Difference between revisions of "Gsutil acl ch"
Jump to navigation
Jump to search
Line 4: | Line 4: | ||
== Entities == | == Entities == | ||
− | There are four different entity types: <code>[[Users]] (-u), [[Groups]] (-g), [[All Authenticated Users]]</code>, and <code>[[All Users]]</code>. | + | There are four different entity types: <code>[[Users]] (-u), [[Groups]] (-g), [[All Authenticated Users]] (AllAuthenticatedUsers or allauth)</code>, and <code>[[All Users]] (AllUsers or all)</code>. |
Notes: | Notes: | ||
* [[Service Accounts]] are considered to be users | * [[Service Accounts]] are considered to be users |
Revision as of 08:55, 3 August 2022
gsutil acl ch
Contents
Entities
There are four different entity types: Users (-u), Groups (-g), All Authenticated Users (AllAuthenticatedUsers or allauth)
, and All Users (AllUsers or all)
.
Notes:
- Service Accounts are considered to be users
- Permissions:
R, W, O
Options:
-R, -r
Performs "acl set" request recursively, to all objects under the specified URL.-d, -f, -g, -p, -u
Examples
gsutil acl ch -u AllUsers:R gs://example-bucket/example-object
Grant anyone on the internet WRITE access to the bucket example-bucket:
gsutil acl ch -u [email protected]:WRITE gs://example-bucket
Grant the group OWNER access to all jpg files in example-bucket:
gsutil acl ch -g [email protected]:O gs://example-bucket/**.jpg
Remove access to the bucket example-bucket for the viewers of project number 12345:
gsutil acl ch -d viewers-12345 gs://example-bucket
Grant all users from the G Suite domain my-domain.org READ access to the bucket gcs.my-domain.org:
gsutil acl ch -g my-domain.org:R gs://gcs.my-domain.org
Remove any current access by [email protected] from the bucket example-bucket:
gsutil acl ch -d [email protected] gs://example-bucket
Ch Roles
R: READ
W: WRITE
O: OWNER
See also
Advertising: