本文属于机器翻译版本。若本译文内容与英语原文存在差异,则一律以英文原文为准。
# Amazon S3 on Outposts 的操作、资源和条件键
Amazon S3 on Outposts(服务前缀:`s3-outposts`)提供以下服务特定的资源、操作和条件上下文键以在 IAM 权限策略中使用。
参考:
+ 了解如何[配置该服务](https://docs.aws.amazon.com/AmazonS3/latest/userguide/Welcome.html)。
+ 查看[适用于该服务的 API 操作列表](https://docs.aws.amazon.com/AmazonS3/latest/API/Type_API_Reference.html)。
+ 了解如何[使用 IAM](https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-control-overview.html) 权限策略保护该服务及其资源。
**Topics**
+ [Amazon S3 on Outposts 定义的操作](#amazons3onoutposts-actions-as-permissions)
+ [Amazon S3 on Outposts 定义的资源类型](#amazons3onoutposts-resources-for-iam-policies)
+ [Amazon S3 on Outposts 的条件键](#amazons3onoutposts-policy-keys)
## Amazon S3 on Outposts 定义的操作
您可以在 IAM 策略语句的 `Action` 元素中指定以下操作。可以使用策略授予在 AWS中执行操作的权限。您在策略中使用一项操作时,通常使用相同的名称允许或拒绝对 API 操作或 CLI 命令的访问。但在某些情况下,单一动作可控制对多项操作的访问。还有某些操作需要多种不同的动作。
操作表的**访问级别**列描述如何对操作进行分类(列出、读取、权限管理或标记)。此分类可以帮助您了解当您在策略中使用操作时,相应操作授予的访问级别。有关访问级别的更多信息,请参阅[策略摘要中的访问级别](https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_understand-policy-summary-access-level-summaries.html)。
操作表的**资源类型**列指示每项操作是否支持资源级权限。如果该列没有任何值,您必须在策略语句的 `Resource` 元素中指定策略应用的所有资源(“\*”)。通过在 IAM policy 中使用条件来筛选访问权限,以控制是否可以在资源或请求中使用特定标签键。如果操作具有一个或多个必需资源,则调用方必须具有使用这些资源来使用该操作的权限。必需资源在表中以星号 (\*) 表示。如果您在 IAM policy 中使用 `Resource` 元素限制资源访问权限,则必须为每种必需的资源类型添加 ARN 或模式。某些操作支持多种资源类型。如果资源类型是可选的(未指示为必需),则可以选择使用一种可选资源类型。
操作表的**条件键**列包括可以在策略语句的 `Condition` 元素中指定的键。有关与服务资源关联的条件键的更多信息,请参阅资源类型表的**条件键**列。
操作表的**依赖操作**列显示成功调用操作可能需要的其他权限。除了操作本身的权限以外,可能还需要这些权限。若某个操作指定依赖操作,则这些依赖关系可能适用于为该操作定义的其他资源,而不仅仅是表中列出的第一个资源。
**注意**
资源条件键在[资源类型](#amazons3onoutposts-resources-for-iam-policies)表中列出。您可以在操作表的**资源类型(\* 为必需)**列中找到应用于某项操作的资源类型的链接。资源类型表中的资源类型包括**条件密钥**列,这是应用于操作表中操作的资源条件键。
有关下表中各列的详细信息,请参阅[操作表](reference_policies_actions-resources-contextkeys.html#actions_table)。
****
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_AbortMultipartUpload.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_AbortMultipartUpload.html) **
- **描述:** 授予权限以中止分段上传
- **访问级别:** Write
- **资源类型(\* 为必需):** [#amazons3onoutposts-object](#amazons3onoutposts-object) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_DataAccessPointArn](#amazons3onoutposts-s3-outposts_DataAccessPointArn)
[#amazons3onoutposts-s3-outposts_DataAccessPointAccount](#amazons3onoutposts-s3-outposts_DataAccessPointAccount)
[#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin](#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin)
[#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_CreateAccessPoint.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_CreateAccessPoint.html) **
- **描述:** 授予权限以创建新的访问点
- **访问级别:** Write
- **资源类型(\* 为必需):** [#amazons3onoutposts-accesspoint](#amazons3onoutposts-accesspoint) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_DataAccessPointAccount](#amazons3onoutposts-s3-outposts_DataAccessPointAccount)
[#amazons3onoutposts-s3-outposts_DataAccessPointArn](#amazons3onoutposts-s3-outposts_DataAccessPointArn)
[#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin](#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin)
[#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_CreateBucket.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_CreateBucket.html) **
- **描述:** 授予权限以创建新的存储桶
- **访问级别:** Write
- **资源类型(\* 为必需):** [#amazons3onoutposts-bucket](#amazons3onoutposts-bucket) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_s3outposts_CreateEndpoint.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_s3outposts_CreateEndpoint.html) **
- **描述:** 授予权限以创建新的终端节点
- **访问级别:** Write
- **资源类型(\* 为必需):** [#amazons3onoutposts-endpoint](#amazons3onoutposts-endpoint)
- **条件键:**
- **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_DeleteAccessPoint.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_DeleteAccessPoint.html) **
- **描述:** 授予权限以删除在 URI 中指定的接入点
- **访问级别:** Write
- **资源类型(\* 为必需):** [#amazons3onoutposts-accesspoint](#amazons3onoutposts-accesspoint) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_DataAccessPointArn](#amazons3onoutposts-s3-outposts_DataAccessPointArn)
[#amazons3onoutposts-s3-outposts_DataAccessPointAccount](#amazons3onoutposts-s3-outposts_DataAccessPointAccount)
