This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Get hands-on experience with 20+ free Google Cloud products and $300 in free credit for new customers.
Log in to ask a question

Cloud Storage Folder access in buckets

Posted on 02-28-2025 07:34 AM
Gargeya
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

Hi All,

I have a Cloud Storage bucket that contains two folders, each with its own set of files. I need to grant user access to only Folder A while restricting their access to Folder B. What is the best approach to achieving this folder-level access control in Google Cloud Storage? Please help.

Thank you.

0 1 213
Topic Labels
0 Likes
1 REPLY 1

Posted on --/--/---- --:-- AM
Joy_S
Staff
Reply posted on --/--/---- --:-- AM

Hi @Gargeya

Welcome to Google Cloud Community!

Currently, access control is available only at the bucket level or object level, but not at the folder level. But you can follow these steps as a workaround:

  1. Go to the Google Cloud Console then navigate to the Cloud Storage section. Select the bucket containing Folder A and Folder B. Enable uniform bucket-level access for the bucket.
  2. Create an IAM policy that grants Storage Object Viewer role IAM permission
    (resource.name.startsWith('projects/_/buckets/Samplebucket/objects/def')
     to the user for Folder A. Create another IAM policy that denies access to Folder B.
  3. Apply the IAM policy for Folder A by specifying the folder path in the policy. Paste the bucket url in the browser with the user logged in. Ensure that the IAM policy for Folder B restricts access to that folder.

Was this helpful? If so, please accept this answer as “Solution”. If you need additional assistance, reply here within 2 business days and I’ll be happy to help.

0 Likes
Top Solution Authors
View all