Relationship Between Bucket Policies and Bucket ACLs
Mapping Between Bucket ACLs and Bucket Policies
Bucket ACLs are used to control basic read and write access to buckets. Custom settings of bucket policies support more actions that can be performed on buckets. Bucket ACLs supplement bucket policies, and in many cases, can be replaced by bucket policies to manage access to buckets, except when permissions are granted to a log delivery user group. Table 1 shows the mapping between bucket ACL access permissions and bucket policy actions.
ACL Permission |
Option |
Mapped Action in a Custom Bucket Policy |
---|---|---|
Access to bucket |
Read |
|
Object read |
|
|
Write |
|
|
Access to ACL |
Read |
|
Write |
|
Mapping Between Object ACLs and Bucket Policies
Object ACLs are used to control basic read and write access to objects. The custom settings of bucket policies allow you to specify more actions that can be performed on objects. Table 2 describes the mapping between object ACL access permissions and bucket policy actions.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.