[#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin](#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin)
[#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_DeleteAccessPointPolicy.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_DeleteAccessPointPolicy.html) **
- **描述:** 授予权限以删除指定接入点上的策略
- **访问级别:** Permissions management
- **资源类型(\* 为必需):** [#amazons3onoutposts-accesspoint](#amazons3onoutposts-accesspoint) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_DataAccessPointArn](#amazons3onoutposts-s3-outposts_DataAccessPointArn)
[#amazons3onoutposts-s3-outposts_DataAccessPointAccount](#amazons3onoutposts-s3-outposts_DataAccessPointAccount)
[#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin](#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin)
[#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_DeleteBucket.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_DeleteBucket.html) **
- **描述:** 授予权限以删除在 URI 中指定的存储桶
- **访问级别:** 写入
- **资源类型(\* 为必需):** [#amazons3onoutposts-bucket](#amazons3onoutposts-bucket) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_DeleteBucketPolicy.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_DeleteBucketPolicy.html) **
- **描述:** 授予权限以删除指定存储桶上的策略
- **访问级别:** Permissions management
- **资源类型(\* 为必需):** [#amazons3onoutposts-bucket](#amazons3onoutposts-bucket) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_s3outposts_DeleteEndpoint.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_s3outposts_DeleteEndpoint.html) **
- **描述:** 授予权限以删除在 URI 中指定的终端节点
- **访问级别:** Write
- **资源类型(\* 为必需):** [#amazons3onoutposts-endpoint](#amazons3onoutposts-endpoint)
- **条件键:**
- **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteObject.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteObject.html) **
- **描述:** 授予权限以删除对象的空版本并插入删除标记,此版本成为对象的当前版本
- **访问级别:** 写入
- **资源类型(\* 为必需):** [#amazons3onoutposts-object](#amazons3onoutposts-object) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_DataAccessPointAccount](#amazons3onoutposts-s3-outposts_DataAccessPointAccount)
[#amazons3onoutposts-s3-outposts_DataAccessPointArn](#amazons3onoutposts-s3-outposts_DataAccessPointArn)
[#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin](#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin)
[#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteObjectTagging.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteObjectTagging.html) **
- **描述:** 授予权限以使用标记子资源从指定的对象中删除整个标记集
- **访问级别:** 标记
- **资源类型(\* 为必需):** [#amazons3onoutposts-object](#amazons3onoutposts-object) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_DataAccessPointAccount](#amazons3onoutposts-s3-outposts_DataAccessPointAccount)
[#amazons3onoutposts-s3-outposts_DataAccessPointArn](#amazons3onoutposts-s3-outposts_DataAccessPointArn)
[#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin](#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin)
[#amazons3onoutposts-s3-outposts_ExistingObjectTag_key](#amazons3onoutposts-s3-outposts_ExistingObjectTag_key)
[#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteObject.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteObject.html) **
- **描述:** 授予权限以删除特定版本的对象
- **访问级别:** 写入
- **资源类型(\* 为必需):** [#amazons3onoutposts-object](#amazons3onoutposts-object) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_DataAccessPointAccount](#amazons3onoutposts-s3-outposts_DataAccessPointAccount)
[#amazons3onoutposts-s3-outposts_DataAccessPointArn](#amazons3onoutposts-s3-outposts_DataAccessPointArn)
[#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin](#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin)
[#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_versionid](#amazons3onoutposts-s3-outposts_versionid)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteObjectTagging.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteObjectTagging.html) **
- **描述:** 授予权限以删除特定版本对象的整个标记集
- **访问级别:** 标签
- **资源类型(\* 为必需):** [#amazons3onoutposts-object](#amazons3onoutposts-object) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_DataAccessPointAccount](#amazons3onoutposts-s3-outposts_DataAccessPointAccount)
[#amazons3onoutposts-s3-outposts_DataAccessPointArn](#amazons3onoutposts-s3-outposts_DataAccessPointArn)
