Bucket Permission Control
OSS provides bucket-level access control, bucket currently has three access rights: Public-read-write,public-read and private, meaning the following:
Public-read-write: Anyone (including anonymous access) can perform put,get and delete operations on the object in the bucket, and all of these operations incur costs that are borne by the creator of the bucket, and you should use this permission with caution.
Public-read: Only the creator of the bucket can write to object in the bucket (including put and delete object), and anyone (including anonymous access) can read the object in that bucket (get Object).
Private: Only the creator of the bucket can read and write to the object within the bucket (including put, delete, and get object), and other people cannot access object within the bucket.
When a user creates a new bucket, OSS automatically sets private permissions for the bucket if you do not specify bucket permissions. For an already existing bucket, only its creator can modify the permissions of the bucket.