Data protection

Storage bucket policy grant authenticated users object read access

Description

Google Cloud Storage service allows you to store and retrieve data in a bucket. It was found that the {GcpStorageBucket} bucket is allowing Storage Legacy Bucket Object Reader permissions to all authenticated users. This could result with any authenticated user with a Google account reading object data from the bucket.