Retrieve User IDs
Depending on the selected S3 client, you have various options for sharing buckets, objects, or object versions with users of the Object Storage. In addition to roles and predefined profiles, you can share the content of your buckets with selected users by using their IONOS S3 Object Storage ID known as Canonical user ID using the Access Control List and Bucket Policies.
You can also share buckets and objects with other users by using their user IDs. User identification is possible through the Canonical user ID, and Email address. For more information, see S3 Credentials.
Retrieve Canonical user ID
Retrieving the Canonical user ID includes the following:
Retrieve your Canonical User ID
For another user to share the content of their IONOS S3 Object Storage with you, they need your IONOS S3 Object Storage ID, which you will find in the Object Storage Key Manager.
Prerequisite: Make sure you have the corresponding permission to create the Object Storage. Only contract owners and administrators with the Object-Storage-Key can set up the object storage.
1. In the DCD, go to Menu > Storage and click the IONOS S3 Object Storage.
2. Select the Key management tab.
3. In the S3 Credentials, click Copy against the Canonical User ID. You can also copy the required user IDs and use them to get access to other buckets and objects.
Result: Your Canonical user ID is successfully copied to the clipboard.
Retrieve the Canonical User ID of a grantee
The grantee is the user under the same contract at IONOS, but it also could be the user under another contract. You need the user's Canonical user ID to share access to the bucket or object using ACL. For more information, see Grant access.
To retrieve the Canonical user ID of a grantee, follow these steps:
Prerequisites:
Make sure the grantee Object Storage account already exists. If not, then, begin with creating the grantee by following the steps in Retrieve the Canonical User ID of a new user.
Make sure you have the corresponding permission to create the IONOS S3 Object Storage. Only contract owners and administrators can retrieve the IONOS S3 Object Storage IDs of their IONOS account users.
1. In the DCD, go to Menu > Management > Users & Groups.
2. Select the user from the Users list and click the Object Storage Keys tab.
3. Click the S3 link and copy the user's S3 Canonical User ID. This ID is used to share access to this user. You can also copy the required other user IDs and use them for sharing your objects with this user.
Result: The Canonical user ID for the grantee is successfully retrieved.
Retrieve the Canonical User ID of a new user
If the grantee’s user account does not already exist or if you want to assign a different set of permissions, then, the root user of the contract needs to create the user account and then retrieve the Canonical user ID to grant access to buckets and objects.
1. In the DCD, go to Menu > Management > Users & Groups.
2. In the Users tab, click + Create.
3. Enter the user details such as First Name, Last Name, Email, Password, and click Create.
Info: The new user is created and shown in the Users list and their S3 access keys are automatically created but are disabled. When the user is added to a group with Use Object Storage privilege enabled, the access key is set to active
.
4. In the Users list, select the user and click the Object Storage Keys tab.
5. Select the checkbox Active to activate the Key.
6. Click the S3 link and copy the user's S3 Canonical User ID. This ID is used to share access to this user. You can also copy the required other user IDs and use them for sharing your objects with this user.
Result: The new user is successfully created and the Canonical user ID is retrieved. You can now share access to the bucket with the new user using Share access.
Last updated