Help Center

Zettabyte Object Storage

Product Introduction
Billing Description
FAQs
Console Guide
Quit Start
User Guide
Best Practice
Related Agreements

Bucket Policy

2025-07-08 09:26:18

This article helps you understand bucket policies in object storage and the related operation steps. 

A bucket policy controls access to a bucket, enabling the owner to grant specific permissions to other users, and flexibly define and manage access permissions to the bucket.

Constraints and Restrictions

Trial is available. Please submit a ticket to request access.

Bucket Policy (Basic Version) Operation Steps

1. On the eSurfing Cloud homepage, click Console and log in with your username and password. 

2. In the Console, click  at the top and select a region, e.g., East China-East China 1. 

3. From the Console homepage, select Storage > ZOS. 

4. In the ZOS Console, click the Bucket name to navigate to the Overview page. 

5. Navigate to the Permission Management page, find Bucket Policy, and click Set.

6. In the Bucket Policy Settings page, click Create Policy, and complete the parameter settings as prompted.

Parameter

Description

Authorized Account Type

Defaults to the user’s email.

Authorized Account

Only one account can be entered. Wildcards (*) are supported, which apply to all registered and anonymous users. This is a mandatory field.

Authorization Policy

Options: Bucket-Read-only (default), Bucket-Read-write, Full Control, Access Deny, Custom Configuration (single-choice and mandatory). When Custom Permission is selected, the following fields must be completed: Authorization Scope, Effect, Authorized Operation, and Condition.

Authorization Resources

Enter the objects or object sets to which the bucket policy applies. Wildcards (*) are supported. If only a wildcard (*) is entered, the policy applies to the entire bucket.

Authorization Scope

When Custom Permission is selected, you must define the Authorization Scope. You can either specify objects within the bucket or apply the policy to the entire bucket. This field is mandatory.

Effect

When Custom Permission is selected, you must select the Effect. You can select either Allow or Deny, and this is a mandatory field.

Authorized Operation

When Custom Permission is selected, you must select the Authorized Operation. This field is mandatory and you can select multiple actions.

Condition

When Custom Permission is selected, you can configure Condition (optional) and up to 20 conditions can be added.

7. After configuration, click Confirm to successfully create the bucket policy.


The previous article -  ACL of Buckets
The next article -  Data Management
JLzXSMRbtWzf