Sign up for FreeSandbox

Cloud Storage

List of the Google IAM permissions granted via Compute Storage access shortcuts.

Read (bucket)

Grants the following IAM permissions on the specified bucket and any objects inside it:

          storage.objects.get
          storage.objects.list
          storage.buckets.get
          storage.buckets.listEffectiveTags
          storage.buckets.listTagBindings
          storage.multipartUploads.list
          storage.multipartUploads.listParts

Read (object)

Grants the following IAM permissions on the specified object and any objects inside it:

          storage.objects.get
          storage.objects.list
          storage.multipartUploads.list
          storage.multipartUploads.listParts

Write (bucket)

Grants the following IAM permissions on the specified bucket and any objects inside it:

          storage.objects.get
          storage.objects.list
          storage.buckets.get
          storage.buckets.listEffectiveTags
          storage.buckets.listTagBindings
          storage.buckets.createTagBinding
          storage.buckets.delete
          storage.buckets.deleteTagBinding
          storage.buckets.update
          storage.objects.create
          storage.objects.delete
          storage.objects.update
          storage.multipartUploads.abort
          storage.multipartUploads.create
          storage.multipartUploads.list
          storage.multipartUploads.listParts

Write (object)

Grants the following IAM permissions on the specified object and any objects inside it:

          storage.objects.get
          storage.objects.list
          storage.objects.create
          storage.objects.delete
          storage.objects.update
          storage.multipartUploads.abort
          storage.multipartUploads.create
          storage.multipartUploads.list
          storage.multipartUploads.listParts

Admin (bucket)

Grants the storage.admin predefined role on the specified bucket and any objects inside it.

Admin (object)

Grants the storage.objectAdmin predefined role on the specified object and any objects inside it.

PreviousPermissions ReferenceNextCompute Engine

Last updated