By default, all Object Storage Service (OSS) resources — buckets and objects — are private. Only the resource owner and explicitly authorized users can access them. OSS evaluates every request against all applicable access control policies and allows the request only if every applicable policy permits it.
Request types
OSS handles two types of requests: non-anonymous and anonymous.
-
Non-anonymous requests
Non-anonymous requests carry signature information in the request headers or request URLs for identity verification.
-
Anonymous requests
Anonymous requests carry no signature information in the request headers or request URLs.