OSS allows you to configure bucket tagging to classify and manage buckets. For example, you can configure this feature to list only buckets that have specific tags.
Bucket tagging uses a key-value pair to identify buckets. You can manage multiple
buckets that have specific tags.
- Only the bucket owner and authorized users can configure tagging for the bucket. If other users attempt to configure tagging for the bucket, 403 Forbidden is returned with error code AccessDenied.
- You can configure a maximum of 20 tags for a bucket.
- The tag key is required. The tag key can be a maximum of 64 bytes in length and cannot
start with
http://,https://, orAliyun. - The tag value is optional. The tag value can be a maximum of 128 bytes in length.
- The key and value of the tag must be encoded in UTF-8.
Implementation modes
| Implementation mode | Description |
|---|---|
| Java SDK | SDK demos in various languages |
| Python SDK | |
| Go SDK |
Instructions
After you add tags to buckets, you can manage multiple buckets that have the same
tag. For example, you can list buckets that have the same tag and authorize RAM users
to manage buckets that have the same tag.
- Lists buckets that have specific tags
You can list buckets that have specific tags. For more information, see the following SDK demos:
- Authorize RAM users to manage buckets that have specific tags
When you have a large number of buckets, you can classify buckets based on tags and use the RAM policy to authorize specific users to manage buckets that have specific tags. For example, you can authorize user A to list buckets that have the tag configuration of keytest=valuetest. The RAM policy is as follows:
{ "Version": "1", "Statement": [ { "Action": [ "oss:ListBuckets" ], "Resource": [ "acs:oss:*:1932487924256138:*" ], "Effect": "Allow", "Condition": { "StringEquals": { "oss:BucketTag/keytest": "valuetest" } } } ] }