[#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin](#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin)
[#amazons3onoutposts-s3-outposts_ExistingObjectTag_key](#amazons3onoutposts-s3-outposts_ExistingObjectTag_key)
[#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_versionid](#amazons3onoutposts-s3-outposts_versionid)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_GetAccessPoint.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_GetAccessPoint.html) **
- **描述:** 授予权限以返回有关指定访问点的配置信息
- **访问级别:** Read
- **资源类型(\* 为必需):**
- **条件键:** [#amazons3onoutposts-s3-outposts_DataAccessPointAccount](#amazons3onoutposts-s3-outposts_DataAccessPointAccount)
[#amazons3onoutposts-s3-outposts_DataAccessPointArn](#amazons3onoutposts-s3-outposts_DataAccessPointArn)
[#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin](#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin)
[#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256)
- **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_GetAccessPointPolicy.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_GetAccessPointPolicy.html) **
- **描述:** 授予权限以返回与指定接入点关联的接入点策略
- **访问级别:** Read
- **资源类型(\* 为必需):** [#amazons3onoutposts-accesspoint](#amazons3onoutposts-accesspoint) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_DataAccessPointAccount](#amazons3onoutposts-s3-outposts_DataAccessPointAccount)
[#amazons3onoutposts-s3-outposts_DataAccessPointArn](#amazons3onoutposts-s3-outposts_DataAccessPointArn)
[#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin](#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin)
[#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_GetBucket.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_GetBucket.html) **
- **描述:** 授予权限以返回与 Amazon S3 存储桶关联的存储桶配置
- **访问级别:** Read
- **资源类型(\* 为必需):** [#amazons3onoutposts-bucket](#amazons3onoutposts-bucket) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_GetBucketPolicy.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_GetBucketPolicy.html) **
- **描述:** 授予权限以返回指定存储桶的策略
- **访问级别:** Read
- **资源类型(\* 为必需):** [#amazons3onoutposts-bucket](#amazons3onoutposts-bucket) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_GetBucketTagging.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_GetBucketTagging.html) **
- **描述:** 授予权限以返回与 Amazon S3 存储桶关联的标签集
- **访问级别:** 读取
- **资源类型(\* 为必需):** [#amazons3onoutposts-bucket](#amazons3onoutposts-bucket) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketVersioning.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketVersioning.html) **
- **描述:** 授予权限以返回 Amazon S3 存储桶的版本控制状态
- **访问级别:** 读取
- **资源类型(\* 为必需):** [#amazons3onoutposts-bucket](#amazons3onoutposts-bucket) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_GetBucketLifecycleConfiguration.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_GetBucketLifecycleConfiguration.html) **
- **描述:** 授予权限以返回 Amazon S3 存储桶上的生命周期配置信息集
- **访问级别:** Read
- **资源类型(\* 为必需):** [#amazons3onoutposts-bucket](#amazons3onoutposts-bucket) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetObject.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetObject.html) **
- **描述:** 授予权限以从 Amazon S3 检索对象
- **访问级别:** Read
- **资源类型(\* 为必需):** [#amazons3onoutposts-object](#amazons3onoutposts-object) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_DataAccessPointAccount](#amazons3onoutposts-s3-outposts_DataAccessPointAccount)
[#amazons3onoutposts-s3-outposts_DataAccessPointArn](#amazons3onoutposts-s3-outposts_DataAccessPointArn)
[#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin](#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin)
[#amazons3onoutposts-s3-outposts_ExistingObjectTag_key](#amazons3onoutposts-s3-outposts_ExistingObjectTag_key)
[#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetObjectTagging.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetObjectTagging.html) **
- **描述:** 授予权限以返回对象的标签集
- **访问级别:** Read
- **资源类型(\* 为必需):** [#amazons3onoutposts-object](#amazons3onoutposts-object) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_DataAccessPointAccount](#amazons3onoutposts-s3-outposts_DataAccessPointAccount)
[#amazons3onoutposts-s3-outposts_DataAccessPointArn](#amazons3onoutposts-s3-outposts_DataAccessPointArn)
