['help' => 'The region in which the bucket is located.', 'required' => True], "endpoint" => ['help' => 'The domain names that other services can use to access OSS.', 'required' => False], "bucket" => ['help' => 'The name of the bucket', 'required' => True], ]; $longopts = \array_map(function ($key) { return "$key:"; }, array_keys($optsdesc)); $options = getopt("", $longopts); foreach ($optsdesc as $key => $value) { if ($value['required'] === True && empty($options[$key])) { $help = $value['help']; echo "Error: the following arguments are required: --$key, $help"; exit(1); } } $region = $options["region"]; $bucket = $options["bucket"]; // Loading credentials values from the environment variables $credentialsProvider = new Oss\Credentials\EnvironmentVariableCredentialsProvider(); // Using the SDK's default configuration $cfg = Oss\Config::loadDefault(); $cfg->setCredentialsProvider($credentialsProvider); $cfg->setRegion($region); if (isset($options["endpoint"])) { $cfg->setEndpoint($options["endpoint"]); } $client = new Oss\Client($cfg); $accessPointName = 'ap-01'; $request = new Oss\Models\PutAccessPointPolicyRequest($bucket); $request->accessPointName = $accessPointName; $policy = '{ "Version":"1", "Statement":[ { "Action":[ "oss:PutObject", "oss:GetObject" ], "Effect":"Deny", "Principal":["27737962156157xxxx"], "Resource":[ "acs:oss:cn-hangzhou:111933544165xxxx:accesspoint/ap-01", "acs:oss:cn-hangzhou:111933544165xxxx:accesspoint/ap-01/object/*" ] } ] }'; $request->body = Oss\Utils::streamFor($policy); $result = $client->putAccessPointPolicy($request); printf( 'status code:' . $result->statusCode . PHP_EOL . 'request id:' . $result->requestId );