是否可以在Google Cloud Console中仅对帐户设置storage.buckets.get权限? [英] Is it possible set only the storage.buckets.get permission on a account within the Google Cloud Console?
问题描述
如何为用户设置此权限?我只看到提供storage.buckets.*
的相关Storage > Storage admin
,但是我不希望该用户帐户具有如此广泛的权限.
How can I set this permission for a user? I only see a relevant Storage > Storage admin
which provides storage.buckets.*
, however I don't want this user account to have such broad permissions.
我已经从此页面确定了以上信息: https://cloud.google.com/storage/docs/access-control/iam-roles
I have determined the above information from this page: https://cloud.google.com/storage/docs/access-control/iam-roles
我希望用户对存储桶具有只读权限.
I would like a user to have read only permissions to a bucket.
推荐答案
You can use ACLs over objects and buckets. You can give "READER" permission for a particular user on bucket level. By giving this, the user can only read and download the object’s data.
第二种方法是为用户提供旧版存储区IAM角色.您可以赋予"Storage Legacy Bucket Reader"角色,该角色还为用户提供只读"选项.有关此角色的更多详细信息,请参见以下
A second approach is to give the user a Legacy Bucket IAM roles. You can give "Storage Legacy Bucket Reader " role, which also gives the user ‘read only’ option. More details regarding this role can be found in this help center article.
这篇关于是否可以在Google Cloud Console中仅对帐户设置storage.buckets.get权限?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!