public enum CannedAccessControlList extends Enum<CannedAccessControlList>
Canned access control lists are commonly used access control lists (ACL) that can be
used as a shortcut when applying an access control list to Amazon S3 buckets
and objects. Only a few commonly used configurations are available, but they
offer an alternative to manually creating a custom ACL. If more specific
access control is desired, users can create a custom AccessControlList
.
AccessControlList
Enum Constant and Description |
---|
AuthenticatedRead
Specifies the owner is granted
Permission.FullControl and the
GroupGrantee.AuthenticatedUsers group grantee is granted
Permission.Read access. |
AwsExecRead
Specifies the owner is granted
Permission.FullControl . |
BucketOwnerFullControl
Specifies the owner of the bucket, but not necessarily the same as the owner of the
object, is granted
Permission.FullControl . |
BucketOwnerRead
Specifies the owner of the bucket, but not necessarily the same as the owner of the
object, is granted
Permission.Read . |
LogDeliveryWrite
Specifies the owner is granted
Permission.FullControl and the
GroupGrantee.LogDelivery group grantee is granted
Permission.Write access so that access logs can be delivered. |
Private
Specifies the owner is granted
Permission.FullControl . |
PublicRead
Specifies the owner is granted
Permission.FullControl and the
GroupGrantee.AllUsers group grantee is granted
Permission.Read access. |
PublicReadWrite
Specifies the owner is granted
Permission.FullControl and the
GroupGrantee.AllUsers group grantee is granted
Permission.Read and Permission.Write access. |
Modifier and Type | Method and Description |
---|---|
String |
toString()
Returns the Amazon S3 x-amz-acl header value for this canned acl.
|
static CannedAccessControlList |
valueOf(String name)
Returns the enum constant of this type with the specified name.
|
static CannedAccessControlList[] |
values()
Returns an array containing the constants of this enum type, in
the order they are declared.
|
public static final CannedAccessControlList Private
Permission.FullControl
. No one else has access rights.
This is the default access control policy for any new buckets or objects.
public static final CannedAccessControlList PublicRead
Permission.FullControl
and the
GroupGrantee.AllUsers
group grantee is granted
Permission.Read
access.
If this policy is used on an object, it can be read from a browser without authentication.
public static final CannedAccessControlList PublicReadWrite
Permission.FullControl
and the
GroupGrantee.AllUsers
group grantee is granted
Permission.Read
and Permission.Write
access.
This access policy is not recommended for general use.
public static final CannedAccessControlList AuthenticatedRead
Permission.FullControl
and the
GroupGrantee.AuthenticatedUsers
group grantee is granted
Permission.Read
access.public static final CannedAccessControlList LogDeliveryWrite
Permission.FullControl
and the
GroupGrantee.LogDelivery
group grantee is granted
Permission.Write
access so that access logs can be delivered.
Use this access policy to enable Amazon S3 bucket logging for a bucket. The destination bucket requires these permissions so that access logs can be delivered.
public static final CannedAccessControlList BucketOwnerRead
Permission.Read
.
Use this access policy when uploading objects to another owner's bucket. This access policy grants the bucket owner read access to the object, but does not give read access for all users.
public static final CannedAccessControlList BucketOwnerFullControl
Permission.FullControl
.
Use this access policy to upload objects to another owner's bucket. This access policy grants the bucket owner full access to the object, but does not give full access to all users.
public static final CannedAccessControlList AwsExecRead
Permission.FullControl
. Amazon EC2
is granted Permission.Read
access to GET an Amazon Machine Image
(AMI) bundle from Amazon S3.public static CannedAccessControlList[] values()
for (CannedAccessControlList c : CannedAccessControlList.values()) System.out.println(c);
public static CannedAccessControlList valueOf(String name)
name
- the name of the enum constant to be returned.IllegalArgumentException
- if this enum type has no constant with the specified nameNullPointerException
- if the argument is nullpublic String toString()
toString
in class Enum<CannedAccessControlList>