安全
如果多个Bucket 使用一个AccessKey,这样就暴漏了安全痛点,万一谁手欠来个一键乱搞,那就真的懵逼了。
配置
- 新建独立子账号保存AccessKey备用
授权Bucket
新建权限策略
- 内容【dev-zhaopai-admin是Bucket的名称】
{ "Version": "1", "Statement": [ { "Effect": "Allow", "Action": [ "oss:ListBuckets", "oss:GetBucketStat", "oss:GetBucketInfo" ], "Resource": "acs:oss:*:*:*" }, { "Effect": "Allow", "Action": [ "oss:ListObjects", "oss:GetBucketAcl", "oss:PutBucketAcl" ], "Resource": "acs:oss:*:*:dev-zhaopai-admin" }, { "Effect": "Allow", "Action": [ "oss:ListObjects", "oss:GetObject", "oss:GetObjectAcl", "oss:DeleteObject", "oss:DeleteObjectAcl", "oss:PutObject", "oss:PutObjectAcl" ], "Resource": "acs:oss:*:*:dev-zhaopai-admin/*" } ] }
-
- 权限加入到这个子账号下
- 我的QQ
- QQ扫一扫
-
- 我的头条
- 头条扫一扫
-
评论