检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
检测到您已登录华为云国际站账号,为了您更好的体验,建议您访问国际站服务网站 https://www.huaweicloud.com/intl/zh-cn
不再显示此消息
An uploaded or copied object has a unique ETag after being encrypted using MD5. Restrictions: If an object is encrypted using server-side encryption, the ETag is not the MD5 value of the object. Value range: The value must contain 32 characters.
Restrictions: If an object is encrypted using server-side encryption, the ETag is not the MD5 value of the object. Value range: The value must contain 32 characters. Default value: None VersionId string Explanation: Object version ID.
If an object is encrypted with SSE-KMS, the ACL configured for it is not in effect in the cross-tenant case. For more information, see ACLs.
When you download the encrypted object, OBS decrypts the ciphertext on the server and then returns the plaintext to you. There are three server-side encryption methods: SSE-KMS, SSE-C, and SSE-OBS. For more information, see Server-Side Encryption Overview.
Code Example: Downloading an Object Encrypted Using SSE-C This example uses HttpMethodEnum.GET to download an object encrypted using SSE-C.
If a versioned object is encrypted with SSE-KMS, the ACL configured for it is not in effect in the cross-tenant case. You can set an access control policy when uploading a versioned object or call an ACL API to modify or obtain the ACL of an existing object.
Objects created by the upload and copy operations are assigned unique ETags after being encrypted using MD5. Restrictions: If an object is encrypted using server-side encryption, the ETag is not the MD5 value of the object. Size number Explanation: Object size, in bytes.
Objects created by the upload and copy operations have unique ETags after being encrypted using MD5. Restrictions: If an object is encrypted using server-side encryption, the ETag is not the MD5 value of the object. Value range: The value must contain 32 characters.
The object cannot be decrypted due to incorrect encryption header carried when downloading the SSE-C encrypted object.
Restrictions: If an object is encrypted using server-side encryption, the ETag is not the MD5 value of the object. SseKms string Explanation: SSE-KMS is used for encrypting objects on the server side. SseKmsKey string Explanation: ID of the KMS master key when SSE-KMS is used.
Restrictions: If an object is encrypted using server-side encryption, the ETag is not the MD5 value of the object. SseKms string Explanation: SSE-KMS is used for encrypting objects on the server side. SseKmsKey string Explanation: ID of the KMS master key when SSE-KMS is used.
Restrictions: If an object is encrypted using server-side encryption, the ETag is not the MD5 value of the object. SseKms string Explanation: SSE-KMS is used for encrypting objects on the server side. SseKmsKey string Explanation: ID of the KMS master key when SSE-KMS is used.
Restrictions: The value is encrypted by MD5 and then encoded by Base64, for example, 4XvB3tbNTN+tIEVa0/fGaQ==. Default value: None encoding_type str Explanation: Encoding type for Key in the response.
Restrictions: If an object is encrypted using server-side encryption, the ETag is not the MD5 value of the object.
Objects are encrypted using SSE-KMS on the server side. Value range: kms. For details, see Table 8. Default value: None sseAlgorithm SSEAlgorithmEnum No Explanation: Encryption algorithm. Restrictions: Only KMS is supported. Value range: See Table 9.
If an object is encrypted with SSE-KMS, the ACL configured for it is not in effect in the cross-tenant case. For more information, see ACLs. If you have any questions during development, post them on the Issues page of GitHub.
Restrictions: If an object is encrypted using server-side encryption, the ETag is not the MD5 value of the object. Value range: The value must contain 32 characters.
Restrictions: If an object is encrypted using server-side encryption, the ETag is not the MD5 value of the object. Value range: The value must contain 32 characters. Default value: None expiration const char * No Explanation: Expiration details of the object.
Restrictions: If an object is encrypted using server-side encryption, the ETag is not the MD5 value of the object. Value range: None Default value: None callback_data void * Yes Explanation: The pointer to the custom callback data.
Function This API configures server-side encryption for objects, so that they will be encrypted or decrypted when you upload them to or download them from a bucket. The encryption and decryption happen on the server side.
