This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Get hands-on experience with 20+ free Google Cloud products and $300 in free credit for new customers.
Log in to ask a question

How can i delete a bucket with retention policy?

Posted on 07-16-2024 09:17 PM
Khanhnam273
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

I set my account (khanhxxxx@gmail.com) to storage admin and storage object admin, but i still cannot delete a object inside a bucket which i accidentally set retention policy. Please help me.

3 5 791
Topic Labels
5 REPLIES 5

Posted on --/--/---- --:-- AM
DamianS
Gold 2
Gold 2
Reply posted on --/--/---- --:-- AM

Hello @Khanhnam273  ,Welcome on Google Cloud Community.

Please check this guide: https://cloud.google.com/storage/docs/using-bucket-lock#set-policy

PS: If you locked your bucket, you will not able to remove retention policy and decrease the retention period for the bucket.

How to check retention policy and lock status:  https://cloud.google.com/storage/docs/using-bucket-lock#view-policy

--
cheers,
DamianS
LinkedIn medium.com Cloudskillsboost

Posted on --/--/---- --:-- AM
Khanhnam273
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

Thanks DamianS  for your quick reply. 

How about Using this command with flag: --clear-retention-period

Khanhnam273_0-1721197934685.png

from this guidance: https://cloud.google.com/storage/docs/using-bucket-lock#command-line.

At which case this command will take effect and remove retension policy ?

It should be a way to remove it right for example some stupid guy like me who set it for 100 years ?

Please help me with my case. I am grateful for that.  

Posted on --/--/---- --:-- AM
DamianS
Gold 2
Gold 2
In response to Khanhnam273
Reply posted on --/--/---- --:-- AM

Hello,

If you have bucket retention policy and want to clear this policy , you must use command 

gsutil retention clear gs://BUCKET_NAME

It will remove this value ( red arrow )

DamianS_0-1721291923174.png

But if you locked your bucket, you will not being able to remove such retention policy 

DamianS_1-1721292184510.png

DamianS_2-1721292207012.png

DamianS_3-1721292214862.png

 

Posted on --/--/---- --:-- AM
Khanhnam273
Bronze 1
Bronze 1
In response to DamianS
Reply posted on --/--/---- --:-- AM

So sad that iam in  the retention lock mode. I played with terraform and set it by accident.

If I am (user/serviceaccount) the one who lock it so I should have permission to unlock it right ? please tell me that I will have a way to unlock it. Please please...

Posted on --/--/---- --:-- AM
alexmoore
Staff
In response to Khanhnam273
Reply posted on --/--/---- --:-- AM

Bucket locks are there to prevent accidental and purposeful deletion, you cannot remove the bucket once locked until all objects have met the retention period and the documentation is clear on that.  Your only options are:

1) Wait for all objects to expire the retention period, an empty bucket can be deleted.  See: 

https://cloud.google.com/storage/docs/bucket-lock#:~:text=Thus%2C%20to%20%22remove%22%20a%20locked%2....

2) You can delete the entire project - but note that activating a retention will also activate a project lien to prevent accidental project deletion - this requires explicit IAM roles in order to remove this.  See: https://cloud.google.com/resource-manager/docs/project-liens

 

Top Labels in this Space
Top Solution Authors
View all