Policy: GCP > Storage > Bucket > Access Control

Define the Access Level settings required for GCP > Storage > Bucket.

The Access control determines whether the access level for GCP Storage Bucket should be set to Uniform or Fine-grained.

Enabling uniform bucket-level access on a bucket, Access Control Lists (ACLs) are disabled, and only bucket-level Identity and Access Management (IAM) permissions grant access to that bucket and the objects it contains

Targets

This policy targets the following resource types:

GCP > Storage > Bucket

Controls

Setting this policy configures this control:

GCP > Storage > Bucket > Access Control

Policy Packs

This policy setting is used by the following policy packs:

Policy Specification

Schema Type	`string`
Default	`Skip`
Valid Values [YAML]	`Skip` `Check: Fine-grained` `Check: Uniform` `Enforce: Fine-grained` `Enforce: Uniform`
Examples [YAML]	`Check: Uniform`

In Your Workspace

Policy Settings by Type report

Developers

Category URI

tmod:@turbot/turbot#/control/categories/securityTrustedAccess

Policy Type URI

tmod:@turbot/gcp-storage#/policy/types/bucketAccessControl

GraphQL

query policyType(id: "tmod:@turbot/gcp-storage#/policy/types/bucketAccessControl") { … }

query policySettings(filter: "policyTypeId:'tmod:@turbot/gcp-storage#/policy/types/bucketAccessControl'") { … }

query policyValues(filter: "policyTypeId:'tmod:@turbot/gcp-storage#/policy/types/bucketAccessControl'") { … }

CLI

Get Policy Type

turbot graphql policy-type --id "tmod:@turbot/gcp-storage#/policy/types/bucketAccessControl"

Get Policy Settings

turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/gcp-storage#/policy/types/bucketAccessControl"