This is the multi-page printable view of this section. Click here to print.

Return to the regular view of this page.

Object Storage

1.1: Amazon S3 Utilization Guide
1.2: Monitoring Metrics

2: How-to guides

2.1: Access Control
2.2: File and Folder Management
2.3: Permission Management
2.4: Replication Policy Management
2.5:

3: Release Note

1 -

1.1 - Amazon S3 Utilization Guide

Object Storage provides functions such as service creation, list retrieval, folder list retrieval, folder creation, file upload, download, etc., through the Samsung Cloud Platform Console. Additionally, these functions are also provided via an API compatible with Amazon S3. Therefore, tools that use Amazon S3 can be used in the same way.
To use Amazon S3’s utility, you need to create and verify an authentication key. For details, see Create Authentication Key.

Caution

When using the Amazon S3 utility, you must use the following version. If you use a different version, some features may be limited, so be careful.

SDK v2: 2.22.x or lower
SDK v1: 1.12.781 or less
CLI v2: 2.22.x or lower
CLI v1: 1.36.x or lower
SDK for JavaScript v3 : 3.728.0 or lower
SDK for Python(Boto3) : 1.35.x or lower

Amazon S3 API

The list of Amazon S3 APIs supported by Samsung Cloud Platform Object Storage service is as follows.

Reference

For detailed information about the Amazon S3 API, please refer to Amazon S3 API Guide.

Category	Detailed description
head-bucket	Bucket Information Lookup
list-buckets	List bucket
get-bucket-versioning	Bucket versioning query
put-bucket-versioning	Modify bucket versioning
get-bucket-encryption	Bucket encryption settings query
put-bucket-encryption	Apply bucket encryption settings
delete-bucket-encryption	Delete bucket encryption setting
copy-object	Object copy, move, rename
put-object	Create object
get-object	Object download
list-objects	Object list query
head-object	Object detailed view
get-object-acl	Object ACL query
delete-object	Delete Object If versioning is enabled, deleting a file adds a Delete Marker to the file and the Delete Marker becomes the latest version If permanent deletion of a file is required, delete by specifying the version ID
list-object-versions	Object version list query
delete-object	Delete object version
presign	PUT object Presigned URL issuance
get-bucket-acl	Bucket public permission check
create-bucket	Create bucket
delete-bucket	Delete bucket
get-bucket-cors	Bucket CORS (Cross OriginResources) configuration check
put-bucket-cors	Create bucket CORS (PUT)
delete-bucket-cors	Bucket CORS Delete
put-bucket-tagging	Bucket tagging creation
get-bucket-tagging	Bucket tagging query
delete-bucket-tagging	Delete bucket tagging
put-bucket-website	Create bucket website
get-bucket-website	bucket website view
delete-bucket-website	Delete bucket website
get-bucket-policy-status	Bucket policy status query
put-bucket-acl	Create bucket ACL
create-multipart-upload	Multipart upload creation
upload-part	Multipart upload execution
complete-multipart-upload	Multipart upload completed
list-multipart-uploads	Multipart upload list
abort-multipart-upload	Delete incomplete multipart upload
put-object-tagging	Object tagging creation
get-object-tagging	Object tagging query
delete-object-tagging	Object tagging Delete
list-objects-V2	Object query (v2)
put-object-acl	Object acl creation
list-parts	Parts lookup
put-public-access-block	Public access block creation
get-public-access-block	public access block lookup
delete-public-access-block	public access block delete
put-bucket-lifecycle	Create bucket lifecycle (only Expiration rule can be used)
get-bucket-lifecycle	Bucket Lifecycle Query
delete-bucket-lifecycle	Bucket Lifecycle Delete
put-bucket-replication	Modify bucket replication policy When using replication-configuration, the following items need to be checked Role: IAM SRN input required Rules > Destination’s Bucket: Bucket SRN input required If Rule ID is not entered, it is automatically generated with a random value Rule Priority is not applied, so any entered value has no effect (can set all to 1) When changing Rule ID, a new policy is created (the existing policy is deleted)
get-bucket-replication	Get bucket replication policy
delete-bucket-replication	Delete bucket replication policy

Table. List of Amazon S3 supported APIs

Amazon S3 CLI

To use Amazon S3 with the AWS CLI, please refer to Amazon S3 CLI Guide.

