-
Amazon S3
- S3 Bucket Acl Operations
- S3 Bucket Cors Operations
- S3 Bucket Is Stale Allowed Operations
- S3 Bucket Lifecycle Operation
- S3 Bucket List Uploads Operations
- S3 Bucket Location Operations
- S3 Bucket Operations
- S3 Bucket Versioning Operations
- S3 Bucket Versions Operations
- S3 Data Node Operation
- S3 Metadata Key List Operations
- S3 Metadata Key System List Operation
- S3 Metadata Search Operation
- S3 Multi Object Delete Operations
- S3 Object Acl Operations
- S3 Object Init Uploads Operations
- S3 Object Operations
- S3 Object Uploads Operations
- S3 Options Operations
- S3 Ping Operation
- EMC Atmos
- OpenStack SWIFT
Set Bucket ACL
Sets the ACL of a bucket. The original ACL will be replaced.
This API enables you to set access permissions using one of the following methods:
Specify a canned ACL in the header
Specify the permission for each grantee explicitly in the header
Specify the ACL using the request body.
If the request body is used, request headers will be ignored. If individualized access permission headers are used, a canned ACL header cannot be used (it will be ignored). When using individualized access permission headers, the value consists of a comma-separated list of grantees. Each grantee can be specified using type=value pair, where type can be either:
id - Canonical user ID of an EMC ECS account
uri - Providing permissions to a predefined Amazon S3 Group
When specifying an ACL using the request body, the owner of the bucket can be changed.
URL Format
Host Style: http://bucketname.ns1.emc.com/?acl
Path Style: http://ns1.emc.com/bucketname?acl
Request Headers
| x-amz-acl | optional | Specify canned ACL to set the ACL of the bucket. Valid values: private, public-read, public-read-write, authenticated-read. Default value: private. |
| x-amz-grant-read | optional | Enables the grantee(s) to list objects in the bucket. |
| x-amz-grant-write | optional | Enables the grantee(s) to create, delete and overwrite any object in the bucket. |
| x-amz-grant-read-acp | optional | Enables the grantee(s) to read the ACL of the bucket. |
| x-amz-grant-write-acp | optional | Enables the grantee(s) to write or set the ACL for the bucket. |
| x-amz-grant-full-control | optional | Enables the grantee(s) read, write, READ_ACP and WRITE_ACP permissions on the bucket. |
| x-amz-date | optional | The timestamp of the request added by the requester. Example: Tue, 03 Sept 2013 12:00:00 GMT. If the Authorization header is specified, either the x-amz-date or the Date header must also be specified. If both the headers are specified, the value of the x-amz-date header is chosen. |
| Authorization | required | Information needed to authenticate requests. |
Prerequisites
The following conditions must be met in order to call this operation.
Only the owner of the bucket or a user having WRITE_ACP permission can set the ACL
BaseUrl used in a host-style request URL should be pre-configured using the ECS Management API or the ECS Portal (for example, emc.com in the URL: bucketname.ns1.emc.com).
Namespace corresponding to this bucket should exist (for example, ns1).
Request Payload
All parameters are required unless otherwise stated.
| Field | Description | Type | Notes |
| <AccessControlPolicy> | |||
| <Owner> | |||
| <ID> | The ID of the bucket owner | String | |
| <DisplayName> | Screen name of the owner of the bucket. | String | |
| </Owner> | |||
| <AccessControlList> | Contains information about Grant, Grantee and the Permission | ||
| <Grant> |
0-* Elements |
||
| <Grantee> | Individual whose permissions are to be set. | ||
| <Permission> | Specifies the permission being given to the grantee | ||
| </Grant> | |||
| </AccessControlList> | |||
| </AccessControlPolicy> |
Response Headers
| x-amz-request-id | optional | Request id |
| x-amz-id-2 | optional | Bucket identifier |
Response Body
Response indicating Success or Failure to set bucket ACL