Difference between revisions of "GCP Bucket permissions"
Jump to navigation
Jump to search
| Line 16: | Line 16: | ||
* <code>[[gcloud iam roles list]]</code> | * <code>[[gcloud iam roles list]]</code> | ||
* <code>[[Storage Admin]], [[Storage Object Admin]], [[Storage Object Admin]], [[Storage Object Viewer]]</code> | * <code>[[Storage Admin]], [[Storage Object Admin]], [[Storage Object Admin]], [[Storage Object Viewer]]</code> | ||
| − | + | * <code>[[storage.objects.list]]</code> | |
| − | + | * <code>[[storage.buckets.list]]</code> | |
| − | + | * <code>[[storage.objects.get]]</code> | |
== See also == | == See also == | ||
Latest revision as of 06:29, 20 September 2022
There are two modes of manage permissions for GCP buckets:
- Uniform bucket-level access
gsutil ubla - Fine-grained ACL based
gsutil defacl.
If Uniform access is enabled fine-grained ACL mode will be disabled.
- Uniform bucket-level access:
gsutil ubla - ACL:
gsutil defacl - To add conditions, switch the bucket from fine-grained to uniform bucket-level access control
Related[edit]
- Google Cloud Storage Bucket
gcloud iam roles listStorage Admin, Storage Object Admin, Storage Object Admin, Storage Object Viewerstorage.objects.liststorage.buckets.liststorage.objects.get
See also[edit]
gsutil ubla [ set | get ]gsutil[config | singurl | mb | iam | cp | ls | acl | defacl | ubla | du | cors | --help],$HOME/.boto, Cloud Shell- GCS, GCS Bucket, permissions, GCS Object versioning,
gsutil, Folder (Object Storage), GCS lifecycle,gcsfuse, Storage Admin
Advertising:
