Sharing Objects

You can share objects with specific users, or with all users within your tenant organization. You can also make objects public and share objects over the Internet.
You can share one object at a time. To share an object, you edit the access permissions of the object by using the built-in canned access control lists, or by creating a custom access control list.
If versioning is active for the bucket in which the object that you want to share resides, you can share a specific version of the object.
Before you share an object, you must verify that you have the required set of rights.
If you are an ...
You can ...
organization administrator
share objects that users in your organization own.
organization user
you can share objects, if you are the owner of the object, or the owner must assign either
Full Control
, or
Read of ACL
and
Write of ACL
permissions on the object.

Share an Object by Using a Canned Access Control List

Canned access control lists are predefined, built-in access control lists that you can use to share objects within your organization or publicly over the Internet.
Setting a canned access control list to an object overwrites existing permissions configuration for the object.
  1. Log in to the
    VMware Cloud Director tenant portal
    .
  2. In the primary left navigation panel, under
    More
    , select
    Object Storage
    .
  3. In the
    Buckets
    pane, navigate to the bucket or folder in which the object that you want to share resides.
  4. If you want to share a specific version of the object, display all versions of the object by using the
    Show Versions
    toggle button.
  5. Click the name of the object or the object version that you want to share.
  6. On the
    Permissions
    tab, click
    Set Canned ACL
    .
  7. Select a canned access control list name for the object and click
    Set ACL
    .
    Private
    Only the object owner and the
    organization administrator
    can access the object.
    Public Read
    Grants
    read
    permissions on the object to all users and makes the object public.
    Public Read/Write
    Grants
    Read
    and
    Write
    permissions on the object to all users.
    Authenticated Users Read
    Grants
    Read
    permissions to all authenticated
    VMware Cloud Director
    users.
    Bucket Owner Read
    Grants
    Read
    permissions on the object to the bucket owner.
    Bucket Owner Full-Control
    Grants
    Full Control
    permissions on the object to the bucket owner.
    Tenant Read
    Grants
    Read
    permissions on the object to all users that belong to the tenant organization.
    If you use
    AWS S3
    , this option is not available.

Share an Object by Using a Custom Access Control List

To share an object with specific users within or outside of your organization, you can create a custom access control list for the object that you want to share.
The following table describes the available access control list options.
Option
Description
Full Control
Grants
Read
permissions on the object and
Read
, and
Write
permissions on the access control list of the object.
Read of Object
Grants
Read
permissions for the object.
Read of ACL
Grants
Read
permissions for the access control list of the object.
Write of ACL
Grants
Write
permissions for the access control list of the object.
  1. Log in to the
    VMware Cloud Director tenant portal
    .
  2. In the primary left navigation panel, under
    More
    , select
    Object Storage
    .
  3. In the
    Buckets
    pane, navigate to the bucket or folder that stores the object that you want to share.
  4. If you want to share a specific version of the object, display all versions of the object by using the
    Show Versions
    toggle button.
  5. Click the name of the object or the object version that you want to share.
  6. On the
    Permissions
    tab, click
    Edit
    .
  7. Configure the required set of permissions on the object and click
    Save
    .
    • To share the object with users from your tenant organization, use the toggle buttons in the
      Tenant Users
      row. If you use
      ECS
      or
      AWS S3
      , this option is not available.
    • To share the object with authenticated users from all tenant organizations, use the toggle buttons in the
      Authenticated Users
      row.
    • To share the object with all users, use the toggle buttons in the
      Public
      row.
    • To share the object with a specific user within your organization, click the
      Add User
      button, select the user from the drop-down menu, or enter the organization user name of the user, and use the toggle buttons in the corresponding row.