How can I set a Google Cloud Storage object to be publicly visible when uploading it via a signed URL?

manpreet Best Answer 2 years ago

I'm following this guide and have a solution which is uploading objects to Google Cloud storage using the signed URL and the XML REST API (e.g. curl -v -X POST $URL -F "file=@test.jpg").

Unfortunately, I cannot figure out how to set the ACL on these objects such that they'll be publicly visible. I have tried using the x-goog-acl header (and various capitalizations in both the signed URL and request headers) and the acl query parameter without success.

I assume this must be possible, as it's referenced in the API documentation and all of the client libraries allow you to do this. I have a feeling I'm screwing something up in my URL signing method (even though the header appears in the signed URL: https://storage.googleapis.com/foo/test.jpg?X-Goog-Algorithm=GOOG4-RSA-SHA256&X-Goog-Credential=STUFF&X-Goog-SignedHeaders=host%3Bx-goog-acl&acl=public-read&MORE-STUFF), but I'm sort of at a loss.