Please note that the contents of this offline web site may be out of date. To access the most recent documentation visit the online version .
Note that links that point to online resources are green in color and will open in a new window.
We would love it if you could give us feedback about this material by filling this form (You have to be online to fill it)



Working With Projects

  1. Working With Projects
    1. Overview
    2. Project Members And Permissions
    3. How Project Membership Is Reflected In Bucket Acls
    4. Identifying Projects When Creating And Listing Buckets

Working With Projects

Overview

This section discusses how to work with projects in Google Cloud Storage.

Project Members And Permissions

There are three groups of users associated with each project:

  • Project Owners are allowed to list, create, and delete buckets, and can also perform administrative tasks like adding and removing team members and changing billing. The project owners group is the owner of all buckets within a project, regardless of who may be the original bucket creator.
  • Project Editors are allowed to list, create, and delete buckets.
  • All Project Team Members are allowed to list buckets within a project.

These projects make it easy to set up a bucket and start uploading objects with access control appropriate for a project at your company, as the three group memberships can be configured by your administrative staff. Control over projects and their associated memberships is provided by the Google Developers Console .

How Project Membership Is Reflected In Bucket Acls

When you create a bucket without specifying an ACL the bucket is given a “project-private” ACL, which grants the permissions described in the previous section. Here’s an example of such an ACL: 

[
  {
    "entity": "group-00b4903a9740e42c29800f53bd5a9a62a2f96eb3f64a4313a115df3f3a776bf7",
    "entityId": "00b4903a9740e42c29800f53bd5a9a62a2f96eb3f64a4313a115df3f3a776bf7",
    "role": "OWNER"
  },
  {
    "entity": "group-00b4903a977fd817e9da167bc81306489181a110456bb635f466d71cf90a0d51",
    "entityId": "00b4903a977fd817e9da167bc81306489181a110456bb635f466d71cf90a0d51",
    "role": "OWNER"
  },
  {
    "entity": "00b4903a974898cc8fc309f2f2835308ba3d3df1b889d3fc7e33e187d52d8e71",
    "entityId": "00b4903a974898cc8fc309f2f2835308ba3d3df1b889d3fc7e33e187d52d8e71",
    "role": "READER"
  }
]

The three “entityId”s are the canonical IDs for the Project Owners, Project Editors, and All Project Team Members groups.

You can edit the bucket ACL if you want to (see gsutil help acl ), but for many cases you’ll never need to, and instead can change group membership via the Google Developers Console .

Identifying Projects When Creating And Listing Buckets

When you create a bucket or list your buckets, you need to provide the project ID that you want to create or list (using the gsutil mb -p option or the gsutil ls -p option, respectively). The project’s name shown in the Google Developers Console is a user-friendly name that you can choose; this is not the project ID required by the gsutil mb and ls commands. To find the project ID, go to the Cloud Storage pane in the Google Developers Console. The project ID is listed as “Project Number” in the Overview pane of your project.

Except as otherwise noted, the content of this page is licensed under the Creative Commons Attribution 3.0 License , and code samples are licensed under the Apache 2.0 License . For details, see our Site Policies .

Authentication required

You need to be signed in with Google+ to do that.

Signing you in...

Google Developers needs your permission to do that.