{
	"id": "33a7a9c4-6d5c-40da-96f0-657d1d909f1d",
	"created_at": "2026-04-06T00:09:10.572441Z",
	"updated_at": "2026-04-10T13:11:33.350819Z",
	"deleted_at": null,
	"sha1_hash": "6ddf22ac107649325a422007095ca5424a4c3eaa",
	"title": "GetBucketAcl - Amazon Simple Storage Service",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 84466,
	"plain_text": "GetBucketAcl - Amazon Simple Storage Service\r\nArchived: 2026-04-05 17:50:24 UTC\r\nNote\r\nThis operation is not supported for directory buckets.\r\nThis implementation of the GET action uses the acl subresource to return the access control list (ACL) of a\r\nbucket. To use GET to return the ACL of the bucket, you must have the READ_ACP access to the bucket. If\r\nREAD_ACP permission is granted to the anonymous user, you can return the ACL of the bucket without using an\r\nauthorization header.\r\nWhen you use this API operation with an access point, provide the alias of the access point in place of the bucket\r\nname.\r\nWhen you use this API operation with an Object Lambda access point, provide the alias of the Object Lambda\r\naccess point in place of the bucket name. If the Object Lambda access point alias in a request is not valid, the error\r\ncode InvalidAccessPointAliasError is returned. For more information about InvalidAccessPointAliasError ,\r\nsee List of Error Codes.\r\nNote\r\nIf your bucket uses the bucket owner enforced setting for S3 Object Ownership, requests to read ACLs are still\r\nsupported and return the bucket-owner-full-control ACL with the owner being the account that created the\r\nbucket. For more information, see Controlling object ownership and disabling ACLs in the Amazon S3 User\r\nGuide.\r\nImportant\r\nYou must URL encode any signed header values that contain spaces. For example, if your header value is my\r\nfile.txt , containing two spaces after my , you must URL encode this value to my%20%20file.txt .\r\nThe following operations are related to GetBucketAcl :\r\nListObjects\r\nRequest Syntax\r\nGET /?acl HTTP/1.1\r\nHost: Bucket .s3.amazonaws.com\r\nx-amz-expected-bucket-owner: ExpectedBucketOwner\r\nhttps://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketAcl.html\r\nPage 1 of 4\n\nURI Request Parameters\r\nThe request uses the following URI parameters.\r\nBucket\r\nSpecifies the S3 bucket whose ACL is being requested.\r\nWhen you use this API operation with an access point, provide the alias of the access point in place of the\r\nbucket name.\r\nWhen you use this API operation with an Object Lambda access point, provide the alias of the Object\r\nLambda access point in place of the bucket name. If the Object Lambda access point alias in a request is\r\nnot valid, the error code InvalidAccessPointAliasError is returned. For more information about\r\nInvalidAccessPointAliasError , see List of Error Codes.\r\nRequired: Yes\r\nx-amz-expected-bucket-owner\r\nThe account ID of the expected bucket owner. If the account ID that you provide does not match the actual\r\nowner of the bucket, the request fails with the HTTP status code 403 Forbidden (access denied).\r\nRequest Body\r\nThe request does not have a request body.\r\nResponse Syntax\r\nHTTP/1.1 200\r\n\u003c?xml version=\"1.0\" encoding=\"UTF-8\"?