报错信息
com.aliyun.oss.OSSException: You have no right to access this object because of bucket acl.
[ErrorCode]: AccessDenied
[RequestId]: xxxxx
[HostId]: xxx.oss-cn-xxx.aliyuncs.com
[ResponseError]:
<?xml version="1.0" encoding="UTF-8"?>
<Error>
<Code>AccessDenied</Code>
<Message>You have no right to access this object because of bucket acl.</Message>
<RequestId>xxxxx</RequestId>
<HostId>xxx.oss-cn-xxx.aliyuncs.com</HostId>
</Error>
at com.aliyun.oss.common.utils.ExceptionFactory.createOSSException(ExceptionFactory.java:100)
at com.aliyun.oss.internal.OSSErrorResponseHandler.handle(OSSErrorResponseHandler.java:70)
at com.aliyun.oss.common.comm.ServiceClient.handleResponse(ServiceClient.java:257)
at com.aliyun.oss.common.comm.ServiceClient.sendRequestImpl(ServiceClient.java:140)
at com.aliyun.oss.common.comm.ServiceClient.sendRequest(ServiceClient.java:70)
at com.aliyun.oss.internal.OSSOperation.send(OSSOperation.java:83)
at com.aliyun.oss.internal.OSSOperation.doOperation(OSSOperation.java:145)
at com.aliyun.oss.internal.OSSOperation.doOperation(OSSOperation.java:102)
at com.aliyun.oss.internal.OSSObjectOperation.writeObjectInternal(OSSObjectOperation.java:1125)
at com.aliyun.oss.internal.OSSObjectOperation.putObject(OSSObjectOperation.java:130)
at com.aliyun.oss.OSSClient.putObject(OSSClient.java:491)
at com.aliyun.oss.OSSClient.putObject(OSSClient.java:475)
解决方法
这是由于你用的 AccessKey 对应的用户没有 OSS 权限导致的,需要增加 OSS 权限:访问控制 -> 用户 -> 权限管理 -> 添加权限
-
点击侧边栏菜单进入 “访问控制”
如果没有,可以通过右边的搜索框查询
-
进入“用户”菜单
-
添加权限
从你的用户点进去,给该用户添加 OSS 权限
添加这个权限即可:AliyunOSSFullAccess
自定义权限
如果你的 OSS 做了精细权限控制,那么需要自定义权限策略。
比如需要控制该用户只能访问 my-test 这个 bucket
- 先定义一个权限策略:oss-controller-test
策略脚本如下:
{
"Version": "1",
"Statement": [
{
"Effect": "Allow",
"Action": "oss:*",
"Resource": [
"acs:oss:*:*:my-test",
"acs:oss:*:*:my-test/*"
]
}
]
}
- 给用户添加这个“自定义权限“:oss-controller-test