Search (SHIFT+S)
ECS Management API
ECS Object Service API
-
Amazon S3
- S3 Bucket
- S3 Bucket ACL
- S3 Bucket Cors
- S3 Bucket Is Stale Allowed
- S3 Bucket Lifecycle
- S3 Bucket List Uploads
- S3 Bucket Location
- S3 Bucket Policy
- S3 Bucket Versioning
- S3 Bucket Versions
- S3 Data Node
- S3 Metadata Key List
- S3 Metadata Key System List
- S3 Metadata Search
- S3 Multi Object Delete
- S3 Object
- S3 Object ACL
- S3 Object Init Uploads
- S3 Object Replication Info Operations
- S3 Object Tagging Operations
- S3 Object Uploads
- S3 Options
- S3 Ping
- S3 Retention Update Operation
- EMC Atmos
- OpenStack Swift
ECS API Changes
Set Bucket ACL
PUT /?acl
Sets the ACL of a bucket. The original ACL will be replaced.
This API enables you to set access permissions using one of the following methods:
Specify a canned ACL in the header
Specify the permission for each grantee explicitly in the header
Specify the ACL using the request body.
If the request body is used, request headers will be ignored. If individualized access permission headers are used, a canned ACL header cannot be used (it will be ignored). When using individualized access permission headers, the value consists of a comma-separated list of grantees. Each grantee can be specified using type=value pair, where type can be either:
id - Canonical user ID of an EMC ECS account
uri - Providing permissions to a predefined Amazon S3 Group
When specifying an ACL using the request body, the owner of the bucket can be changed.
Owner in the payload refers to the bucket owner.
URL Format
Host Style: http://bucketname.ns1.emc.com/?acl
Path Style: http://ns1.emc.com/bucketname?acl
Request Headers
| x-amz-acl | optional | Specify canned ACL to set the ACL of the bucket. Valid values: private, public-read, public-read-write, authenticated-read. Default value: private. |
| x-amz-grant-read | optional | Enables the grantee(s) to list objects in the bucket. |
| x-amz-grant-write | optional | Enables the grantee(s) to create, delete and overwrite any object in the bucket. |
| x-amz-grant-read-acp | optional | Enables the grantee(s) to read the ACL of the bucket. |
| x-amz-grant-write-acp | optional | Enables the grantee(s) to write or set the ACL for the bucket. |
| x-amz-grant-full-control | optional | Enables the grantee(s) read, write, READ_ACP and WRITE_ACP permissions on the bucket. |
| x-amz-date | optional | The timestamp of the request added by the requester. Example: Tue, 03 Sept 2013 12:00:00 GMT. If the Authorization header is specified, either the x-amz-date or the Date header must also be specified. If both the headers are specified, the value of the x-amz-date header is chosen. |
| Authorization | required | Information needed to authenticate requests. |
Prerequisites
The following conditions must be met in order to call this operation.
Only the owner of the bucket or a user having WRITE_ACP permission can set the ACL
BaseUrl used in a host-style request URL should be pre-configured using the ECS Management API or the ECS Portal (for example, emc.com in the URL: bucketname.ns1.emc.com).
Namespace corresponding to this bucket should exist (for example, ns1).
Request Payload
All parameters are required unless otherwise stated.
| Field | Description | Type | Notes |
| AccessControlPolicy | |||
| Owner | |||
| ID | The ID of the owner | String | |
| DisplayName | Screen name of the owner. | String | |
| AccessControlList | Contains information about Grant, Grantee and the Permission | ||
| Grant |
0-* Elements |
||
| Grantee | |||
| ID | Specifying permission for the user by ID | String | |
| Permission | Specifies the permission being given to the grantee |
Response Headers
| x-amz-request-id | optional | Request id |
| x-amz-id-2 | optional | Bucket identifier |
Response Body
Response indicating Success or Failure to set bucket ACL