Section 2: Controlling Access to Your Bucket
2.1 Public Access Control
- Select your bucket
- Click on permissions
- As you can see by default Access control is Uniform and it is recommended to use Uniform access control rather than Fine grained
|
Access Control: Uniform |
Access Control: Fine grained |
|---|---|
|
Lower chances of Data exposure |
Higher chances of data exposure |
|
Adding permissions at bucket level ensures that two users in different objects cannot see each others files. |
You have to set permissions at object level also and if not done properly two users in different objects might be able to see each others files. |
2.2. Fine-Grained Access Control
In Google Cloud Storage, you can use both Identity and Access Management (IAM) permissions and Access Control Lists (ACLs) to control access to your buckets and objects. These mechanisms provide fine-grained control over who can access and perform actions on the resources in your bucket.
Working with Google Cloud Storage Buckets: Permissions and Access Control
Google Cloud storage bucket is a fundamental resource in the Google cloud platform(GCP) used for storing and managing objects or files including photos, videos, documents, application files, and more. It can store small amounts of data in very large files. It is secure and you have access to decide who can see and manage your data. It is cost-effective and only charges you for the amount of storage you use.