Tools to access and manage objects using a directory structure

Although Cloud Storage provides blob storage, it also offers multiple tools that allow you to access and manage objects in buckets by using a directory structure. This page provides an overview of those tools.

Overview

Cloud Storage buckets store objects in a flat namespace but there are multiple tools you can use to interact with your stored data in a directory structure, similar to file systems. These tools provide the following capabilities:

  • Structuring your data: Group related objects into folders, making it easier to navigate and manage your data.

  • Controlling access to object groups: Set up granular access control for your objects, enabling you to specify who can view, edit, or delete specific sets of data within a bucket.

Simulated folders

Simulated folders in Cloud Storage are a way to create a visual hierarchy and organize objects within a bucket without actually creating folder structures. Using the Google Cloud console and Google Cloud CLI, you can simulate folders that mimic the file tree to help you organize data in your bucket. Simulated folders are implemented by using prefixes or delimiters, separated by a forward slash / within object names.

Folders in buckets with hierarchical namespace enabled

In buckets with hierarchical namespace enabled, you can create actual folders that contain objects or other folders. You can also perform operations like renaming folders and listing folders. The hierarchical structure and folder management operations improve performance, consistency, and management for file-oriented and data-intensive workloads.

For more information about folders, see About folders in buckets with hierarchical namespace enabled.

Managed folders

Managed folders enable you to apply granular access controls to your objects, enhancing security and control over your data. You can use managed folders in buckets with or without hierarchical namespace enabled. Unlike simulated folders which use prefixes, managed folders are actual resources within the bucket, enabling you to apply Identity and Access Management (IAM) policies to groups of objects.

To get started using managed folders, see Create managed folders.

What's next