[#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin](#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin)
[#amazons3onoutposts-s3-outposts_ExistingObjectTag_key](#amazons3onoutposts-s3-outposts_ExistingObjectTag_key)
[#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetObject.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetObject.html) **
- **描述:** 授予权限以检索对象的特定版本
- **访问级别:** 读取
- **资源类型(\* 为必需):** [#amazons3onoutposts-object](#amazons3onoutposts-object) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_DataAccessPointAccount](#amazons3onoutposts-s3-outposts_DataAccessPointAccount)
[#amazons3onoutposts-s3-outposts_DataAccessPointArn](#amazons3onoutposts-s3-outposts_DataAccessPointArn)
[#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin](#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin)
[#amazons3onoutposts-s3-outposts_ExistingObjectTag_key](#amazons3onoutposts-s3-outposts_ExistingObjectTag_key)
[#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_versionid](#amazons3onoutposts-s3-outposts_versionid)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetObject.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetObject.html) **
- **描述:** 授予复制未加密对象和使用加密对象的权限 SSE-KMS
- **访问级别:** 读取
- **资源类型(\* 为必需):** [#amazons3onoutposts-object](#amazons3onoutposts-object) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetObject.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetObject.html) **
- **描述:** 授予权限以返回特定版本对象的标签集
- **访问级别:** Read
- **资源类型(\* 为必需):** [#amazons3onoutposts-object](#amazons3onoutposts-object) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_DataAccessPointAccount](#amazons3onoutposts-s3-outposts_DataAccessPointAccount)
[#amazons3onoutposts-s3-outposts_DataAccessPointArn](#amazons3onoutposts-s3-outposts_DataAccessPointArn)
[#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin](#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin)
[#amazons3onoutposts-s3-outposts_ExistingObjectTag_key](#amazons3onoutposts-s3-outposts_ExistingObjectTag_key)
[#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_versionid](#amazons3onoutposts-s3-outposts_versionid)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_GetBucketReplication.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_GetBucketReplication.html) **
- **描述:** 授予权限以获取 Amazon S3 存储桶上的复制配置信息集
- **访问级别:** 读取
- **资源类型(\* 为必需):** [#amazons3onoutposts-bucket](#amazons3onoutposts-bucket) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_ListAccessPoints.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_ListAccessPoints.html) **
- **描述:** 授予权限以列出访问点
- **访问级别:** List
- **资源类型(\* 为必需):**
- **条件键:** [#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256)
- **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_ListObjectsV2.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_ListObjectsV2.html) **
- **描述:** 授予权限以列出 Amazon S3 存储桶中的部分或全部对象(最多 1000 个)
- **访问级别:** 列出
- **资源类型(\* 为必需):** [#amazons3onoutposts-accesspoint](#amazons3onoutposts-accesspoint) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** [#amazons3onoutposts-bucket](#amazons3onoutposts-bucket) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_DataAccessPointAccount](#amazons3onoutposts-s3-outposts_DataAccessPointAccount)
[#amazons3onoutposts-s3-outposts_DataAccessPointArn](#amazons3onoutposts-s3-outposts_DataAccessPointArn)
[#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin](#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin)
[#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_delimiter](#amazons3onoutposts-s3-outposts_delimiter)
[#amazons3onoutposts-s3-outposts_max-keys](#amazons3onoutposts-s3-outposts_max-keys)
[#amazons3onoutposts-s3-outposts_prefix](#amazons3onoutposts-s3-outposts_prefix)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_ListMultipartUploads.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_ListMultipartUploads.html) **
- **描述:** 授予权限以列出正在进行的分段上传
- **访问级别:** 列出
- **资源类型(\* 为必需):** [#amazons3onoutposts-accesspoint](#amazons3onoutposts-accesspoint) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** [#amazons3onoutposts-bucket](#amazons3onoutposts-bucket) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_DataAccessPointAccount](#amazons3onoutposts-s3-outposts_DataAccessPointAccount)
