Application Example 2: Authorizing Access Permissions Required for Adding an External Bucket Through the Standard Bucket Policy

A standard bucket policy can be used to grant the read and write access to a bucket. The standard bucket policy grants the public read and write access to the bucket, that is, all users can access the bucket. Permissions controlled by a standard bucket policy are as follows:

Table 1 Permissions controlled by a standard bucket policy

Parameter

Public Read

Public Read and Write

Effect

Allow

Allow

Principal

* (Any user)

* (Any user)

Resources

* (All objects in a bucket)

* (All objects in a bucket)

Actions

  • GetObject

  • GetObjectVersion

  • ListBucket

  • GetObject

  • GetObjectVersion

  • PutObject

  • DeleteObject

  • DeleteObjectVersion

  • ListBucket

Conditions

N/A

N/A

Procedure

  1. Log in to OBS Console.

  2. In the bucket list, click the bucket you want to operate. The Overview page is displayed.

  3. In the navigation pane on the left, click Permissions to go to the permission management page.

  4. Select the Public Read and Write policy from the standard bucket policies that are pre-defined.

  5. In the dialog box that is displayed, click Yes.

Verification

  1. Log in to OBS Browser.

  2. Click Add Bucket on the upper left corner of the page. The Add Bucket dialog box is displayed.

  3. Select Add external bucket and enter the bucket name.

  4. Click OK. The external bucket is added successfully.

  5. Click the newly added external bucket to open the bucket.

  6. Click Upload Object, and objects can be successfully uploaded to the bucket.

  7. Select an object in the bucket and click Delete. The object can be deleted successfully.