vpruthi/doc-exports
1
0
Fork 0
forked from docs/doc-exports
Code Pull Requests Activity
doc-exports/docs/obs/perms-cfg/obs_40_0043.html
zhangyue 2c8baf104e OBS PERM DOC 
Reviewed-by: Sabelnikov, Dmitriy <dmitriy.sabelnikov@t-systems.com>
Co-authored-by: zhangyue <zhangyue164@huawei.com>
Co-committed-by: zhangyue <zhangyue164@huawei.com>
2024-10-29 16:45:36 +00:00

82 lines
6.8 KiB
HTML
Raw Blame History

<a name="obs_40_0043"></a><a name="obs_40_0043"></a>
<h1 class="topictitle1">Relationship Between Bucket ACLs and Bucket Policies</h1>
<div id="body0000001110930532"><div class="section" id="obs_40_0043__section9370125413594"><h4 class="sectiontitle">Mapping Between Bucket ACLs and Bucket Policies</h4><p id="obs_40_0043__p14426115413593">Bucket ACLs control read and write permissions on buckets. Custom bucket policies can control more actions on buckets. Bucket ACLs are a supplement to bucket policies, but are usually replaced with bucket policies. <a href="#obs_40_0043__table183716545593">Table 1</a> shows the mapping between bucket ACL permissions and actions in a custom bucket policy.</p>
<div class="tablenoborder"><a name="obs_40_0043__table183716545593"></a><a name="table183716545593"></a><table cellpadding="4" cellspacing="0" summary="" id="obs_40_0043__table183716545593" frame="border" border="1" rules="all"><caption><b>Table 1 </b>Mapping between bucket ACLs and bucket policies</caption><thead align="left"><tr id="obs_40_0043__row10426205416593"><th align="left" class="cellrowborder" valign="top" width="19.191919191919194%" id="mcps1.3.1.3.2.4.1.1"><p id="obs_40_0043__p6426165418599">ACL Permission</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="14.141414141414144%" id="mcps1.3.1.3.2.4.1.2"><p id="obs_40_0043__p1842615544595">Option</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="66.66666666666667%" id="mcps1.3.1.3.2.4.1.3"><p id="obs_40_0043__p8428125435912">Mapped Action in a Custom Bucket Policy</p>
</th>
</tr>
</thead>
<tbody><tr id="obs_40_0043__row942885416596"><td class="cellrowborder" rowspan="2" valign="top" width="19.191919191919194%" headers="mcps1.3.1.3.2.4.1.1 "><p id="obs_40_0043__p184281354195919">Access to bucket</p>
</td>
<td class="cellrowborder" valign="top" width="14.141414141414144%" headers="mcps1.3.1.3.2.4.1.2 "><p id="obs_40_0043__p54287547598">Read</p>
</td>
<td class="cellrowborder" valign="top" width="66.66666666666667%" headers="mcps1.3.1.3.2.4.1.3 "><ul id="obs_40_0043__ul1242814546590"><li id="obs_40_0043__li1142835417597">HeadBucket</li><li id="obs_40_0043__li1842855455919">ListBucket</li><li id="obs_40_0043__li12428145410594">ListBucketVersions</li><li id="obs_40_0043__li14288542599">ListBucketMultipartUploads</li></ul>
</td>
</tr>
<tr id="obs_40_0043__row1242885414593"><td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.4.1.1 "><p id="obs_40_0043__p134281454115913">Write</p>
</td>
<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.4.1.2 "><ul id="obs_40_0043__ul84281154125913"><li id="obs_40_0043__li164281754155919">PutObject</li><li id="obs_40_0043__li10428195455914">DeleteObject</li><li id="obs_40_0043__li11428195465918">DeleteObjectVersion</li></ul>
</td>
</tr>
<tr id="obs_40_0043__row17428135413591"><td class="cellrowborder" rowspan="2" valign="top" width="19.191919191919194%" headers="mcps1.3.1.3.2.4.1.1 "><p id="obs_40_0043__p174281154105920">Access to ACL</p>
</td>
<td class="cellrowborder" valign="top" width="14.141414141414144%" headers="mcps1.3.1.3.2.4.1.2 "><p id="obs_40_0043__p1142885415597">Read</p>
</td>
<td class="cellrowborder" valign="top" width="66.66666666666667%" headers="mcps1.3.1.3.2.4.1.3 "><ul id="obs_40_0043__ul1438754418326"><li id="obs_40_0043__li143871444113218">GetBucketAcl</li></ul>