Amazon S3 SDK for Java

To use the Amazon S3 SDK for Java, please refer to Amazon S3 SDK Guide.

Note

For SDK guides and Rest API guides for other languages, please check the AWS official website.

Note

For using the Amazon S3 SDK, refer to the required region parameter below.
- Korea West (kr-west1) case: kr-west
- Korea South 1,2,3(kr-south1,2,3) case: kr-south
region parameter is for reference only, and the actual region is distinguished based on the URL.

Note

South Korea South 3 (kr-south3) region constraints
- Samsung Cloud Platform Console through file upload and download functionality is limited.
- Use of S3 API/CLI via Public URL is restricted.
- However, access to Private URLs through resources (such as Virtual Server) created in the Samsung Cloud Platform Console is possible.
South Korea South1 (kr-south1), South Korea South2 (kr-south2) region constraints
- Public URL access requires allowing a separate firewall setting.
- Public URL address can be checked on the Object Storage detail page. Please refer to Check Object Storage detailed information.

1.2 - Monitoring Metrics

Object Storage Monitoring Metrics

The following table shows the monitoring metrics of Object Storage that can be checked through Cloud Monitoring. For detailed usage of Cloud Monitoring, please refer to the Cloud Monitoring guide.

Metric Name	Description	Unit
Objects	Number of objects stored in a bucket	cnt
Bucket Used	Amount of data stored in a bucket (bytes)	bytes
Requests [Upload Avg]	Average upload usage per bucket	bytes
Requests [Download Avg]	Average download usage per bucket	bytes
Requests [Total]	Total number of HTTP requests executed on a bucket	cnt
Requests [Get]	Number of HTTP GET requests executed on objects in a bucket	cnt
Requests [Head]	Number of HTTP HEAD requests executed on objects in a bucket	cnt
Requests [List]	Number of LIST requests executed on objects in a bucket	cnt
Requests [Post]	Number of HTTP POST requests executed on objects in a bucket	cnt
Requests [Put]	Number of HTTP PUT requests executed on objects in a bucket	cnt
Requests [Delete]	Number of HTTP DELETE requests executed on objects in a bucket	cnt

Table. Object Storage Monitoring Metrics

2 - How-to guides

The user can enter the required information for Object Storage through the Samsung Cloud Platform Console, select detailed options, and create the service.

Creating an access key

To create and use the Object Storage service in the Samsung Cloud Platform Console, you need to generate an authentication key in advance.

Authentication key creation can be done from My Menu > My Info. > Authentication Key Management > Create Authentication Key. For more details, see IAM > Create Authentication Key.

Reference

The authentication key (Access Key, Secret Key) is used when authenticating Amazon S3 utility.
The authentication key is used not only for Object Storage, but also for authentication in OpenAPI and CLI.
Up to 2 authentication keys can be generated.

Caution

If the authentication key expires, access rights to the Object Storage service will be restricted. To ensure smooth service usage, check the authentication key’s expiration period in advance.
If you disable the authentication key, access rights to the Object Storage service will be restricted.

Object Storage Create

You can create and use the Object Storage service in the Samsung Cloud Platform Console.

To create Object Storage, follow the steps below.

All Services > Storage > Object Storage Click the menu. Go to the Service Home page of Object Storage.
Service Home on the page click the Create Object Storage button. Navigate to the Create Object Storage page.

Object Storage creation Enter the information required to create the service on the page.

Category	Required	Detailed description
Bucket Name	Required	Bucket name created by the user Starts with a lowercase English letter or digit, and using lowercase English letters, digits, hyphen`-`, period`.`, input 3~63 characters Period`.` cannot appear consecutively two or more times. Period`.` and hyphen`-` cannot be adjacent. Cannot end with a period`.` or hyphen`-`. IP format not allowed admin name not allowed For detailed description of bucket names, refer to Bucket Name Creation Rules.

Object Storage Check Detailed Information

Object Storage service can view and edit the full resource list and detailed information.
Object Storage Details page consists of Details, Folder List, Tag tabs.

To view detailed information of the Object Storage service, follow the steps below.

