-encrypted objects using the bucket ACL or policy.

Parent topic: Access Control

986 B Raw Permalink Blame History

Using ACL and Bucket Policy Simultaneously

986 B

Raw Permalink Blame History