You can share objects with specific users, or with all users within your tenant organization. You can also make objects public and share objects over the Internet.
You can share one object at a time. To share an object, you edit the access permissions of the object by using the built-in canned access control lists, or by creating a custom access control list.
If versioning is active for the bucket in which the object that you want to share resides, you can share a specific version of the object.
Before you share an object, you must verify that you have the required set of rights.
| If you are an ... | You can ... |
|---|---|
| organization administrator | share objects that users in your organization own. |
| organization user | you can share objects, if you are the owner of the object, or the owner must assign either Full Control, or Read of ACL and Write of ACL permissions on the object. |
Share an Object by Using a Canned Access Control List
Canned access control lists are predefined, built-in access control lists that you can use to share objects within your organization or publicly over the Internet.
Procedure
- Log in to the VMware Cloud Director tenant portal.
- From the More drop-down menu, select Object Storage.
- In the Buckets pane, navigate to the bucket or folder in which the object that you want to share resides.
- If you want to share a specific version of the object, display all versions of the object by using the Show Versions toggle button.
- Click the name of the object or the object version that you want to share.
- On the Permissions tab, click Set Canned ACL.
- Select a canned access control list name for the object and click Set ACL.
Option Description Private Only the object owner and the organization administrator can access the object. Public Read Grants read permissions on the object to all users and makes the object public. Public Read/Write Grants Read and Write permissions on the object to all users. Authenticated Users Read Grants Read permissions to all authenticated VMware Cloud Director users. Bucket Owner Read Grants Read permissions on the object to the bucket owner. Bucket Owner Full-Control Grants Full Control permissions on the object to the bucket owner. Tenant Read Grants Read permissions on the object to all users that belong to the tenant organization. If you use AWS S3, this option is not available.
Share an Object by Using a Custom Access Control List
To share an object with specific users within or outside of your organization, you can create a custom access control list for the object that you want to share.
| Option | Description |
|---|---|
| Full Control | Grants Read permissions on the object and Read, and Write permissions on the access control list of the object. |
| Read of Object | Grants Read permissions for the object. |
| Read of ACL | Grants Read permissions for the access control list of the object. |
| Write of ACL | Grants Write permissions for the access control list of the object. |
Procedure
- Log in to the VMware Cloud Director tenant portal.
- From the More drop-down menu, select Object Storage.
- In the Buckets pane, navigate to the bucket or folder that stores the object that you want to share.
- If you want to share a specific version of the object, display all versions of the object by using the Show Versions toggle button.
- Click the name of the object or the object version that you want to share.
- On the Permissions tab, click Edit.
- Configure the required set of permissions on the object and click Save.
- To share the object with users from your tenant organization, use the toggle buttons in the Tenant Users row. If you use ECS or AWS S3, this option is not available.
- To share the object with authenticated users from all tenant organizations, use the toggle buttons in the Authenticated Users row.
- To share the object with all users, use the toggle buttons in the Public row.
- To share the object with a specific user within your organization, click the Add User button, select the user from the drop-down menu, or enter the organization user name of the user, and use the toggle buttons in the corresponding row.