All Services > Storage > Object Storage Click the menu. Go to the Service Home page of Object Storage.
Click the Object Storage menu on the Service Home page. Navigate to the Object Storage List page.
Object Storage List page, click the resource to view detailed information. Navigate to the Object Storage Details page.
- Object Storage Details page displays status information and additional feature information, and consists of Details, Folder List, Replication, Tag tabs.
  Category Detailed description
  Bucket status Bucket status
  Active: Available state
  Service cancellation Button to cancel the service
  Table. Status Information and Additional Functions

Category	Detailed description
Bucket status	Bucket status Active: Available state
Service cancellation	Button to cancel the service

Note

Object Storage resources do not support operation history.
If necessary, please check via the Logging&Audit service. For more details, see Logging & Auddit > How-to Guides.

Detailed Information

Object Storage list page, you can view the detailed information of the selected resource and, if necessary, edit the information.

Category	Detailed description
service	service name
Resource Type	Resource Type
SRN	Unique resource ID in Samsung Cloud Platform In the Object Storage service, it refers to a bucket SRN
Resource Name	Resource Name In Object Storage service, it refers to the bucket name
Resource ID	Unique resource ID in the service
Bucket Name	Bucket name created by the user
Category	Field that distinguishes original or replica Currently only the original exists, and a replica will be added when the DR feature is introduced later
Usage	Total data usage of the bucket
Encryption	Encryption usage information When encryption is used, SSE‑S3 encryption key method and AES256 encryption algorithm are applied Encryption settings can be configured on the Object Storage Details page after creating Object Storage For detailed information on encryption settings, refer to Object Storage Encryption Settings
Version Management	Version Management Usage Information If settings for version management are required, click the Edit button For detailed information on version management, refer to Version Management
URL	Provides Public and Private addresses so that Object Storage can be accessed via URL Public: Provided to allow access from external networks Private: Provides an address accessible from resources created within the same Account in the Samsung Cloud Platform Console
Access Control	When access control is used, you can control it so that only authorized resources can access the bucket After switching to use access control, you must click the Edit button to add resources to be allowed for each access Public IP Allow: Add as a single IP/CIDR Service Resource Allow: Select service resources created in the same Account/Region Cloud Functions Service: Set whether the service is used For more details on access control, see Access Control

Table. Object Storage Detailed Information Tab Items

Folder List

Through the folder list tab, you can view the list of folders and files stored in the bucket.

Category	Detailed description
Name	File name or folder name
Size	File size
Modification Date and Time	The date and time the file was most recently modified
Additional Features > More	File, Folder Management Buttons File Information: View additional information of the file For detailed information on viewing file information, refer to View File Information. File Copy: Copy the selected file For detailed information on copying files, refer to Copy File. Permission Edit: Set Public Access permission for the file For detailed information on editing permissions, refer to Permission Management. Version List: If versioning is enabled, view the version list For detailed information on version management, refer to Version Management. Download: Download the selected file For detailed information on downloading files, refer to Download File. Create Presigned URL: Allows file download using a Presigned URL for a set period Enter the required time (1~720 minutes) and click the Confirm button to generate. Delete: Delete the selected file or folder For folders, only deletion is possible.
New Folder	Add new folder For detailed information about the new folder, see Create New Folder
File Upload	Upload a new file or a file in progress For detailed information about file upload, see Upload File
Delete	Delete file or folder Activate Delete button when multiple files are selected Deletion possible when single/multiple folders are selected Deletion possible when single/multiple files are selected Deletion possible when multiple files and folders are selected
Download	File download Download only possible when a single file is selected Button disabled when a folder is selected Button disabled when multiple files are selected Button disabled when multiple files and folders are selected

Table. Folder List Tab Items

Reference

Korea South 3 (kr-south3) region constraints
- The file upload and download functionality via the Samsung Cloud Platform Console is limited.
- Use of S3 API/CLI via Public URL is restricted.
- However, accessing Private URLs through resources (such as Virtual Server) created in the Samsung Cloud Platform Console is possible.
Korea South 1 (kr-south1), Korea South 2 (kr-south2) region constraints
- To access the public URL, you must allow a separate firewall setting.
- Public URL address can be found on the Object Storage detail page. Please refer to Check Object Storage detailed information.
If delete marker is the latest version, it cannot be seen in the folder list.
delete marker version cannot be found in the version list.

Replication

Object Storage list You can view and manage the replication information of the selected resource on the page.

