Cloud Storage Client - Class Bucket (1.48.6)

Represents a connection to Cloud Storage. This object is created by StorageClient, and should not be instantiated outside of this client.

The bucket's name.

[optional] The bucket's metadata.

Configuration options.

The data to be uploaded.

Configuration options.

The name of the destination. Required when data is of type string or null.

Indicates whether or not the upload will be performed in a resumable fashion.

Indicates whether or not validation will be applied using md5 or crc32c hashing functionality. If enabled, and the calculated hash does not match that of the upstream server, the upload will be rejected. Available options are true, false, md5 and crc32. If true, either md5 or crc32c will be chosen based on your platform. If false, no validation hash will be sent. Choose either md5 or crc32 to force a hash method regardless of performance implications. Defaults to true.

If provided the upload will be done in chunks. The size must be in multiples of 262144 bytes. With chunking you have increased reliability at the risk of higher overhead. It is recommended to not use chunking.

If provided together with $resumable == true the given callable function/method will be called after each successfully uploaded chunk. The callable function/method will receive the number of uploaded bytes after each uploaded chunk as a parameter to this callable. It's useful if you want to create a progress bar when using resumable upload type together with $chunkSize parameter. If $chunkSize is not set the callable function/method will be called only once after the successful file upload.

Predefined ACL to apply to the object. Acceptable values include, "authenticatedRead", "bucketOwnerFullControl", "bucketOwnerRead", "private", "projectPrivate", and "publicRead".

The full list of available options are outlined at the JSON API docs.

The full list of available options are outlined at the JSON API docs.

A base64 encoded AES-256 customer-supplied encryption key. If you would prefer to manage encryption utilizing the Cloud Key Management Service (KMS) please use the $metadata.kmsKeyName setting. Please note if using KMS the key ring must use the same location as the bucket.

Base64 encoded SHA256 hash of the customer-supplied encryption key. This value will be calculated from the encryptionKey on your behalf if not provided, but for best performance it is recommended to pass in a cached version of the already calculated SHA.

The data to be uploaded.

Configuration options.

The name of the destination. Required when data is of type string or null.

Indicates whether or not validation will be applied using md5 or crc32c hashing functionality. If enabled, and the calculated hash does not match that of the upstream server, the upload will be rejected. Available options are true, false, md5 and crc32. If true, either md5 or crc32c will be chosen based on your platform. If false, no validation hash will be sent. Choose either md5 or crc32 to force a hash method regardless of performance implications. Defaults to true.

Predefined ACL to apply to the object. Acceptable values include, "authenticatedRead", "bucketOwnerFullControl", "bucketOwnerRead", "private", "projectPrivate", and "publicRead".

The full list of available options are outlined at the JSON API docs.

A base64 encoded AES-256 customer-supplied encryption key. If you would prefer to manage encryption utilizing the Cloud Key Management Service (KMS) please use the $metadata.kmsKeyName setting. Please note if using KMS the key ring must use the same location as the bucket.

Base64 encoded SHA256 hash of the customer-supplied encryption key. This value will be calculated from the encryptionKey on your behalf if not provided, but for best performance it is recommended to pass in a cached version of the already calculated SHA.

The data to be uploaded.

Configuration options.

The name of the destination. Required when data is of type string or null.

Indicates whether or not validation will be applied using md5 hashing functionality. If true and the calculated hash does not match that of the upstream server the upload will be rejected.

Predefined ACL to apply to the object. Acceptable values include "authenticatedRead", "bucketOwnerFullControl", "bucketOwnerRead", "private", "projectPrivate", and "publicRead".

The available options for metadata are outlined at the JSON API docs.

A base64 encoded AES-256 customer-supplied encryption key. If you would prefer to manage encryption utilizing the Cloud Key Management Service (KMS) please use the $metadata['kmsKeyName'] setting. Please note if using KMS the key ring must use the same location as the bucket.

Base64 encoded SHA256 hash of the customer-supplied encryption key. This value will be calculated from the encryptionKey on your behalf if not provided, but for best performance it is recommended to pass in a cached version of the already calculated SHA.

The given callable function/method will be called after each successfully uploaded chunk. The callable function/method will receive the number of uploaded bytes after each uploaded chunk as a parameter to this callable. It's useful if you want to create a progress bar when using resumable upload type together with $chunkSize parameter. If $chunkSize is not set the callable function/method will be called only once after the successful file upload.

The data to be uploaded.

Configuration options.

The name of the destination. Required when data is of type string or null.

