Spectra Logic
1-800-833-1132 : 1-303-449-6400


Access Control Operations : Access Control List Operations : Create Bucket ACL for a Group
Create Bucket ACL for a Group
Description
Create an ACL for a bucket, granting the specified permission to the specified group.
Notes:
 
§
Only administrators and users with OWNER access to the bucket are allowed to create an ACL for it.
§
A single operation can only grant one permission. To grant multiple permissions, submit the request multiple times with different permissions specified.
Requests
Syntax
POST http[s]://{datapathDNSname}/_rest_/bucket_acl?bucket_id={string}&group_id={string}&permission=LIST|READ|WRITE|DELETE|JOB|OWNER
Request Parameters 
Parameter
Description
Required
bucket_id
The UUID, name, or other unique attribute for the bucket.
yes
group_id
The UUID, name, or other unique attribute for the group to which you want to grant the specified permission.
yes
permission
The type of permission to grant to each user that is a member of the group.
§
LIST — The users in the group can see the bucket in a get buckets request and can list the objects in a bucket. The users can also perform any type of bucket or object get that does not involve returning the actual data for an object.
§
READ — The users can get objects and create GET jobs.
§
WRITE — The users can put objects and create PUT jobs.
§
DELETE — The users can delete objects, but cannot delete the bucket.
§
JOB — The group members can modify or cancel jobs that they did not create. The users can also see the details of jobs they did not create. Note that all users can view all jobs, but by default, only the initiator of the job can see the full details of a job.
§
OWNER — The users receives full access to the bucket, including all permissions listed above, and also receives permission to modify bucket ACLs for that bucket.
Values: LIST, READ, WRITE, DELETE, JOB, OWNER
yes
Responses
Response Elements
<Data>
   <BucketId>{string}</BucketId>
   <GroupId>{string}</GroupId>
   <Id>{string}</Id>
   <Permission>LIST|READ|WRITE|DELETE|JOB|OWNER</Permission>
   <UserId>{string}</UserId>
</Data>
where the response elements are defined as follows:
Parameter
Description
Data
The container for the response.
BucketId
The UUID for the bucket.
GroupId
The UUID for the group granted permission.
Id
The UUID for the ACL.
Permission
The permission granted by this ACL. See permission, above, for a description.
Values: LIST, READ, WRITE, DELETE, JOB, OWNER
UserId
Always null for this operation.
Example
Sample Request
This request creates an ACL for the group with the UUID 241e5aa4-e821-4a72-a8d7-bd4ee3ad80bb to be able to list objects in the bucket with the name “bucket1”.
POST http[s]://blackpearl-hostname/_rest_/bucket_acl?bucket_id=bucket1&group_id=241e5aa4-e821-4a72-a8d7-bd4ee3ad80bb&permission=list HTTP/1.1
Sample Response
HTTP/1.1 201 CREATED
<Data>
   <BucketId>49c78eaf-bd36-4d31-8561-cae9857954f4</BucketId>
   <GroupId>241e5aa4-e821-4a72-a8d7-bd4ee3ad80bb</GroupId>
   <Id>371c7ca9-a776-4b6a-810f-a1d8e074a915</Id>
   <Permission>LIST</Permission>
   <UserId/>
</Data>