[#amazons3onoutposts-s3-outposts_DataAccessPointArn](#amazons3onoutposts-s3-outposts_DataAccessPointArn)
[#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin](#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin)
[#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_ListObjectVersions.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_ListObjectVersions.html) **
- **描述:** 授予权限以列出有关 Amazon S3 存储桶中所有对象版本的元数据
- **访问级别:** 列出
- **资源类型(\* 为必需):** [#amazons3onoutposts-bucket](#amazons3onoutposts-bucket) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_DataAccessPointAccount](#amazons3onoutposts-s3-outposts_DataAccessPointAccount)
[#amazons3onoutposts-s3-outposts_DataAccessPointArn](#amazons3onoutposts-s3-outposts_DataAccessPointArn)
[#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin](#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin)
[#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_delimiter](#amazons3onoutposts-s3-outposts_delimiter)
[#amazons3onoutposts-s3-outposts_max-keys](#amazons3onoutposts-s3-outposts_max-keys)
[#amazons3onoutposts-s3-outposts_prefix](#amazons3onoutposts-s3-outposts_prefix)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_s3outposts_ListEndpoints.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_s3outposts_ListEndpoints.html) **
- **描述:** 授予列出终端节点的权限
- **访问级别:** List
- **资源类型(\* 为必需):**
- **条件键:**
- **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_ListParts.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_ListParts.html) **
- **描述:** 授予权限以列出为特定分段上传而上传的部分
- **访问级别:** 列表
- **资源类型(\* 为必需):** [#amazons3onoutposts-object](#amazons3onoutposts-object) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_DataAccessPointAccount](#amazons3onoutposts-s3-outposts_DataAccessPointAccount)
[#amazons3onoutposts-s3-outposts_DataAccessPointArn](#amazons3onoutposts-s3-outposts_DataAccessPointArn)
[#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin](#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin)
[#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_s3outposts_ListOutpostsWithS3.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_s3outposts_ListOutpostsWithS3.html) **
- **描述:** 授予权限以列出具有 S3 容量的 Outpost
- **访问级别:** 列表
- **资源类型(\* 为必需):**
- **条件键:**
- **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_ListRegionalBuckets.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_ListRegionalBuckets.html) **
- **描述:** 授予权限以列出该请求的经身份验证的发件人拥有的所有存储桶
- **访问级别:** 列表
- **资源类型(\* 为必需):**
- **条件键:** [#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256)
- **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_s3outposts_ListSharedEndpoints.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_s3outposts_ListSharedEndpoints.html) **
- **描述:** 授予列示端点的权限
- **访问级别:** 列表
- **资源类型(\* 为必需):**
- **条件键:**
- **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_PutAccessPointPolicy.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_PutAccessPointPolicy.html) **
- **描述:** 授予权限以将访问策略与指定访问点关联
- **访问级别:** Permissions management
- **资源类型(\* 为必需):** [#amazons3onoutposts-accesspoint](#amazons3onoutposts-accesspoint) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_DataAccessPointAccount](#amazons3onoutposts-s3-outposts_DataAccessPointAccount)
[#amazons3onoutposts-s3-outposts_DataAccessPointArn](#amazons3onoutposts-s3-outposts_DataAccessPointArn)
[#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin](#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin)
[#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_PutBucketPolicy.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_PutBucketPolicy.html) **
- **描述:** 授予权限以在存储桶上添加或替换存储桶策略
- **访问级别:** Permissions management
- **资源类型(\* 为必需):** [#amazons3onoutposts-bucket](#amazons3onoutposts-bucket) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_PutBucketTagging.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_PutBucketTagging.html) **
- **描述:** 授予权限以向现有 Amazon S3 存储桶添加一组标签
- **访问级别:** 标记
- **资源类型(\* 为必需):** [#amazons3onoutposts-bucket](#amazons3onoutposts-bucket) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutBucketVersioning.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutBucketVersioning.html) **