Category	Detailed description
Policy Name	Name of the replication policy Enter up to 255 characters, including English letters, numbers, and special characters (`-,.`)
Replication target	Replication target bucket name
Replication location	Replication location (region)
Target file	Replication target file list
State	Replication policy status Active: Active Inactive: Inactive
Add	Add new replication policy For detailed information about adding replication policy, see Add replication policy
More	Policy management possible Disable: Disable the policy (display as enabled when disabled) Edit: Can edit replication target, target files, and options of the replication policy For details on editing replication policies, see Edit Replication Policy Delete: Delete the policy For details on deleting replication policies, see Delete Replication Policy

Table. Object Storage Replication Information Tab Items

Category	Detailed description
Tag List	Tag List Tag’s Key and Value information can be checked Up to 50 tags can be added per resource When entering a tag, search and select from the existing list of Keys and Values

Work History

Reference

Object Storage resources do not support operation history.
If needed, please check via the Logging&Audit service. For more details, see Logging&Auddit > How-to Guides.

Object Storage Encryption Setup

You can set it to encrypt the data stored in the bucket. After setting bucket encryption, the encryption setting is applied to uploaded data. When using encryption, the SSE‑S3 encryption key method and the AES256 encryption algorithm are applied.

Reference

Object Storage bucket encryption can provide two types (SSE‑S3/SSE‑KMS). SSE‑S3 is server‑side encryption (SSE‑S3) using Amazon S3 managed keys. SSE‑KMS is server‑side encryption (SSE‑KMS) using Key Management Service (KMS) keys.
In this service, server‑side encryption (SSE‑S3) using Amazon S3 managed keys is released as the default method, and server‑side encryption (SSE‑KMS) using Key Management Service (KMS) keys will be provided later according to the service roadmap.

Information

If there is data saved before bucket encryption was set, the encryption settings will not be applied.

If you re-upload the file, encryption will be applied.
To set encryption for existing data, you need to re-upload it.

Object Storage Follow the steps below to use bucket encryption.

All Services > Storage > Object Storage Click the menu. Go to the Service Home page of Object Storage.
Click the Object Storage menu on the Service Home page. Navigate to the Object Storage List page.
Object Storage List page, click the resource (bucket) to use encryption. Object Storage Details page will be opened.
On the Object Storage Detailed page, check if encryption is not used.
If Encryption is Not Used, click the Edit button.Encryption Edit Popup opens.
After checking Encryption Use, click the Confirm button.

Object Storage Cancel

You can cancel unused Object Storage to reduce operating costs. However, if you cancel the service, the running service may be immediately stopped, so you should consider the impact of service interruption sufficiently before proceeding with the cancellation.

Caution

Service termination is possible for buckets with no stored data.
If a file is being uploaded, the upload will be canceled.
Please be careful as data cannot be recovered after deletion.

If you want to cancel Object Storage, follow the steps below.

All Services > Storage > Object Storage Click the menu. Go to the Service Home page of Object Storage.
Click the Object Storage menu on the Service Home page. Navigate to the Object Storage list page.
Object Storage list on the page, select the resource (bucket) to cancel, and click the Cancel Service button.
Please enter bucket name to confirm termination.
If you have entered the Bucket Name correctly, the Confirm button will be activated. Click the Confirm button.
When termination is complete, check whether the resource has been terminated on the Object Storage List page.

2.1 - Access Control

If you set bucket access control to enabled, only resources that are allowed access can access the bucket. You can set it to allow access by entering a public IP or for resources created in the Samsung Cloud Platform Console.

Set up access control

You can set bucket access control to enabled.

Object Storage Follow the steps below to set up access control.

All Services > Storage > Object Storage Click the menu. Go to the Service Home page.
Click the Object Storage menu on the Service Home page. Navigate to the Object Storage list page.
Click the resource (bucket) to set access control on the Object Storage List page. It navigates to the Object Storage Details page.
Verify that Access Control is Unused on the Object Storage Details page.
Click the Edit button if Access Control is Unused. The Edit Access Control popup opens.
After checking Access Control Use, click the Confirm button. On the Object Storage Details page, Access Control will be changed to Use.

Notice

If you change the access control to use, you can set the access control for Public UP, service resources, and Cloud Functions services.

Public IP, Register service resources to allow access, or set whether to use access control for the Cloud Functions service.

