tencent cloud

Feedback

Setting Folder Permissions

Last updated: 2024-06-03 11:14:27

    Overview

    You can set access permissions for folders through the Cloud Object Storage (COS) console, allowing users to perform specified operations on them. We recommend that you follow the principle of least privilege when configuring permissions to protect your data assets.
    Note:
    COS stores objects in a flat structure with no traditional folder concept. In order to make COS customary, we turn an object into a "folder" by suffixing it with / in its key. In fact, a "folder" in COS is an object with a storage capacity of 0 KB.
    Folder permissions are essentially access permissions at the object level, which take precedence over the bucket access permissions. Unlike object access permissions, folders support setting public read and write. For more information about object access permissions, refer to Access Permission Types in the object overview.

    Directions

    1. Log in to the COS console.
    2. In the left sidebar, click Bucket List to go to the bucket list page.
    3. Locate the bucket where the folder is located and click the bucket name to go to the bucket management page.
    4. In the left sidebar, choose File List to go to the file list page.
    5. Locate the folder for permission setting, and click Permission.
    6. In the pop-up window, set folder permissions as required.Permission settings are described as follows:
    Permission Type
    Parameter
    Description
    Public permission
    Inherit
    Default value, consistent with the bucket permission.
    Private Read/Write
    Only the root account has the read and write permissions on the folder. Non-root accounts (sub-accounts, the root accounts of other users, or anonymous users) cannot access the folder.
    Public Read/Private Write
    The root account has the read and write permissions on the folder. Non-root accounts (sub-accounts, the root accounts of other users, or anonymous users) can read content in the folder but cannot write new data into the folder.
    Public Read/Write
    Both the root account and non-root accounts (sub-accounts, the root accounts of other users, or anonymous users) have the read and write permissions on the folder.
    User ACL
    User Type
    `Root account` indicates the root account of other users. `Sub-account` indicates the sub-account under the current root account.To grant the access permission to a sub-account of another root account, you need to grant the access permission to that root account first and then grant the access permission to the sub-account from that root account.
    Read
    Permission to read data
    Write
    Permission to write data
    Read ACL
    Permission to read folder permission configuration. With this permission, you can obtain folder permission configuration details.
    Write ACL
    Permission to modify folder permission configuration. With this permission, you can modify folder permission configuration details. Exercise caution with this configuration because it will cause permission changes.
    Full control
    Includes the Reads, Write, Read ACL, and Write ACL permissions. Exercise caution with this configuration because it grants a wide range of permissions.
    7. Click Save in the Operation column.
    8. Click Close.
    Contact Us

    Contact our sales team or business advisors to help your business.

    Technical Support

    Open a ticket if you're looking for further assistance. Our Ticket is 7x24 avaliable.

    7x24 Phone Support