Setting Folder Permissions
Last updated:2024-06-03 11:14:27
Overview
You can set access permissions for folders through the Cloud Object Storage (COS) console, allowing users to perform specified operations on them. We recommend that you follow the principle of least privilege when configuring permissions to protect your data assets.
Note:
COS stores objects in a flat structure with no traditional folder concept. In order to make COS customary, we turn an object into a "folder" by suffixing it with
/ in its key. In fact, a "folder" in COS is an object with a storage capacity of 0 KB.Folder permissions are essentially access permissions at the object level, which take precedence over the bucket access permissions. Unlike object access permissions, folders support setting public read and write. For more information about object access permissions, refer to Access Permission Types in the object overview.
Directions
1. Log in to the COS console.
2. In the left sidebar, click Bucket List to go to the bucket list page.
3. Locate the bucket where the folder is located and click the bucket name to go to the bucket management page.
4. In the left sidebar, choose File List to go to the file list page.
5. Locate the folder for permission setting, and click Permission.
6. In the pop-up window, set folder permissions as required.Permission settings are described as follows:
Permission Type | Parameter | Description |
Public permission | Inherit | Default value, consistent with the bucket permission. |
| Private Read/Write | Only the root account has the read and write permissions on the folder. Non-root accounts (sub-accounts, the root accounts of other users, or anonymous users) cannot access the folder. |
| Public Read/Private Write | The root account has the read and write permissions on the folder. Non-root accounts (sub-accounts, the root accounts of other users, or anonymous users) can read content in the folder but cannot write new data into the folder. |
| Public Read/Write | Both the root account and non-root accounts (sub-accounts, the root accounts of other users, or anonymous users) have the read and write permissions on the folder. |
User ACL | User Type | `Root account` indicates the root account of other users. `Sub-account` indicates the sub-account under the current root account.To grant the access permission to a sub-account of another root account, you need to grant the access permission to that root account first and then grant the access permission to the sub-account from that root account. |
| Read | Permission to read data |
| Write | Permission to write data |
| Read ACL | Permission to read folder permission configuration. With this permission, you can obtain folder permission configuration details. |
| Write ACL | Permission to modify folder permission configuration. With this permission, you can modify folder permission configuration details. Exercise caution with this configuration because it will cause permission changes. |
| Full control | Includes the Reads, Write, Read ACL, and Write ACL permissions. Exercise caution with this configuration because it grants a wide range of permissions. |
7. Click Save in the Operation column.
8. Click Close.
Was this page helpful?
You can also Contact Sales or Submit a Ticket for help.
Yes
No
Feedback