Unspecified action, default value.

Allow action.

Deny action.

Unspecified header, default value.

Filter object headers.

Filter request headers.

Filter service headers.

Unspecified match type, default value.

Return true if strings are equal.

Return true if strings are different.

Delete.

Get.

GetRange.

GetRangeHash.

Head.

Unspecified operation, default value.

Put.

Search.

Others target rule is applied if sender is neither a user nor a system target.

Unspecified role, default value.

System target rule is applied if sender is a storage node within the container or an inner ring node.

User target rule is applied if sender is the owner of the container.

Enum value maps for Action.

Enum value maps for Action.

Enum value maps for HeaderType.

Enum value maps for HeaderType.

Enum value maps for MatchType.

Enum value maps for MatchType.

Enum value maps for Operation.

Enum value maps for Operation.

Enum value maps for Role.

Enum value maps for Role.

BearerToken allows to attach signed Extended ACL rules to the request in `RequestMetaHeader`.

Bearer Token body structure contains Extended ACL table issued by the container owner with additional information preventing token abuse.

Lifetime parameters of the token.

Describes a single eACL rule.

Filter to check particular properties of the request or the object.

Target to apply ACL rule.

Extended ACL rules table.

Rule execution result action.

Enumeration of possible sources of Headers to apply filters.

MatchType is an enumeration of match types.

Request's operation type to match if the rule is applicable to a particular request.

Target role of the access control rule in access control list.