Category	Detailed description
Public IP Allow	Add registered Public IP or CIDR Example: 192.168.x.x, 192.168.x.x/24
Allow Service Resources	Select service resources created in the same Account/Region Service: Service Name Example: Virutal Server, GPU Server, Bare Metal Server, Multi-node GPU Cluster, VPC Endpoint, PostgreSQL, MariaDB, MySQL, EPAS, Microsoft SQL Server Resource Name: Name of the service resource
Allow Cloud Functions service	Setting whether to allow Object Storage access to modify Java Runtime code in Cloud Functions service Allowed when set, Cloud Functions service can load Java Runtime executable files stored in Object Storage

Allow Public IP Access

If bucket access control is set to enabled, you can add a public IP allowance.

Object Storage in to add Public IP access permission, follow the steps below.

All Services > Storage > Object Storage Click the menu. Service Home page will be navigated to.
Click the Object Storage menu on the Service Home page. Navigate to the Object Storage list page.
Object Storage List page, click the resource (bucket) to set access control. Navigate to the Object Storage Details page.
Object Storage Details page, check if access control is enabled.
- If Access control is unused, click the Edit button, then in the Access control popup change access control to Enabled.
- Only when access control is enabled, the Allow IP Access, Allow Service Resources, Allow Cloud Functions Service list is displayed.
Public IP Allow in Edit click the button. Public IP Allow Edit The popup window opens.
Enter the Public IP to allow access, and click the Add button.
Column Required Detailed description
Public IP Allowed Required Enter as a single IP or CIDR format (up to 150 entries)
192.168.x.x (IP format)
192.168.x.x/24 (CIDR format)
Table. Public IP Allowance Edit Popup Input Items
Check the items added to the list and press the Confirm button.
Check the added Public IP in the Object Storage Details page’s Access Control > Allow Public IP list.

Column	Required	Detailed description
Public IP Allowed	Required	Enter as a single IP or CIDR format (up to 150 entries) 192.168.x.x (IP format) 192.168.x.x/24 (CIDR format)

Reference

If you modify the Public IP allowance, it may take up to 30 seconds for the changes to be completed.
Public IPs are allowed up to a maximum of 150.

Allow access to service resources

If bucket access control is set to enabled, you can add service resources in the allowed service resources.

Object Storage Follow the steps below to allow access to service resources.

Click the All Services > Storage > Object Storage menu. Go to the Service Home page.
Service Home page, click the Object Storage menu. Navigate to the Object Storage list page.
Object Storage List page, click the resource (bucket) to set access control. Object Storage Details page navigate.
Object Storage Details on the page, check whether Access Control is enabled.
- Access control is unused, click the Edit button, then in the Access control popup change access control to Enabled.
- Only when access control is enabled, the IP access allowed, service resource allowed, Cloud Functions service allowed list is displayed.
Click the Edit button in Allow Service Resources. The Select Service Resources popup opens.

Notice

The allowed criteria per service are as follows.
- Virtual Server/GPU Server/Bare Metal Server/Multi-node GPU Cluster: Allowed per server
- VPC Endpoint: Allow per VPC Endpoint
- PostgreSQL, MariaDB, MySQL, EPAS, Microsoft SQL Server: Allowed per cluster
To access Object Storage from the server, the following tasks are required.
1. Verify Object Storage IP via nslookup command on the server
2. Register rule through Security Group or Firewall service and apply to server
  - Target address: Object Storage IP confirmed in ①
  - Direction : Outbound
  - Service : TCP 80, 443 (80 when using http / 443 when using https)

Caution

If each service’s status is as follows, permission and revocation of service resource access are possible. If it is not the following status, previously permitted service resources may also be affected.

Virtual Server/GPU Server: Build, Building, Networking, Scheduling, Block_Device_Mapping, Spawning, Deleting, Error and other statuses
Bare Metal Server/Multi-node GPU Cluster: Running, Starting, Stopping, Stopped
VPC Endpoint: Active
PostgreSQL/MariaDB/MySQL/EPAS/Microsoft SQL Server: Running

Select the server to allow access, and press the Confirm button.
Check the added server in the Object Storage Details page’s Access Control > Service Resource Allow list.

Reference

Modifying service resource permissions may take up to 30 seconds for changes to be completed.
Up to 150 service resources are allowed.

Cloud Functions Allow Service Access

If access control on the bucket is set to enabled, you can allow the Cloud Functions service to access Object Storage.

To allow access to the Cloud Functions service from Object Storage, follow these steps.

