|
|
@@ -68,58 +68,22 @@ class StsOssView(View):
|
|
|
Resource_access_root = "acs:oss:*:*:{bucket_name}".format(bucket_name=bucket_name)
|
|
|
# Resource_access_root = "acs:oss:*:*:{bucket_name}".format(bucket_name=bucket_name)
|
|
|
print(Resource_access)
|
|
|
- # policys = {
|
|
|
- # "Version": "1",
|
|
|
- # "Statement": [
|
|
|
- # {
|
|
|
- # "Action": ["oss:PutObject", "oss:DeleteObject", "oss:GetObject", "oss:List*"],
|
|
|
- # # "Action": ["*"],
|
|
|
- # "Resource": [Resource_access],
|
|
|
- # # "Resource": ["*"],
|
|
|
- # "Effect": "Allow",
|
|
|
- # "Condition": {
|
|
|
- # # "IpAddress": {"acs:SourceIp": ip}
|
|
|
- # # "IpAddress": {"acs:SourceIp": "120.237.157.184"}
|
|
|
- # # "IpAddress": {"acs:SourceIp": "*"}
|
|
|
- # }
|
|
|
- # },
|
|
|
- # #######
|
|
|
- # ]
|
|
|
- # }
|
|
|
policys = {
|
|
|
"Version": "1",
|
|
|
"Statement": [
|
|
|
{
|
|
|
+ "Action": ["oss:PutObject", "oss:DeleteObject", "oss:GetObject", "oss:List*"],
|
|
|
+ # "Action": ["*"],
|
|
|
+ # "Resource": [Resource_access],
|
|
|
+ "Resource": ["*"],
|
|
|
"Effect": "Allow",
|
|
|
- "Action": [
|
|
|
- "oss:List*",
|
|
|
- "oss:Put*",
|
|
|
- "oss:Get*"
|
|
|
- ],
|
|
|
- "Resource": [
|
|
|
- "acs:oss:*:*:151564262337939513800138001/uid_preview"
|
|
|
- ],
|
|
|
- "Condition": {}
|
|
|
- },
|
|
|
- {
|
|
|
- "Effect": "Allow",
|
|
|
- "Action": [
|
|
|
- "oss:ListObjects"
|
|
|
- ],
|
|
|
- "Resource": [
|
|
|
- "acs:oss:*:*:151564262337939513800138001"
|
|
|
- ],
|
|
|
"Condition": {
|
|
|
- "StringLike": {
|
|
|
- "oss:Prefix": [
|
|
|
- ""
|
|
|
- ]
|
|
|
- },
|
|
|
- "StringEquals": {
|
|
|
- "oss:Delimiter": "/"
|
|
|
- }
|
|
|
+ # "IpAddress": {"acs:SourceIp": ip}
|
|
|
+ # "IpAddress": {"acs:SourceIp": "120.237.157.184"}
|
|
|
+ # "IpAddress": {"acs:SourceIp": "*"}
|
|
|
}
|
|
|
- }
|
|
|
+ },
|
|
|
+ #######
|
|
|
]
|
|
|
}
|
|
|
req.set_Policy(Policy=json.dumps(policys))
|
chenjunkai