S3
Getting started
S3 API is an Amazon S3 API based API for working with object storage resources. With S3 API you can:
- View information about the number and volume of containers and objects within an account;
- Create and delete containers;
- upload, view, copy, move, download, and delete objects in containers;
- manage segmented loading of objects;
- manage CORS, etc.
API access
Only authorized access to the S3 API is possible.
To access the container via the S3 API, the user must have a role with access to the object store, see the Manage Object Store Access instructions for details.
The address (URL) when using Path-Style addressing (default) can be viewed in the URL list.
If Virtual Hosted addressing is enabled, you can address the container at <container_name>.<s3_domain>
.
Authentication
Authentication in the S3 API is accomplished by signing requests. We support AWS Signature Version 4 and AWS Signature Version 2.
Signature generation will require access keys, which can be obtained by issuing an S3 key to the user:
- Access Key ID — value of the Access key field from the S3 key;
- Secret Access Key — value of the Secret key field from the S3 key.
You can sign the request using one of the methods:
- via the Authorization HTTP header, see the Authenticating Requests: Using the Authorization Header (AWS Signature Version 4) in Amazon's documentation for more information;
- using query parameters or a Presigned URL. With this method, you can specify all query parameters in the URL, see Authenticating Requests: Using Query Parameters (AWS Signature Version 4) in the Amazon documentation for more information.
The lifetime of a request signature is 15 minutes.