OBS Bucket Policies Only Allow Access from the Specified Objects
Rule Details
Parameter |
Description |
---|---|
Rule Name |
obs-bucket-policy-grantee-check |
Identifier |
obs-bucket-policy-grantee-check |
Description |
If an OBS bucket has a policy that allows access from an object that is not within the specified scope, this bucket is noncompliant. |
Tag |
obs, access-analyzer-verified |
Trigger Type |
Configuration change |
Filter Type |
obs.buckets |
Configure Rule Parameters |
Note: The format of the preceding fields must be the same as that of principal or condition in the OBS bucket policy. |
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot