Skip to main content
logologo
Docs
NewsBlogContact Us
Help CenterAPI DocsBlogFAQ

Access Control

How uploaded files are accessed is the main security concern for many. Although many files can be accessed publicly, there is a need for other access options for more sensitive files. Therefore, if specific files must only be accessed and edited by a selected group of users, this feature must be provided by the Storage Service.

Arvancloud’s Object Storage allows you to limit file access to private or public. You will come across the Public Access option when creating a bucket and uploading a file. After creating the bucket, this option can be activated/deactivated whenever you want. Here, we will go through this security feature.

Public Access When Creating Bucket

Each created bucket in Arvancloud’s Object Storage is accessed with a URL like the below:

https://BUCKETNAME.ir-thr-at1.arvanstorage.ir/

If public access is off for the bucket, the page below will be displayed when you enter its URL.

When we activate the same bucket’s Public Access, entering the URL will bring us to the page below. Now, it displays comprehensive information on what user this bucket belongs to, the existing files and their sizes, and also the date of the last edit.

Therefore, if your files are sensitive, your bucket must not be publicly accessible to prevent all users from accessing private information.

Public Access When Uploading Files

When public access is activated for a file, the file can be accessed through a URL like the below:

https:// BUCKETNAME.s3.ir-thr-at1.arvanstorage.ir/FILENAME

Entering this URL will bring you to the following page:

Now, if you deactivate public access for this same file, the URL will be changed to this:

https://s3.ir-thr-at1.arvanstorage.ir/BUCKETNAME/FILENAME?AWSAccessKeyId=xxxxxx-xxxx-xxxx-xxxxxxxxx&Signature=xxxxxxx%2Fs567z9%2F%2BBo%3D&Expires=1591864214

This URL includes parameters that prevent it from being simply guessed. You are the only one who can access this file unless you share the link with others. Furthermore, you can see the expiry date at the end of the URL.

This URL includes parameters that prevent it from being simply guessed. You are the only one who can access this file unless you share the link with others. Furthermore, you can see the expiry date at the end of the URL.

Please note that if you deactivate public access for a file, it will only be available through the private link.

However, if you activate public access for a private file, you can access the file through both public and private URLs though the private link will only work until the expiry date.