Cloud File Storage
Last updated:2026-01-27 09:47:36
Fundamental information
| Product | Abbreviation in CAM | Console | Authorization by Tag | Authorization Granularity | IP Restriction |
|---|---|---|---|---|---|
| Cloud File Storage | cfs | Supported | Supported | Resource level | Partially supported |
Note:
The authorization granularity of cloud products is divided into three levels: service level, operation level, and resource level, based on the degree of granularity.
- Service level: It defines whether a user has the permission to access the service as a whole. A user can have either full access or no access to the service. For the authorization granularity of cloud products at service level, the authorization of specific APIs are not supported.
- Operation level: It defines whether a user has the permission to call a specific API of the service. For example, granting an account read-only access to the CVM service is an authorization at the operation level.
- Resource level: It is the finest authorization granularity which defines whether a user has the permission to access specific resources. For example, granting an account read/write access to a specific CVM instance is an authorization at the resource level.
API authorization granularity
Two authorization granularity levels of API are supported: resource level, and operation level.
- Resource level: It supports the authorization of a specific resource.
- Operation level: It does not support the authorization of a specific resource. If the policy syntax restricts a specific resource during authorization, CAM will determine that this API is not within the scope of authorization, and deem it as unauthorized.
Write operations
| API | API Description | Authorization Granularity | Six-segment Resource Description | IP Restriction |
|---|---|---|---|---|
| ActivateAccessCert | ActivateAccessCert | Operation level | * | Supported |
| AddMountTarget | Add a mount target | Resource level | qcs::cfs:$region:$account:filesystem/$fileSystemId | Supported |
| ApplyPathLifecyclePolicy | Configure the Lifecycle Policy Association directory | Operation level | * | Supported |
| BindAccessCert | BindAccessCert | Resource level | qcs::cfs::uin/${uin}:filesystem/${FileSystemId} | Supported |
| BindAutoSnapshotPolicy | bind auto policy | Resource level | qcs::cfs:${Region}:uin/:asp/${AutoSnapshotPolicyId} qcs::cfs:${Region}:uin/:filesystem/${FileSystemIds} |
Supported |
| CopyFileSystemSnapshotCrossRegion | Copy file system snapshot across regions | Resource level | qcs::cfs:${Region}:uin/:snap/${SnapshotId} | Supported |
| CreateAccessCert | CreateAccessCert | Operation level | * | Supported |
| CreateAcrossAvailableZoneCfsMigrate | Create Across Available Zone Migrate | Resource level | qcs::cfs::uin/:filesystem/${FileSystemId} | Supported |
| CreateAutoSnapshotPolicy | create auto policy | Resource level | qcs::cfs:${Region}:uin/:asp/* | Supported |
| CreateCfsFileSystem | Create a file system | Operation level | * | Supported |
| CreateCfsPGroup | CreateCfsPGroup | Operation level | * | Supported |
| CreateCfsPackageDetailDownloadTask | CreateCfsPackageDetailDownloadTask | Resource level | qcs::cfs:${Region}:uin/:resource/${ResourcePackageId} | Supported |
| CreateCfsRule | Create CFS Rule | Resource level | qcs::cfs:${Region}:uin/:pgroup/${PGroupId} | Supported |
| CreateCfsSnapshot | create cfs filesystem snapshot | Resource level | qcs::cfs:${region}:uin/${uin}:filesystem/${FileSystemId} | Supported |
| CreateDataFlow | Create data flow Task | Operation level | * | Supported |
| CreateLifecycleDataTask | Create a data management task | Operation level | * | Supported |
| CreateLifecyclePolicy | Create Lifecycle Policy | Operation level | * | Supported |
| CreateLifecyclePolicyDownloadTask | Create the download life cycle file list task | Operation level | * | Supported |
| CreateMigrationTask | create migration task | Operation level | * | Supported |
| DeactivateAccessCert | DeactivateAccessCert | Operation level | * | Supported |
