Note: if you modify the ACLs of a bucket the ACLs will take priority over the bucket policy. Do not use ACLs on a bucket you intend to use bucket policies with
If you are looking to restrict access of buckets to specific users, the best method is to utilize the ability to create bucket policies.
If you are unfamiliar with how to write bucket policies you can try to use a bucket policy generator like the link below.
just make sure to utilize your wasabi user bucket arns. Where to get those are explained below
1. Click on the storage tab of the wasabi console and click the three dots to the right of the bucket you want to give permissions to.
2. select "settings" and click the "policies" tab
you are then brought to a page with a text box that accepts JSON code.
Enter in the bucket policy of your choosing (for example, pasting one generated in a policy generator)
In the example below I allowed a sub-user admin as well as the root account to access the bucket "policytest
The bucket arn can be found above the code entry form.
The user arn numbers above are found for sub users in the users tab found in the console by clicking the "IAM" tab at the top and selecting the "users" tab on the left.
For groups arn numbers, click the "groups" tab and select the group of your choice to view the arn.
Root users arns can be found my clicking the three dots icon at the top right of the root users console and selecting "my profile" the arn can be found in the resulting window.
Once saved, the code should prevent any users but those granted access from accessing the bucket.
any user with console access will have the ability to see your list of buckets. You can restrict their access to this view via API using tailored user policies.
users with admin access can still modify the bucket policy so its important to consider that when thinking about granting users permissions.