\u003e\r\n\u003cAccessControlPolicy\u003e\r\n \u003cOwner\u003e\r\n \u003cDisplayName\u003estring\u003c/DisplayName\u003e\r\n \u003cID\u003estring\u003c/ID\u003e\r\n \u003c/Owner\u003e\r\n \u003cAccessControlList\u003e\r\n \u003cGrant\u003e\r\n \u003cGrantee\u003e\r\n \u003cDisplayName\u003estring\u003c/DisplayName\u003e\r\n \u003cEmailAddress\u003estring\u003c/EmailAddress\u003e\r\n \u003cID\u003estring\u003c/ID\u003e\r\n \u003cxsi:type\u003estring\u003c/xsi:type\u003e\r\n \u003cURI\u003estring\u003c/URI\u003e\r\n \u003c/Grantee\u003e\r\n \u003cPermission\u003estring\u003c/Permission\u003e\r\n \u003c/Grant\u003e\r\nhttps://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketAcl.html\r\nPage 2 of 4\n\n\u003c/AccessControlList\u003e\r\n\u003c/AccessControlPolicy\u003e\r\nResponse Elements\r\nIf the action is successful, the service sends back an HTTP 200 response.\r\nThe following data is returned in XML format by the service.\r\nAccessControlPolicy\r\nRoot level tag for the AccessControlPolicy parameters.\r\nRequired: Yes\r\nGrants\r\nA list of grants.\r\nType: Array of Grant data types\r\nOwner\r\nContainer for the bucket owner's ID.\r\nType: Owner data type\r\nExamples\r\nSample Request\r\nThe following request returns the ACL of the specified bucket.\r\nGET ?acl HTTP/1.1\r\nHost: bucket.s3.\u003cRegion\u003e.amazonaws.com\r\nDate: Wed, 28 Oct 2009 22:32:00 GMT\r\nAuthorization: authorization string\r\n \r\nSample Response\r\nHTTP/1.1 200 OK\r\nx-amz-id-2: eftixk72aD6Ap51TnqcoF8eFidJG9Z/2mkiDFu8yU9AS1ed4OpIszj7UDNEHGran\r\nx-amz-request-id: 318BC8BC148832E5\r\nDate: Wed, 28 Oct 2009 22:32:00 GMT\r\nLast-Modified: Sun, 1 Jan 2006 12:00:00 GMT\r\nContent-Length: 124\r\nhttps://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketAcl.html\r\nPage 3 of 4\n\nContent-Type: text/plain\r\nConnection: close\r\nServer: AmazonS3\r\n\u003cAccessControlPolicy\u003e\r\n \u003cOwner\u003e\r\n \u003cID\u003e75aa57f09aa0c8caeab4f8c24e99d10f8e7faeebf76c078efc7c6caea54ba06a\u003c/ID\u003e\r\n \u003c/Owner\u003e\r\n \u003cAccessControlList\u003e\r\n \u003cGrant\u003e\r\n \u003cGrantee xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\"\r\nxsi:type=\"CanonicalUser\"\u003e\r\n \u003cID\u003e75aa57f09aa0c8caeab4f8c24e99d10f8e7faeebf76c078efc7c6caea54ba06a\u003c/ID\u003e\r\n \u003c/Grantee\u003e\r\n \u003cPermission\u003eFULL_CONTROL\u003c/Permission\u003e\r\n \u003c/Grant\u003e\r\n \u003c/AccessControlList\u003e\r\n\u003c/AccessControlPolicy\u003e\r\n \r\nSee Also\r\nFor more information about using this API in one of the language-specific AWS SDKs, see the following:\r\nAWS Command Line Interface V2\r\nAWS SDK for .NET V4\r\nAWS SDK for C++\r\nAWS SDK for Go v2\r\nAWS SDK for Java V2\r\nAWS SDK for JavaScript V3\r\nAWS SDK for Kotlin\r\nAWS SDK for PHP V3\r\nAWS SDK for Python\r\nAWS SDK for Ruby V3\r\nSource: https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketAcl.html\r\nhttps://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketAcl.html\r\nPage 4 of 4",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"MITRE"
	],
	"origins": [
		"web"
	],
	"references": [
		"https://docs.aws.amazon.com/AmazonS3/latest/API/API_GetBucketAcl.html"
	],
	"report_names": [
		"API_GetBucketAcl.html"
	],
	"threat_actors": [],
	"ts_created_at": 1775434150,
	"ts_updated_at": 1775826693,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/6ddf22ac107649325a422007095ca5424a4c3eaa.pdf",
		"text": "https://archive.orkl.eu/6ddf22ac107649325a422007095ca5424a4c3eaa.txt",
		"img": "https://archive.orkl.eu/6ddf22ac107649325a422007095ca5424a4c3eaa.jpg"
	}
}