All Services > Storage > Object Storage Click the menu. Service Home page will be displayed.
Click the Object Storage menu on the Service Home page. You will be taken to the Object Storage list page.
Object Storage List On the page, click the resource (bucket) to set access control. Object Storage Details Navigate to the page.
Object Storage Details page, check if access control is enabled.
- If Access Control is Disabled, click the Edit button, then in the Access Control popup change Access Control to Enabled.
- Only when access control is enabled, the list of Allow IP Access, Allow Service Resources, Allow Cloud Functions Service is displayed.
Click the Edit button in Cloud Functions Service Allow. The Cloud Functions Service Edit popup opens.
After checking Allow, click the Confirm button.

Reference

When the access permission setting for the Cloud Functions service is completed, the Cloud Functions service can retrieve the Java Runtime executable stored in Object Storage.
For loading the Java Runtime executable in the Cloud Functions service, refer to Change Java Runtime code.

Reference

South Korea (kr-south) region constraints

The South Korea (kr-south) region does not provide Cloud Funtions service, so the Allow Cloud Functions Service feature cannot be used.

2.2 - File and Folder Management

If you need to manage, such as saving files to the created Object Storage or downloading saved files, you can perform tasks on the Object Storage Details and Folder List pages.

Create new folder

A new folder may need to be created to store new data in the bucket.

Object Storage Follow the steps below to create a new folder.

All Services > Storage > Object Storage Click the menu. Service Home page will be displayed.
Click the Object Storage menu on the Service Home page. It navigates to the Object Storage list page.
Object Storage List page, click the resource (bucket) to create a new folder. You will be taken to the Object Storage Details page.
Folder List Click the tab. Folder List Navigate to the page.
Click the New Folder button. New Folder popup window opens.
Enter the folder name to use, and click the Confirm button. A popup window notifying the creation of a new folder will open.

Caution

Folder names must not contain special characters that are not allowed. For more details, see Folder Name Creation Rules.
The total path length, including folder name, file name, and delimiter (/), is limited to within 1,024 Bytes (based on UTF-8 encoding).

After clicking the Confirm button, check the created folder in the Folder List.

File Upload

Reference

Korea South 3 (kr-south3) region constraints
- The file upload and download functionality through the Samsung Cloud Platform Console is limited.
- Using S3 API/CLI via Public URL is restricted.
However, accessing a Private URL through resources (such as Virtual Server) created in the Samsung Cloud Platform Console is possible.
Korea South1 (kr-south1), Korea South2 (kr-south2) region constraints
- Public URL access requires allowing a separate firewall setting.
- The Public URL can be found on the Object Storage detail page. Please refer to Check Object Storage detailed information.

You can upload a new file or a file you are working on to the bucket. Object Storage Follow the steps below to upload files.

Click All Services > Storage > Object Storage menu. Go to the Service Home page.
Click the Object Storage menu on the Service Home page. You will be taken to the Object Storage list page.
Object Storage List On the page, click the resource (bucket) to upload files. Object Storage Details Navigate to the page.
Click the Folder List tab. You will be taken to the Folder List page.
File Upload Click the button. File Upload The popup window opens.
After clicking the File Attachment button, select the file to upload or drag the file to attach into the popup window.

Caution

You can upload up to 3 files, each up to 3 GB.
The attached file name must not contain prohibited special characters. For more details, refer to File Name Creation Rules.
The total path length, including folder name, file name, and delimiter (/), is limited to within 1,024 Bytes (based on UTF-8 encoding).
If there are duplicate files, you cannot upload.

If you have selected all files, click the Upload button.
If the upload was successful, check the file in the folder list.

File Download

Reference

Korea South 3(kr-south3) region constraints
- File upload and download functions via Samsung Cloud Platform Console are restricted.
- Use of S3 API/CLI via Public URL is restricted.
- However, access to Private URLs through resources (such as Virtual Server) created in the Samsung Cloud Platform Console is possible.
Korea South1 (kr-south1), Korea South2 (kr-south2) region constraints
- To access the public URL, you must allow a separate firewall setting.
- The Public URL can be found on the Object Storage detail page. Please refer to Check Object Storage detailed information.

You can download files stored in the bucket. Object Storage Follow the steps below to download the file.

Click the All Services > Storage > Object Storage menu. You will be taken to the Service Home page.
Click the Object Storage menu on the Service Home page. Go to the Object Storage list page.
Object Storage List page, click the resource (bucket) to download. Object Storage Details page will be opened.
Click the Folder List tab. You will be taken to the Folder List page.
Click the More > Download button located at the far right end of the file to be downloaded. The file download will start.
Check that the file download has completed in the browser.

View file information

You can retrieve information about files stored in the bucket. Object Storage Follow the steps below to view file information.

All Services > Storage > Object Storage Click the menu. Service Home page will be opened.
Click the Object Storage menu on the Service Home page. Navigate to the Object Storage List page.
Object Storage list page, click the resource (bucket) that contains the file you want to view file information. Object Storage detail page will be opened.
Folder List Click the tab. Folder List Navigate to the page.
Click the More > File Info button located at the far right of the file to view information. File Info popup window opens.

File Information Check detailed file information in the popup window.

Category	Detailed description
file name	file name
Content type	Object type
Total size	File size
Modification Date/Time	The date and time the file was most recently modified
Permission	Public Access allowance
URL	Provide Public and Private addresses to access the file path URL Public: Provided to be accessible from external internet network Private: Provides an address accessible from resources created in the same Account and same region of the Samsung Cloud Platform Console

Table. File Information Items

Copy file

You can copy the file stored in the bucket to the same location. To copy a file, follow these steps.

Click the Storage > Object Storage menu. Go to the Object Storage list page.
Object Storage List On the page, click the resource (bucket) to copy the file. Object Storage Details Navigate to the page.
Folder List Click the tab. Folder List Navigate to the page.
Click the More > File Copy button at the far right of the file to be copied. The File Copy popup window opens.
After entering the filename, click the Confirm button. A popup notifying file copy will open.

Caution

Only files with a full path length (including bucket name, folder name, file name, delimiter (/)) of 1,024 Bytes or less (based on URL Encoding) can be copied.
In the Samsung Cloud Platform Console, you can only copy files when the file size is 5 GB or less. If the file size exceeds 5 GB, you can copy using the S3 API.
You can copy within the same bucket and folder.
If the bucket does not use versioning, files with the same name in the folder will be overwritten.

After clicking the Confirm button, check the copied file in the Folder List.

Delete files and folders

You can delete files and folders stored in the bucket. Object Storage Follow the steps below to delete files and folders.

Caution

When deleting a folder, all subfolders/files inside the folder will be deleted.
All versions will be deleted at once when the file is deleted.

All Services > Storage > Object Storage Click the menu. Service Home page will be opened.
Click the Object Storage menu on the Service Home page. Navigate to the Object Storage list page.
Click the resource (bucket) that contains the file or folder to delete on the Object Storage list page. It moves to the Object Storage details page.
Folder List tab, click it. Folder List page, navigate.
Click the More > Delete button located at the far right of the file or folder to be deleted. The Delete popup window will open.
- After selecting multiple files or folders from the left check box, you can click the Delete button at the top to delete multiple files or folders at once.
Click the Confirm button in the delete popup to complete the deletion.
Folder List Check that files or folders have been deleted from the list.

Reference

When deleting multiple files and folders simultaneously, it may take a long time.

2.3 - Permission Management

Each file is provided with Private permission by default, and each file can be changed to Public permission through permission settings. Private permission allows file disclosure and download only to users who know the Access Key and Secret Key, but Public permission allows file disclosure and download to anyone worldwide when accessing the file’s Public URL, so caution is required.

Check permission management

You can check the permission settings on the file.

Object Storage Follow the steps below to check file permissions.

All Services > Storage > Object Storage Click the menu. Service Home Navigate to the page.
Service Home on the page, click the Object Storage menu. Go to the Object Storage list page.
Object Storage list page, click the resource (bucket) that contains the file whose permissions you want to check. Object Storage details page will be opened.
Folder List Click the tab. Folder List Navigate to the page.
Click the More > File Info button located at the far right of the file you want to view file information. The File Info popup window opens.
File Information in the popup window Permissions please check.
Category Detailed description
Permission Public Access allowed or Public Access not allowed
Table. Permission Information Description

Category	Detailed description
Permission	Public Access allowed or Public Access not allowed

Public Access Allow

You can set the file’s Public Access permission to allow. Object Storage Follow the steps below to set file permissions to allow Public Access.