- **描述:** 授予权限以设置现有 Amazon S3 存储桶的版本控制状态
- **访问级别:** 写入
- **资源类型(\* 为必需):** [#amazons3onoutposts-bucket](#amazons3onoutposts-bucket) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_PutBucketLifecycleConfiguration.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_PutBucketLifecycleConfiguration.html) **
- **描述:** 授予权限以便为存储桶创建新的生命周期配置或替换现有生命周期配置
- **访问级别:** Write
- **资源类型(\* 为必需):** [#amazons3onoutposts-bucket](#amazons3onoutposts-bucket) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutObject.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutObject.html) **
- **描述:** 授予权限以将对象添加到存储桶
- **访问级别:** Write
- **资源类型(\* 为必需):** [#amazons3onoutposts-object](#amazons3onoutposts-object) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_DataAccessPointAccount](#amazons3onoutposts-s3-outposts_DataAccessPointAccount)
[#amazons3onoutposts-s3-outposts_DataAccessPointArn](#amazons3onoutposts-s3-outposts_DataAccessPointArn)
[#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin](#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin)
[#amazons3onoutposts-s3-outposts_RequestObjectTag_key](#amazons3onoutposts-s3-outposts_RequestObjectTag_key)
[#amazons3onoutposts-s3-outposts_RequestObjectTagKeys](#amazons3onoutposts-s3-outposts_RequestObjectTagKeys)
[#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-acl](#amazons3onoutposts-s3-outposts_x-amz-acl)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256)
[#amazons3onoutposts-s3-outposts_x-amz-copy-source](#amazons3onoutposts-s3-outposts_x-amz-copy-source)
[#amazons3onoutposts-s3-outposts_x-amz-metadata-directive](#amazons3onoutposts-s3-outposts_x-amz-metadata-directive)
[#amazons3onoutposts-s3-outposts_x-amz-server-side-encryption](#amazons3onoutposts-s3-outposts_x-amz-server-side-encryption)
[#amazons3onoutposts-s3-outposts_x-amz-storage-class](#amazons3onoutposts-s3-outposts_x-amz-storage-class) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutObjectAcl.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutObjectAcl.html) **
- **描述:** 授予权限以设置对存储桶中已存在的对象的访问控制列表 (ACL) 权限
- **访问级别:** Permissions management
- **资源类型(\* 为必需):** [#amazons3onoutposts-object](#amazons3onoutposts-object) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_DataAccessPointAccount](#amazons3onoutposts-s3-outposts_DataAccessPointAccount)
[#amazons3onoutposts-s3-outposts_DataAccessPointArn](#amazons3onoutposts-s3-outposts_DataAccessPointArn)
[#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin](#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin)
[#amazons3onoutposts-s3-outposts_ExistingObjectTag_key](#amazons3onoutposts-s3-outposts_ExistingObjectTag_key)
[#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-acl](#amazons3onoutposts-s3-outposts_x-amz-acl)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256)
[#amazons3onoutposts-s3-outposts_x-amz-storage-class](#amazons3onoutposts-s3-outposts_x-amz-storage-class) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutObjectTagging.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutObjectTagging.html) **
- **描述:** 授予权限以将提供的标签集设置为存储桶中已存在的对象
- **访问级别:** 标签
- **资源类型(\* 为必需):** [#amazons3onoutposts-object](#amazons3onoutposts-object) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_DataAccessPointAccount](#amazons3onoutposts-s3-outposts_DataAccessPointAccount)
[#amazons3onoutposts-s3-outposts_DataAccessPointArn](#amazons3onoutposts-s3-outposts_DataAccessPointArn)
[#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin](#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin)
[#amazons3onoutposts-s3-outposts_ExistingObjectTag_key](#amazons3onoutposts-s3-outposts_ExistingObjectTag_key)
[#amazons3onoutposts-s3-outposts_RequestObjectTag_key](#amazons3onoutposts-s3-outposts_RequestObjectTag_key)
[#amazons3onoutposts-s3-outposts_RequestObjectTagKeys](#amazons3onoutposts-s3-outposts_RequestObjectTagKeys)
[#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutObjectTagging.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutObjectTagging.html) **
- **描述:** 授予权限以便为对象的特定版本设置提供的标签集
- **访问级别:** 标记
- **资源类型(\* 为必需):** [#amazons3onoutposts-object](#amazons3onoutposts-object) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_DataAccessPointAccount](#amazons3onoutposts-s3-outposts_DataAccessPointAccount)
