No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search


To have a better experience, please upgrade your IE browser.


OceanStor 9000 V300R006C00 Object Storage Service (Compatible with Amazon S3 APIs) Administrator Guide 07

Rate and give feedback :
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Using ACL, Bucket Policy and IAM Policy Together

Using ACL, Bucket Policy and IAM Policy Together

When the ACL, bucket policy, and IAM policy are used together, permission takes effect according to certain rules.

There are no priorities among the ACL, bucket policy, and IAM policy. However, the rule of explicit deny > allow is followed when whether permission takes effect is determined.

  • If an ACL and a bucket policy are applied together to an account, and the authorization results of the ACL and bucket policy are allow and explicit deny respectively, then the final authorization result is explicit deny.
  • If a bucket policy and an IAM policy are applied together to an account, an explicit deny overrides allows, and an allow overrides default denies.
Updated: 2019-04-28

Document ID: EDOC1000122523

Views: 12756

Downloads: 84

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Previous Next