Indicates whether or not validation will be applied using md5 hashing functionality. If true and the calculated hash does not match that of the upstream server the upload will be rejected.

If provided the upload will be done in chunks. The size must be in multiples of 262144 bytes. With chunking you have increased reliability at the risk of higher overhead. It is recommended to not use chunking.

Predefined ACL to apply to the object. Acceptable values include, "authenticatedRead", "bucketOwnerFullControl", "bucketOwnerRead", "private", "projectPrivate", and "publicRead".

The available options for metadata are outlined at the JSON API docs.

A base64 encoded AES-256 customer-supplied encryption key. If you would prefer to manage encryption utilizing the Cloud Key Management Service (KMS) please use the $metadata['kmsKeyName'] setting. Please note if using KMS the key ring must use the same location as the bucket.

Base64 encoded SHA256 hash of the customer-supplied encryption key. This value will be calculated from the encryptionKey on your behalf if not provided, but for best performance it is recommended to pass in a cached version of the already calculated SHA.

The name of the object to request.

Configuration options.

Request a specific revision of the object.

A base64 encoded AES-256 customer-supplied encryption key. It will be neccesary to provide this when a key was used during the object's creation.

Base64 encoded SHA256 hash of the customer-supplied encryption key. This value will be calculated from the encryptionKey on your behalf if not provided, but for best performance it is recommended to pass in a cached version of the already calculated SHA.

If true, returns the metadata of the soft-deleted object. If true, generation must also be specified, and alt=media cannot be specified.

The name of the object to restore.

Request a specific generation of the object.

Configuration Options.

Must be specified when getting a soft-deleted object from an HNS-enabled bucket that has a name and generation conflict with another object in the same bucket.

Makes the operation conditional on whether the object's current generation matches the given value.

Makes the operation conditional on whether the object's current generation matches the given value.

If set, only restores if its metageneration matches this value.

If set, only restores if its metageneration does not match this value.

Configuration options.

Returns results in a directory-like mode. Results will contain only objects whose names, aside from the prefix, do not contain delimiter. Objects whose names, aside from the prefix, contain delimiter will have their name, truncated after the delimiter, returned in prefixes. Duplicate prefixes are omitted.

If true, will also include folders and managed folders (besides objects) in the returned prefixes. Only applicable if delimiter is set to '/'.

Maximum number of results to return per request. Defaults to 1000.

Limit the number of results returned in total. Defaults to 0 (return all results).

A previously-returned page token used to resume the loading of results from a specific point.

Filter results with this prefix.

Determines which properties to return. May be either "full" or "noAcl".

If true, lists all versions of an object as distinct results. Defaults to false.

Selector which will cause the response to only return the specified fields.

A glob pattern to filter results. The string value must be UTF-8 encoded. See: https://cloud.google.com/storage/docs/json_api/v1/objects/list#list-object-glob

The topic used to publish notifications.

Configuration options.

An optional list of additional attributes to attach to each Cloud PubSub message published for this notification subscription.

If present, only send notifications about listed event types. If empty, sent notifications for all event types. Acceptablue values include "OBJECT_FINALIZE", "OBJECT_METADATA_UPDATE", "OBJECT_DELETE" , "OBJECT_ARCHIVE".

If present, only apply this notification configuration to object names that begin with this prefix.

The desired content of the Payload. Acceptable values include "JSON_API_V1", "NONE". Defaults to "JSON_API_V1".

The ID of the notification to access.

Configuration options.

Limit the number of results returned in total. Defaults to 0 (return all results).

Configuration options.

If set, only deletes the bucket if its metageneration matches this value.

If set, only deletes the bucket if its metageneration does not match this value.

Configuration options.

Makes the return of the bucket metadata conditional on whether the bucket's current metageneration matches the given value.

Makes the return of the bucket metadata conditional on whether the bucket's current metageneration does not match the given value.

Predefined ACL to apply to the bucket. Acceptable values include, "authenticatedRead", "bucketOwnerFullControl", "bucketOwnerRead", "private", "projectPrivate", and "publicRead".

Apply a predefined set of default object access controls to this bucket. Acceptable values include, "authenticatedRead", "bucketOwnerFullControl", "bucketOwnerRead", "private", "projectPrivate", and "publicRead".

Determines which properties to return. May be either "full" or "noAcl".

Selector which will cause the response to only return the specified fields.

Access controls on the bucket.

The bucket's Cross-Origin Resource Sharing (CORS) configuration.

Default access controls to apply to new objects when no ACL is provided.