[#amazons3onoutposts-s3-outposts_DataAccessPointArn](#amazons3onoutposts-s3-outposts_DataAccessPointArn)
[#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin](#amazons3onoutposts-s3-outposts_AccessPointNetworkOrigin)
[#amazons3onoutposts-s3-outposts_ExistingObjectTag_key](#amazons3onoutposts-s3-outposts_ExistingObjectTag_key)
[#amazons3onoutposts-s3-outposts_RequestObjectTag_key](#amazons3onoutposts-s3-outposts_RequestObjectTag_key)
[#amazons3onoutposts-s3-outposts_RequestObjectTagKeys](#amazons3onoutposts-s3-outposts_RequestObjectTagKeys)
[#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_versionid](#amazons3onoutposts-s3-outposts_versionid)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_PutBucketReplication.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_control_PutBucketReplication.html) **
- **描述:** 授予权限以创建新的复制配置或替换现有复制配置
- **访问级别:** 写入
- **资源类型(\* 为必需):** [#amazons3onoutposts-bucket](#amazons3onoutposts-bucket) / **条件键:** / **相关操作:** iam:PassRole
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteObject.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_DeleteObject.html) **
- **描述:** 授予权限以将删除标记复制到目标存储桶
- **访问级别:** 写入
- **资源类型(\* 为必需):** [#amazons3onoutposts-object](#amazons3onoutposts-object) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutObject.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutObject.html) **
- **描述:** 授予权限以将对象和对象标签复制到目标存储桶
- **访问级别:** 写入
- **资源类型(\* 为必需):** [#amazons3onoutposts-object](#amazons3onoutposts-object) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256)
[#amazons3onoutposts-s3-outposts_x-amz-server-side-encryption](#amazons3onoutposts-s3-outposts_x-amz-server-side-encryption) / **相关操作:**
- ** [https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutObjectTagging.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_PutObjectTagging.html) **
- **描述:** 授予权限以将对象标签复制到目标存储桶
- **访问级别:** 标签
- **资源类型(\* 为必需):** [#amazons3onoutposts-object](#amazons3onoutposts-object) / **条件键:** / **相关操作:**
- **资源类型(\* 为必需):** / **条件键:** [#amazons3onoutposts-s3-outposts_authType](#amazons3onoutposts-s3-outposts_authType)
[#amazons3onoutposts-s3-outposts_signatureAge](#amazons3onoutposts-s3-outposts_signatureAge)
[#amazons3onoutposts-s3-outposts_signatureversion](#amazons3onoutposts-s3-outposts_signatureversion)
[#amazons3onoutposts-s3-outposts_x-amz-content-sha256](#amazons3onoutposts-s3-outposts_x-amz-content-sha256) / **相关操作:**
## Amazon S3 on Outposts 定义的资源类型
以下资源类型是由该服务定义的,可以在 IAM 权限策略语句的 `Resource` 元素中使用这些资源类型。[操作表](#amazons3onoutposts-actions-as-permissions)中的每个操作指定了可以使用该操作指定的资源类型。您也可以在策略中包含条件键,从而定义资源类型。这些键显示在资源类型表的最后一列。有关下表中各列的详细信息,请参阅[资源类型表](reference_policies_actions-resources-contextkeys.html#resources_table)。
****
| 资源类型 | ARN | 条件键 |
| --- | --- | --- |
| [https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-points.html](https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-points.html) | arn:${Partition}:s3-outposts:${Region}:${Account}:outpost/${OutpostId}/accesspoint/${AccessPointName} | |
| [https://docs.aws.amazon.com/AmazonS3/latest/userguide/UsingBucket.html](https://docs.aws.amazon.com/AmazonS3/latest/userguide/UsingBucket.html) | arn:${Partition}:s3-outposts:${Region}:${Account}:outpost/${OutpostId}/bucket/${BucketName} | |
| [https://docs.aws.amazon.com/AmazonS3/latest/userguide/outposts-endpoints.html](https://docs.aws.amazon.com/AmazonS3/latest/userguide/outposts-endpoints.html) | arn:${Partition}:s3-outposts:${Region}:${Account}:outpost/${OutpostId}/endpoint/${EndpointId} | |
| [https://docs.aws.amazon.com/AmazonS3/latest/userguide/UsingObjects.html](https://docs.aws.amazon.com/AmazonS3/latest/userguide/UsingObjects.html) | arn:${Partition}:s3-outposts:${Region}:${Account}:outpost/${OutpostId}/bucket/${BucketName}/object/${ObjectName} | |
## Amazon S3 on Outposts 的条件键
Amazon S3 on Outposts 定义以下可以在 IAM policy 的 `Condition` 元素中使用的条件键。您可以使用这些键进一步细化应用策略语句的条件。有关下表中各列的详细信息,请参阅[条件键表](reference_policies_actions-resources-contextkeys.html#context_keys_table)。
要查看适用于所有服务的全局条件键,请参阅 [AWS 全局条件上下文键](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_condition-keys.html)。
****
| 条件键 | 描述 | 类型 |