| DeleteAccessCert | DeleteAccessCert | Operation level | * | Supported |
| DeleteAutoSnapshotPolicy | delete snapshot policy | Resource level | qcs::cfs:${Region}:uin/:asp/${AutoSnapshotPolicyId} | Supported |
| DeleteCfsFileSystem | DeleteCfsFileSystem | Resource level | qcs::cfs:${Region}:uin/:filesystem/${FileSystemId} | Supported |
| DeleteCfsPGroup | Delete Cfs Permission Group | Resource level | qcs::cfs:${Region}:uin/:pgroup/${PGroupId} | Supported |
| DeleteCfsRule | Delete Cfs Permission Group Rule | Resource level | qcs::cfs:${Region}:uin/:pgroup/${PGroupId} | Supported |
| DeleteCfsSnapshot | delete cfs filesystem snapshot | Resource level | qcs::cfs:${Region}:uin/:snap/${SnapshotId} | Supported |
| DeleteDataFlow | Delete data flow task | Operation level | * | Supported |
| DeleteLifecyclePolicy | delete cfs lifecycle rule | Operation level | * | Supported |
| DeleteMigrationTask | delete migration task | Operation level | * | Supported |
| DeleteMountTarget | Deletes a mount target | Resource level | qcs::cfs:$region:$account:filesystem/$fileSystemId | Supported |
| DeleteUserQuota | Delete the file system quota | Resource level | qcs::cfs::uin/${uin}:filesystem/${FileSystemId} | Supported |
| DoDirectoryOperation | Directory Operation Interface | Resource level | qcs::cfs:${Region}:uin/:filesystem/${FileSystemId} | Supported |
| DownloadAccessCert | DownloadAccessCert | Operation level | * | Supported |
| ModifyDataFlow | Modify parameters related to data flow. | Operation level | * | Supported |
| ModifyFileSystemAutoScaleUpRule | ModifyFileSystemAutoScaleUpRule | Resource level | qcs::cfs:${region}:uin/${uin}:filesystem/${FileSystemId} | Supported |
| ModifyFileSystemExtraPerformance | Modify FileSystem Extra Performance | Resource level | qcs::cfs::uin/${uin}:filesystem/${FileSystemId} | Supported |
| ModifyLifecyclePolicy | Update the lifecycle policy | Operation level | * | Supported |
| OverrideCfsRules | Overwrite a list of permission group rules | Resource level | qcs::cfs:$region:$account:pgroup/$pGroupId | Supported |
| ScaleUpFileSystem | ScaleUpFileSystem | Resource level | qcs::cfs:${region}:uin/${uin}:filesystem/${FileSystemId} | Supported |
| SetUserQuota | Set the file system quota | Resource level | qcs::cfs:${Region}:uin/:filesystem/${FileSystemId} | Supported |
| SignUpCfsService | Activate CFS Service | Operation level | * | Supported |
| StopLifecycleDataTask | Terminates a lifecycle task | Operation level | * | Supported |
| StopMigrationTask | stop migration task | Operation level | * | Supported |
| Transfer10FileSystem | Migrate file system | Operation level | * | not supported |
| UnbindAccessCert | UnbindAccessCert | Resource level | qcs::cfs::uin/${uin}:filesystem/${FileSystemId} | Supported |
| UnbindAutoSnapshotPolicy | unbind auto policy | Resource level | qcs::cfs:${Region}:uin/:asp/${AutoSnapshotPolicyId} qcs::cfs:${Region}:uin/:filesystem/${FileSystemIds} |
Supported |
| UpdateAccessCert | UpdateAccessCert | Operation level | * | Supported |
| UpdateAccessChannel | UpdateAccessChannel | Resource level | qcs::cfs::uin/${uin}:filesystem/${FileSystemId} | Supported |
| UpdateAutoSnapshotPolicy | update auto policy | Resource level | qcs::cfs:${Region}:uin/:asp/${AutoSnapshotPolicyId} | Supported |
| UpdateCfsFileSystemName | Update the file system name | Resource level | qcs::cfs:${Region}:uin/:filesystem/${FileSystemId} | Supported |
| UpdateCfsFileSystemPGroup | Update Cfs Filesystem Permission Group | Resource level | qcs::cfs:${Region}:uin/:filesystem/${FileSystemId} | Supported |
| UpdateCfsFileSystemSizeLimit | UpdateCfsFileSystemSizeLimit | Resource level | qcs::cfs:${Region}:uin/:filesystem/${FileSystemId} | Supported |
| UpdateCfsPGroup | Update permission group information | Resource level | qcs::cfs:${Region}:uin/:pgroup/${PGroupId} | Supported |
| UpdateCfsRule | Update CFS rule | Resource level | qcs::cfs:${Region}:uin/:pgroup/${PGroupId} | Supported |
