To use a custom domain name to access Object Storage Service (OSS) resources over HTTPS, you must purchase an SSL certificate and host your certificate in OSS. For more information, see Host SSL certificates.
By default, authorized users can access OSS resources over both HTTP and HTTPS. If a bucket owner whose UID is 175708322470**** wants anonymous users to access resources in the examplebucket bucket over HTTPS, configure the following bucket policy by specifying policy syntax:
{
"Version": "1",
"Statement": [{
"Effect": "Deny",
"Action": [
"oss:*"
],
"Principal": [
"*"
],
"Resource": [
"acs:oss:*:175708322470****:examplebucket",
"acs:oss:*:175708322470****:examplebucket/*"
],
"Condition": {
"Bool": {
"acs:SecureTransport": [
"false"
]
}
}
}
]
}
For more information about elements involved in policy syntax, see Overview.
For more information about bucket policies, see Configure bucket policies to authorize other users to access OSS resources.