| --- | --- | --- |
| [https://docs.aws.amazon.com/AmazonS3/latest/userguide/creating-access-points.html#access-points-policies](https://docs.aws.amazon.com/AmazonS3/latest/userguide/creating-access-points.html#access-points-policies) | 按网络源(Internet 或 VPC)筛选访问 | 字符串 |
| [https://docs.aws.amazon.com/AmazonS3/latest/userguide/creating-access-points.html#access-points-policies](https://docs.aws.amazon.com/AmazonS3/latest/userguide/creating-access-points.html#access-points-policies) | 按拥有接入点的 AWS 账户 ID 筛选访问权限 | 字符串 |
| s3-outposts:DataAccessPointArn | 按接入点 Amazon Resource Name(ARN)筛选访问 | 进行筛选 |
| [https://docs.aws.amazon.com/AmazonS3/latest/userguide/object-tagging.html#tagging-and-policies](https://docs.aws.amazon.com/AmazonS3/latest/userguide/object-tagging.html#tagging-and-policies) | 通过要求现有对象标签具有特定的标签键和值来筛选访问 | 字符串 |
| [https://docs.aws.amazon.com/AmazonS3/latest/userguide/object-tagging.html#tagging-and-policies](https://docs.aws.amazon.com/AmazonS3/latest/userguide/object-tagging.html#tagging-and-policies) | 通过限制对象上允许的标签键和值来筛选访问 | 字符串 |
| [https://docs.aws.amazon.com/AmazonS3/latest/userguide/object-tagging.html#tagging-and-policies](https://docs.aws.amazon.com/AmazonS3/latest/userguide/object-tagging.html#tagging-and-policies) | 通过限制对象上允许的标签键来筛选访问 | 字符串 |
| [https://docs.aws.amazon.com/AmazonS3/latest/API/bucket-policy-s3-sigv4-conditions.html](https://docs.aws.amazon.com/AmazonS3/latest/API/bucket-policy-s3-sigv4-conditions.html) | 通过将传入请求限制为特定身份验证方法来筛选访问 | 字符串 |
| [https://docs.aws.amazon.com/AmazonS3/latest/userguide/walkthrough1.html](https://docs.aws.amazon.com/AmazonS3/latest/userguide/walkthrough1.html) | 通过要求分隔符参数来筛选访问 | 字符串 |
| [https://docs.aws.amazon.com/AmazonS3/latest/userguide/amazon-s3-policy-keys.html#example-numeric-condition-operators](https://docs.aws.amazon.com/AmazonS3/latest/userguide/amazon-s3-policy-keys.html#example-numeric-condition-operators) | 通过限制 ListBucket 请求中返回的最大密钥数来过滤访问权限 | 数值 |
| [https://docs.aws.amazon.com/AmazonS3/latest/userguide/amazon-s3-policy-keys.html#condition-key-bucket-ops-2](https://docs.aws.amazon.com/AmazonS3/latest/userguide/amazon-s3-policy-keys.html#condition-key-bucket-ops-2) | 按键名称前缀筛选访问 | 字符串 |
| [https://docs.aws.amazon.com/AmazonS3/latest/API/bucket-policy-s3-sigv4-conditions.html](https://docs.aws.amazon.com/AmazonS3/latest/API/bucket-policy-s3-sigv4-conditions.html) | 通过标识签名在经过身份验证的请求中有效的时间长度(以毫秒为单位)来筛选访问 | 数值 |
| [https://docs.aws.amazon.com/AmazonS3/latest/API/bucket-policy-s3-sigv4-conditions.html](https://docs.aws.amazon.com/AmazonS3/latest/API/bucket-policy-s3-sigv4-conditions.html) | 通过识别经过身份验证的请求所支持的 AWS 签名版本来筛选访问权限 | 字符串 |
| [https://docs.aws.amazon.com/AmazonS3/latest/userguide/amazon-s3-policy-keys.html#getobjectversion-limit-access-to-specific-version-3](https://docs.aws.amazon.com/AmazonS3/latest/userguide/amazon-s3-policy-keys.html#getobjectversion-limit-access-to-specific-version-3) | 按特定对象版本筛选访问权限 | 字符串 |
| [https://docs.aws.amazon.com/AmazonS3/latest/userguide/acl-overview.html#permissions](https://docs.aws.amazon.com/AmazonS3/latest/userguide/acl-overview.html#permissions) | 通过要求在请求中使用带有特定标准 ACL 的 x-amz-acl 标头来筛选访问 | 字符串 |
| [https://docs.aws.amazon.com/AmazonS3/latest/API/bucket-policy-s3-sigv4-conditions.html](https://docs.aws.amazon.com/AmazonS3/latest/API/bucket-policy-s3-sigv4-conditions.html) | 通过禁止存储桶中的未签名内容来筛选访问 | 字符串 |
| [https://docs.aws.amazon.com/AmazonS3/latest/userguide/amazon-s3-policy-keys.html#putobject-limit-copy-source-3](https://docs.aws.amazon.com/AmazonS3/latest/userguide/amazon-s3-policy-keys.html#putobject-limit-copy-source-3) | 通过将复制源限制为特定的存储桶、前缀或对象来筛选访问 | 字符串 |
| [https://docs.aws.amazon.com/AmazonS3/latest/API/API_CopyObject.html](https://docs.aws.amazon.com/AmazonS3/latest/API/API_CopyObject.html) | 通过在复制对象时启用对象元数据行为的实施(COPY 或 REPLACE)来筛选访问 | 字符串 |
| [https://docs.aws.amazon.com/AmazonS3/latest/userguide/UsingServerSideEncryption.html](https://docs.aws.amazon.com/AmazonS3/latest/userguide/UsingServerSideEncryption.html) | 通过要求服务器端加密来筛选访问 | 字符串 |
| [https://docs.aws.amazon.com/AmazonS3/latest/userguide/storage-class-intro.html#sc-howtoset](https://docs.aws.amazon.com/AmazonS3/latest/userguide/storage-class-intro.html#sc-howtoset) | 按存储类筛选访问权限 | 字符串 |