This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Get hands-on experience with 20+ free Google Cloud products and $300 in free credit for new customers.
Log in to ask a question

Disabling storage bucket's public url while keeping it publicly accessible

Posted on 02-21-2022 04:44 AM
sasm
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

Hey everyone

Is it possible to disable the public URL on a bucket e.g. 

https://some-bucket-name.storage.googleapis.com

while still having the bucket publicly accessible via an HTTPS load balancer + DNS record? 

I ask because I want to use cloud armor to restrict what IPs can access the bucket in lieu of basic auth. However having the public URL defeats the point of this so I was wondering if it's possible to disable that URL. 

If not are there ways I can achieve restricting public access to a bucket via something like basic auth or IP restrictions?

1 1 2,520
Topic Labels
1 REPLY 1

Posted on --/--/---- --:-- AM
sp2007
Staff
Reply posted on --/--/---- --:-- AM

Hello,

Cloud Storage offers two systems for granting users permission to access your buckets and objects: IAM and Access Control Lists (ACLs). When you make public and use public URL, makes objects you own readable to everyone on the public internet which means permission is provided to all users. When it is not public, IAM or ACLs access control is applied.

Signed URLs is options to provide access to the object for the duration of time you specify, regardless of whether or not they have a Google account. You can check other tools to control the access to your resources as [1] in addition to IAM and ACLs that could be used based on your necessity.

Thank You

[1] https://cloud.google.com/storage/docs/access-control#additional_access_control_options

0 Likes
Top Labels in this Space
Top Solution Authors
View all