Contents:
Description
This API (GET Bucket policy) is used to read the permission policy of a Bucket.
Request
Request example:
GET /?policy HTTP/1.1
Host:<bucketname-APPID>.cos.<Region>.myqcloud.com
Date:date
Authorization: Auth StringAuthorization: Auth String (For more information, see Request Signature).
Request headers
Common headers
Common request headers are used for the implementation of this request operation. For more information, see Common Request Headers.
Special request headers
This request operation does not use any special request header.
Request body
The request body of this request is empty.
Response
Response headers
Common response headers
This response uses common response headers. For more information, see Common Response Headers.
Special response headers
This response does not use any special response header.
Response body
The permission policy is returned in the response body.
{
"Statement": [
{
"Principal": {
"qcs": [
"qcs::cam::uin/${owner_uin}:uin/${sub_uin}"
]
},
"Effect": "${effect}",
"Action": [
"name/cos:${action}"
],
"Resource": [
"qcs::cos:${region}:uid/${appid}:${bucket}/*"
]
}
],
"version": "2.0"
}Error codes
No special error message is returned for this request operation. For common error messages, see Error Codes.
Example
Request
GET /?policy HTTP/1.1
Host:examplebucket-1250000000.cos.ap-guangzhou.myqcloud.com
Authorization:q-sign-algorithm=sha1&q-ak=AKIDWtTCBYjM5OwLB9CAwA1Qb2ThTSUjfGFO&q-sign-time=1484814099;32557710099&q-key-time=1484814099;32557710099&q-header-list=host&q-url-param-list=policy&q-signature=0523d7c6305b6676611c44798d2c48b659e68869 Response
HTTP/1.1 200 OK
Content-Type: application/xml
Content-Length: 237
Connection: keep-alive
Date: Thu Jan 19 16:21:46 2017
Server: tencent-cos
x-cos-request-id: NTg4MDc3MWFfOWIxZjRlXzZmNDVfZTBl
{
"Statement": [
{
"Principal": {
"qcs": [
"qcs::cam::uin/909619481:uin/909619481"
]
},
"Effect": "allow",
"Action": [
"name/cos:GetBucket"
],
"Resource": [
"qcs::cos:ap-chengdu:uid/1252336075:aaa-1252336075/*"
]
}
],
"version": "2.0"
}