Sharing buckets and files

Share files publicly

  1. Open a bucket that has files you want to share.

  2. Select checkboxes in the Share publicly column to share your files.

  3. Click Public link next to each selected checkbox.

    The public link for your file will open in a new tab, where you can copy the URL. Anybody can access your files with this link.

Grant project access

A user with access to your project will have access to your buckets and files. To grant a user project access:

  1. Click IAM & Admin in the lefthand sidebar.

  2. From the project list, choose the project that you want to add a member to.

  3. Click Add Members and add the email address of the user who needs access.

    The email address must either be a Google Account email (such as user@gmail.com) or linked to a Google Account.

  4. Select a role. Roles give members the appropriate level of permission; we recommend that you give the member the least amount of privilege needed to perform their work. For more information about using roles, see Understanding Roles.

    Note: You should be aware that all members with owner-level permissions are also project owners, and are allowed to manage all aspects of a project including shutting down the project.

  5. Click Add.

Add specific bucket and file permissions

Before you get started, note the difference between bucket permissions and object (file) permissions:

  • Object permissions determine who can download an object or manage access to it.

  • Bucket permissions determine who can list, create, overwrite, or delete the objects in a bucket.

Steps:

  1. Click More next to your bucket or file.

  2. Select Edit permissions (for a file) or Edit bucket permissions (for a bucket).

  3. Use the ENTITY menu to choose which kind of access to grant. Then enter names, IDs, or email addresses in the NAME field.

    Entity options:

    • Domain: This is for G Suite customers. It grants access to all Google accounts associated with the Internet domain name. Enter the domain name in the NAME field.

    • Group: This grants access to all members of a Google Group. Enter the Google Group email address in the NAME field.

    • User: This grants access to an individual user based on the email address they use to sign in to Google and use Cloud Storage. In the "Name" column, enter the email address of a user who needs access. The email address must either be a Google Account email (such as user@gmail.com) or linked to a Google Account.

      Special options:

      • Grant access to all users who sign in to any Google Account: Enter allAuthenticatedUsers in the NAME field.

      • Grant access to all users regardless of whether they sign in to a Google Account: Enter allUsers in the NAME field.

    • Project: This grants access to all users who have access to a particular project. Enter a project ID in the NAME field.

  4. Under ACCESS, choose the level of permission granted.

    • Reader: For buckets, read permission only allows users to view which files are in a bucket. Permission to read individual files in a bucket must be granted at the file level. For files, read access only allows users to view the file, not to modify it.

    • Writer: For buckets, write permission allows users to add or remove files in the bucket. For files, there is no write access, only read or owner.

    • Owner: For buckets, owner permission allows users to read, write, or modify bucket permissions. For files, owner permissions allows users to read a file, replace a file with a new upload of the same name, and change file permissions.

  5. Copy the URL above your list of entities. Authorized users can view the bucket at this URL.

    The URL typically looks like this: https://cloud.developers.google.com/storage/browser/sample-bucket-name

Was this helpful?

How can we improve it?
false
Search
Clear search
Close search
Main menu
1201943532137796005
true
Search Help Center
true
true
true
true
true
95384
false
false