| UpdateCfsSnapshotAttribute | update snapshot name or alive days | Resource level | qcs::cfs:${Region}:uin/:snap/${SnapshotId} | Supported |
| UpdateFileSystemBandwidthLimit | UpdateFileSystemBandwidthLimit | Operation level | * | Supported |
List Operations
| API | API Description | Authorization Granularity | Six-segment Resource Description | IP Restriction |
|---|---|---|---|---|
| DescribeAccessCerts | DescribeAccessCerts | Operation level | * | Supported |
| DescribeAutoSnapshotPolicies | describe snapshot policy | Operation level | * | Supported |
| DescribeCFSDeniedActions | Query the list of file system restriction operations | Operation level | * | not supported |
| DescribeCfsPackageDetailDownloadTask | DescribeCfsPackageDetailDownloadTask | Operation level | * | Supported |
| DescribeCfsResourcePackageList | DescribeCfsResourcePackageList | Resource level | qcs::cfs:${region}:uin/${uin}:resource/${ResourcePackageId} | Supported |
| DescribeCfsSnapshots | describe snapshots | Resource level | qcs::cfs::uin/${uin}:snap/${SnapshotId} | Supported |
| DescribeDataFlow | Query data flow information | Operation level | * | Supported |
| DescribeLifecycleDataTask | An interface for querying life cycle tasks | Operation level | * | Supported |
| DescribeUserQuota | Query the user quota | Resource level | qcs::cfs:${region}:uin/${uin}:filesystem/${FileSystemId} | Supported |
Read operations
| API | API Description | Authorization Granularity | Six-segment Resource Description | IP Restriction |
|---|---|---|---|---|
| DescribeAccessChannels | DescribeAccessChannels | Resource level | qcs::cfs:${Region}:uin/:filesystem/${FileSystemId} | Supported |
| DescribeAcrossAvailableZoneCfsMigrate | Describe Across Available Zone Migrate | Resource level | qcs::cfs::uin/:filesystem/${FileSystemId} | Supported |
| DescribeAvailableZoneInfo | Query area availability | Operation level | * | Supported |
| DescribeBucketList | describe buckets list | Operation level | * | Supported |
| DescribeCfsFileSystemClients | Queries clients of a file system | Resource level | qcs::cfs:$region:$account:filesystem/$fileSystemId | Supported |
| DescribeCfsFileSystems | Query the file system | Resource level | qcs::cfs::uin/${uin}:filesystem/${FileSystemId} | Supported |
| DescribeCfsFileSystemsStatistics | describe the count of all the region | Resource level | qcs::cfs::uin/${uin}:filesystem/${FileSystemId} | Supported |
| DescribeCfsPGroups | Query the list of permission groups | Operation level | * | Supported |
| DescribeCfsPrepayDeductionRules | Query file system prepaid resource bundle deduction rules | Operation level | * | Supported |
| DescribeCfsRules | Describe Cfs Permission Group Rules | Resource level | qcs::cfs:${Region}:uin/:pgroup/${PGroupId} | Supported |
| DescribeCfsServiceStatus | Query CFS service status | Operation level | * | Supported |
| DescribeCfsSnapshotOverview | An overview of file system snapshots | Operation level | * | Supported |
| DescribeKmsKeys | Queries the list of KMS keys | Operation level | * | Supported |
| DescribeLifecyclePolicies | describe cfs lifecycle | Operation level | * | Supported |
| DescribeMigratableCfsFileSystems | Query a portable file system | Operation level | * | not supported |
| DescribeMigrationTasks | describe migration tasks list | Operation level | * | Supported |
| DescribeMountTargets | Query the file system Mount Point | Resource level | qcs::cfs:${Region}:uin/:filesystem/${FileSystemId} | Supported |
| DescribeMountTargetsWithRegion | Query area Mount Point status | Operation level | * | Supported |
| DescribeSnapshotOperationLogs | get snapshot operation logs | Resource level | qcs::cfs:${Region}:uin/:snap/${SnapshotId} | Supported |
| DescribeStatistics | Query the file system statistics for each region | Operation level | * | Supported |
| DescribeVipStatus | Querying Vip availability status | Operation level | * | Supported |
Was this page helpful?
You can also Contact Sales or Submit a Ticket for help.
Yes
No
Feedback