How to restrict access to a bucket for a user

Case descriptionCase description

You need to restrict access to the bucket for another user or a service account.

SolutionSolution

The storage.viewer, storage.configViewer, storage.configurer, storage.editor, and storage.admin service roles provide users with different privileges and access permissions for buckets:

• The storage.viewer, storage.editor, and storage.admin roles allow users to view or edit files in buckets.
• The storage.configViewer role allows users to view security settings of buckets and their objects but does not allow access to those objects.
• The storage.configurer role allows users to change these settings.

For more info on service roles in Object Storage, see this section.

You can configure bucket access using ACL by revoking service roles from specific users, or set up individual bucket policies. For more details, see this guide.