The bucket's lifecycle configuration.

The bucket's logging configuration, which defines the destination bucket and optional name prefix for the current bucket's logs.

The bucket's storage class. This defines how objects in the bucket are stored and determines the SLA and the cost of storage. Acceptable values include the following strings: "STANDARD", "NEARLINE", "COLDLINE" and "ARCHIVE". Legacy values including "MULTI_REGIONAL", "REGIONAL" and "DURABLE_REDUCED_AVAILABILITY" are also available, but should be avoided for new implementations. For more information, refer to the Storage Classes documentation. Defaults to "STANDARD".

The bucket's autoclass configuration. Buckets can have either StorageClass OLM rules or Autoclass, but not both. When Autoclass is enabled on a bucket, adding StorageClass OLM rules will result in failure. For more information, refer to Storage Autoclass

The bucket's versioning configuration.

The bucket's website configuration.

The bucket's billing configuration.

The Bucket labels. Labels are represented as an array of keys and values. To remove an existing label, set its value to null.

Encryption configuration used by default for newly inserted objects.

When true, newly created objects in this bucket will be retained indefinitely until an event occurs, signified by the hold's release.

Defines the retention policy for a bucket. In order to lock a retention policy, please see Bucket::lockRetentionPolicy().

The bucket's IAM configuration.

The objects to compose.

The name of the composed object.

Configuration options.

Predefined ACL to apply to the composed object. Acceptable values include, "authenticatedRead", "bucketOwnerFullControl", "bucketOwnerRead", "private", "projectPrivate", and "publicRead".

Metadata to apply to the composed object. The available options for metadata are outlined at the JSON API docs.

Makes the operation conditional on whether the object's current generation matches the given value.

Makes the operation conditional on whether the object's current metageneration matches the given value.

Configuration options.

If present, selects a specific soft-deleted version of this bucket instead of the live version. This parameter is required if softDeleted is set to true.

Makes the return of the bucket metadata conditional on whether the bucket's current metageneration matches the given value.

Makes the return of the bucket metadata conditional on whether the bucket's current metageneration does not match the given value.

Determines which properties to return. May be either "full" or "noAcl".

If true, returns the soft-deleted bucket. This parameter is required if generation is specified.

Configuration options.

If present, selects a specific soft-deleted version of this bucket instead of the live version. This parameter is required if softDeleted is set to true.

Makes the return of the bucket metadata conditional on whether the bucket's current metageneration matches the given value.

Makes the return of the bucket metadata conditional on whether the bucket's current metageneration does not match the given value.

Determines which properties to return. May be either "full" or "noAcl".

If true, returns the soft-deleted bucket. This parameter is required if generation is specified.

[optional] Configuration options.

[optional] File to try to write.

Configuration options.

Only locks the retention policy if the bucket's metageneration matches this value. If not provided the locally cached metageneration value will be used, otherwise an exception will be thrown.

Specifies when the URL will expire. May provide an instance of Google\Cloud\Core\Timestamp, http://php.net/datetimeimmutable, or a UNIX timestamp as an integer.

Configuration Options.

The CNAME for the bucket, for instance https://cdn.example.com. Defaults to https://storage.googleapis.com.

The MD5 digest value in base64. If you provide this, the client must provide this HTTP header with this same value in its request. If provided, take care to always provide this value as a base64 encoded string.

If you provide this value, the client must provide this HTTP header set to the same value.

If true, OpenSSL will be used regardless of whether phpseclib is available. Defaults to false.

If additional headers are provided, the server will check to make sure that the client provides matching values. Provide headers as a key/value array, where the key is the header name, and the value is an array of header values. Headers with multiple values may provide values as a simple array, or a comma-separated string. For a reference of allowed headers, see Reference Headers. Header values will be trimmed of leading and trailing spaces, multiple spaces within values will be collapsed to a single space, and line breaks will be replaced by an empty string. V2 Signed URLs may not provide x-goog-encryption-key or x-goog-encryption-key-sha256 headers.

A credentials fetcher instance.

