Configuring a Policy for a Custom OBS Private Bucket
If you use a custom OBS private bucket as the CDN origin server, that is, use an OBS private bucket under another account as the origin server, you need to configure a policy for the private bucket on OBS Console.
Procedure
- In the navigation pane of OBS Console, choose Object Storage.
- In the bucket list, click the name of the bucket to be operated.
- In the navigation pane, choose .
- Click Create Bucket Policy.
- In the first row of the template list, click Create Custom Policy on the right.
- Policy View: Select Visual editor.
- Policy Name: Enter a name.
- Policy Content: Select Allow.
- Configure authorized users.
- Principal: Select Other account.
- Account ID: Enter the ID of the account that uses CDN acceleration.
- IAM User ID: Enter the ID of an IAM user under another account if you only want to grant permissions to this IAM user. If no IAM user is configured, enter *.
- User Policy: Select Include specified users.
- Configure resources.
- Resource: Select the current bucket or objects in the bucket.
- Configure actions.
- Select the action to be authorized. The asterisk (*) indicates all actions.
- On the Confirm Policy page, click Create.
- Click the edit icon on the right of the created bucket policy and click the JSON tab.
- Change domain/Account ID:user/User ID in Policy Content to domain/Account ID:agency/*.
- Click Next and then Yes to complete the configuration.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.