</td>
</tr>
<tr id="obs_40_0043__row15428654125911"><td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.4.1.1 "><p id="obs_40_0043__p1742825465912">Write</p>
</td>
<td class="cellrowborder" valign="top" headers="mcps1.3.1.3.2.4.1.2 "><ul id="obs_40_0043__ul5622846163210"><li id="obs_40_0043__li9622164653220">PutBucketAcl</li></ul>
</td>
</tr>
</tbody>
</table>
</div>
</div>
<div class="section" id="obs_40_0043__section816016146119"><h4 class="sectiontitle">Mapping Between Object ACLs and Bucket Policies</h4><p id="obs_40_0043__p12246714410">Object ACLs are used to control basic read and write access to objects. The custom settings of bucket policies allow you to specify more actions that can be performed on objects. <a href="#obs_40_0043__table4160714016">Table 2</a> describes the mapping between object ACL access permissions and bucket policy actions.</p>
<div class="tablenoborder"><a name="obs_40_0043__table4160714016"></a><a name="table4160714016"></a><table cellpadding="4" cellspacing="0" summary="" id="obs_40_0043__table4160714016" frame="border" border="1" rules="all"><caption><b>Table 2 </b>Mapping between object ACLs and bucket policies</caption><thead align="left"><tr id="obs_40_0043__row122474141815"><th align="left" class="cellrowborder" valign="top" width="19.388061193880613%" id="mcps1.3.2.3.2.4.1.1"><p id="obs_40_0043__p92471614310">Object ACL Permission</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="14.288571142885711%" id="mcps1.3.2.3.2.4.1.2"><p id="obs_40_0043__p1024713142118">Option</p>
</th>
<th align="left" class="cellrowborder" valign="top" width="66.32336766323368%" id="mcps1.3.2.3.2.4.1.3"><p id="obs_40_0043__p62479146116">Mapped Action in a Custom Bucket Policy</p>
</th>
</tr>
</thead>
<tbody><tr id="obs_40_0043__row1724718148112"><td class="cellrowborder" valign="top" width="19.388061193880613%" headers="mcps1.3.2.3.2.4.1.1 "><p id="obs_40_0043__p102479141019">Access to object</p>
</td>
<td class="cellrowborder" valign="top" width="14.288571142885711%" headers="mcps1.3.2.3.2.4.1.2 "><p id="obs_40_0043__p724781411118">Read</p>
</td>
<td class="cellrowborder" valign="top" width="66.32336766323368%" headers="mcps1.3.2.3.2.4.1.3 "><ul id="obs_40_0043__ul1424715141914"><li id="obs_40_0043__li024718141315">GetObject</li><li id="obs_40_0043__li124714141717">GetObjectVersion</li></ul>
</td>
</tr>
<tr id="obs_40_0043__row12247101419112"><td class="cellrowborder" rowspan="2" valign="top" width="19.388061193880613%" headers="mcps1.3.2.3.2.4.1.1 "><p id="obs_40_0043__p62471514814">Access to ACL</p>
</td>
<td class="cellrowborder" valign="top" width="14.288571142885711%" headers="mcps1.3.2.3.2.4.1.2 "><p id="obs_40_0043__p72471314311">Read</p>
</td>
<td class="cellrowborder" valign="top" width="66.32336766323368%" headers="mcps1.3.2.3.2.4.1.3 "><ul id="obs_40_0043__ul324718149119"><li id="obs_40_0043__li1424781415111">GetObjectAcl</li><li id="obs_40_0043__li1924720141114">GetObjectVersionAcl</li></ul>
</td>
</tr>
<tr id="obs_40_0043__row122478141116"><td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.4.1.1 "><p id="obs_40_0043__p8247614513">Write</p>
</td>
<td class="cellrowborder" valign="top" headers="mcps1.3.2.3.2.4.1.2 "><ul id="obs_40_0043__ul122471014113"><li id="obs_40_0043__li824731412119">PutObjectAcl</li><li id="obs_40_0043__li15247014015">PutObjectVersionAcl</li></ul>
</td>
</tr>
</tbody>
</table>
</div>
</div>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="obs_40_0042.html">Appendix</a></div>
</div>
</div>
View Git Blame Copy Permalink