[DEPRECATED] @deprecated This option is being deprecated because of a potential security risk. This option does not validate the credential configuration. The security risk occurs when a credential configuration is accepted from a source that is not under your control and used without validation on your side. If you know that you will be loading credential configurations of a specific type, it is recommended to create the credentials directly and configure them using the credentialsFetcher option instead. use Google\Auth\Credentials\ServiceAccountCredentials; $credentialsFetcher = new ServiceAccountCredentials($scopes, $json); This will ensure that an unexpected credential type with potential for malicious intent is not loaded unintentionally. You might still have to do validation for certain credential types. If you are loading your credential configuration from an untrusted source and have not mitigated the risks (e.g. by validating the configuration yourself), make these changes as soon as possible to prevent security risks to your environment. Regardless of the method used, it is always your responsibility to validate configurations received from external sources. @see https://cloud.google.com/docs/authentication/external/externally-sourced-credentials

[DEPRECATED] @deprecated This option is being deprecated because of a potential security risk. This option does not validate the credential configuration. The security risk occurs when a credential configuration is accepted from a source that is not under your control and used without validation on your side. If you know that you will be loading credential configurations of a specific type, it is recommended to create the credentials directly and configure them using the credentialsFetcher option instead. use Google\Auth\Credentials\ServiceAccountCredentials; $credentialsFetcher = new ServiceAccountCredentials($scopes, $json); This will ensure that an unexpected credential type with potential for malicious intent is not loaded unintentionally. You might still have to do validation for certain credential types. If you are loading your credential configuration from an untrusted source and have not mitigated the risks (e.g. by validating the configuration yourself), make these changes as soon as possible to prevent security risks to your environment. Regardless of the method used, it is always your responsibility to validate configurations received from external sources. @see https://cloud.google.com/docs/authentication/external/externally-sourced-credentials

Additional query parameters to be included as part of the signed URL query string. For allowed values, see Reference Headers.

One of "v2" or "v4". Defaults to* "v2".

The path to the file in Google Cloud Storage, relative to the bucket.

Specifies when the URL will expire. May provide an instance of Google\Cloud\Core\Timestamp, http://php.net/datetimeimmutable, or a UNIX timestamp as an integer.

Configuration options

The hostname for the bucket, for instance cdn.example.com. May be used for Google Cloud Load Balancers or for custom bucket CNAMEs. Defaults to storage.googleapis.com.

A list of arrays containing policy matching conditions (e.g. eq, starts-with, content-length-range).

Additional form fields (do not include x-goog-signature, file, policy or fields with an x-ignore prefix), given as key/value pairs.

If true, OpenSSL will be used regardless of whether phpseclib is available. Defaults to false.

A credentials fetcher instance.

[DEPRECATED] @deprecated This option is being deprecated because of a potential security risk. This option does not validate the credential configuration. The security risk occurs when a credential configuration is accepted from a source that is not under your control and used without validation on your side. If you know that you will be loading credential configurations of a specific type, it is recommended to create the credentials directly and configure them using the credentialsFetcher option instead. use Google\Auth\Credentials\ServiceAccountCredentials; $credentialsFetcher = new ServiceAccountCredentials($scopes, $json); This will ensure that an unexpected credential type with potential for malicious intent is not loaded unintentionally. You might still have to do validation for certain credential types. If you are loading your credential configuration from an untrusted source and have not mitigated the risks (e.g. by validating the configuration yourself), make these changes as soon as possible to prevent security risks to your environment. Regardless of the method used, it is always your responsibility to validate configurations received from external sources. @see https://cloud.google.com/docs/authentication/external/externally-sourced-credentials

[DEPRECATED] @deprecated This option is being deprecated because of a potential security risk. This option does not validate the credential configuration. The security risk occurs when a credential configuration is accepted from a source that is not under your control and used without validation on your side. If you know that you will be loading credential configurations of a specific type, it is recommended to create the credentials directly and configure them using the credentialsFetcher option instead. use Google\Auth\Credentials\ServiceAccountCredentials; $credentialsFetcher = new ServiceAccountCredentials($scopes, $json); This will ensure that an unexpected credential type with potential for malicious intent is not loaded unintentionally. You might still have to do validation for certain credential types. If you are loading your credential configuration from an untrusted source and have not mitigated the risks (e.g. by validating the configuration yourself), make these changes as soon as possible to prevent security risks to your environment. Regardless of the method used, it is always your responsibility to validate configurations received from external sources. @see https://cloud.google.com/docs/authentication/external/externally-sourced-credentials hostname is provided via $options.bucketBoundHostname. If a custom bucketBoundHostname is provided, defaults to http. In all other cases, defaults to https.

One or more authentication scopes to be used with a key file. This option is ignored unless $options.keyFile or $options.keyFilePath is set.

If true, URL will be of form mybucket.storage.googleapis.com. If false, storage.googleapis.com/mybucket. Defaults to false.

[optional] A lifecycle configuration. Please see here for the expected structure.