Configuring a Custom Bucket Policy (Coding Mode)¶
You can configure a custom bucket policy by coding. The size of a custom bucket policy cannot exceed 20 KB.
Procedure¶
In the bucket list, click the bucket you want to operate. The Overview page is displayed.
In the navigation pane, choose Permissions.
On the Bucket Policies tab page, configure a custom bucket policy according to your needs.
On the right of Custom Bucket Policies, select Coding mode to configure the policy in the coding mode.
Edit the bucket policy. Below gives a bucket policy example in JSON:
{ "Statement":[ { "Action":[ "CreateBucket", "DeleteBucket" ], "Effect":"Allow", "Principal":{ "ID":[ "domain/account ID", "domain/account ID:user/User ID" ] }, "Condition":{ "NumericNotEquals":{ "Referer":"sdf" }, "StringNotLike":{ "Delimiter":"ouio" } }, "Resource":"000-02/key01" } ] }
Table 1 Parameters for creating a bucket policy in JSON¶ Parameter
Description
Action
Actions the bucket policy applies to. For details, see Actions.
Effect
Effect of the bucket policy. For details, see Effect.
Principal
Users the bucket policy is applied to. You can obtain the user ID on the My Credentials page by logging in to the console as the user to be authorized. Principals should be configured as follows:
domain/Account ID (indicating that the principal is an account)
domain/Account ID:user/User ID (indicating that the principal is a user under an account)
Note
Account ID is the Domain ID that you can find on the My Credentials page.
Condition
Conditions under which the bucket policy takes effect. For details, see Conditions.
Resource
Resources the bucket policy is applied to. For details, see Resources.
Click Save.