pulumi-gcp-kotlin/com.pulumi.gcp.storage.kotlin/ObjectACL

ObjectACL

class ObjectACL : KotlinCustomResource

Authoritatively manages the access control list (ACL) for an object in a Google Cloud Storage (GCS) bucket. Removing a gcp.storage.ObjectACL sets the acl to the private predefined ACL. For more information see the official documentation and API.

Want fine-grained control over object ACLs? Use gcp.storage.ObjectAccessControl to control individual role entity pairs.

Example Usage

Create an object ACL with one owner and one reader.

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.gcp.storage.Bucket;
import com.pulumi.gcp.storage.BucketArgs;
import com.pulumi.gcp.storage.BucketObject;
import com.pulumi.gcp.storage.BucketObjectArgs;
import com.pulumi.gcp.storage.ObjectACL;
import com.pulumi.gcp.storage.ObjectACLArgs;
import com.pulumi.asset.FileAsset;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var image_store = new Bucket("image-store", BucketArgs.builder()
            .location("EU")
            .build());
        var image = new BucketObject("image", BucketObjectArgs.builder()
            .bucket(image_store.name())
            .source(new FileAsset("image1.jpg"))
            .build());
        var image_store_acl = new ObjectACL("image-store-acl", ObjectACLArgs.builder()
            .bucket(image_store.name())
            .object(image.outputName())
            .roleEntities(
                "OWNER:user-my.email@gmail.com",
                "READER:group-mygroup")
            .build());
    }
}