All Services > Storage > Object Storage Click the menu. Service Home Navigate to the page.
Service Home on the page, click the Object Storage menu. Go to the Object Storage list page.
On the Object Storage List page, click the resource (bucket) that has files to allow Public Access. You will be taken to the Object Storage Details page.
Folder List Click the tab. Folder List Navigate to the page.
Click the More > File Info button located at the far right of the file you want to view file information for. The File Info popup window opens.
Check that Permission is in Public Access not allowed state, and click the Confirm button.
Click the More > Permission Management button located at the right end of the file. The Edit Permission Management popup window opens.
Edit Permission Management In the popup, check Allow Public Access for Permission Management, and click the Confirm button. Navigate to the Folder List page.
Click the More > File Info button located at the far right of the file. The File Info popup window opens.
Permission is Public Access allowed. Check the state.

Notice

When Public Access is allowed, accessing the file’s Public URL allows the file to be publicly disclosed and downloaded by anyone worldwide.
Please set it only if file disclosure is absolutely necessary.

2.4 - Replication Policy Management

You can perform replication to a bucket in a different location or the same location.
You can set multiple replication policies, and if the original bucket is unavailable due to a failure or disaster, you can provide service through the replica bucket.

Notice

The replication feature operates in a 1:N structure, allowing replication within a region or between regions. When performing cross-region replication, data transfer fees are added.
The replication feature applies only to files uploaded after the replication policy is set.
Even if you delete the original version file, files in the replica bucket are not deleted.
- Example: If set from Bucket A to Bucket B, even if the version file of Bucket A is deleted, it remains in Bucket B.
You can set up bidirectional replication.
- Example: When set as Bucket A ↔ Bucket B, files uploaded to Bucket A are replicated to Bucket B, and files uploaded to Bucket B are replicated to Bucket A.
The duplicated file is not duplicated.
- Example: If set as Bucket A → Bucket B → Bucket C, files replicated from Bucket A → Bucket B are not replicated from Bucket B → Bucket C.

Reference

kr-south region does not provide inter-region Object Storage replication functionality.

Add replication policy

Notice

You can set replication on the created bucket.
To add a replication policy, you must set the version control feature to enabled.
To set up the version management feature, refer to Setting Version Management.

To add a replication policy, follow these steps.

All Services > Storage > Object Storage Click the menu. Navigate to Object Storage’s Service Home page.
Click the Object Storage menu on the Service Home page. You will be taken to the Object Storage list page.
Object Storage List page, click the resource to add a replication policy. It will navigate to the Object Storage Details page.
Click the Duplicate tab.
Click the Add button. Add replication policy popup opens.
After entering the policy information, click the Confirm button. A popup window notifying the creation of the replication policy opens.

Category	Required	Detailed Description
Policy Name	Required	Enter the name of the replication policy Enter within 255 characters, including English letters, numbers, and special characters (`-._`)
Replication Location	Required	Select replication location (region) Other locations can be selected
Replication Bucket Name	Required	Select the name of the replication bucket If set the same as the source bucket name, adding a replication policy is not allowed
Target File	Required	Select files to replicate All: Replicate all files Prefix: Replicate files that start with the value entered as a prefix Enter within 1,024 bytes based on UTF-8 encoding (same as file length constraint) Special characters (`%<>#\```^\|{}[]`) cannot be entered When performing putobject using the S3 API’s prefix option, the prefix must start with `/`
Delete marker duplication	Select	Whether to use delete marker duplication

Table. Replication Policy Add Popup Items

Confirm button을 클릭하세요. 복제 정책이 추가됩니다.

Caution

If there is an invalid policy, you cannot add a replication policy.

Example: If a deleted policy remains for a replication bucket, you cannot add a replication policy.

Edit replication policy

You can modify the replication policy’s replication location, replication bucket name, and target file.

Notice

To modify the replication policy, you must set the version control feature to enabled.
How to set up the version management feature, refer to Set up version management.

To modify the replication policy, follow the steps below.

All Services > Storage > Object Storage Click the menu. Navigate to the Service Home page of Object Storage.
Click the Object Storage menu on the Service Home page. Navigate to the Object Storage list page.
Object Storage List page, click the resource to modify the replication policy. Navigate to the Object Storage Detail page.
Clone tab을 클릭하세요.
Click the More > Edit button of the policy you want to modify in the replication policy list. Edit Replication Policy popup window opens.
After modifying the replication policy information, click the Confirm button. A popup window notifying the replication policy modification will open.

Category	Required	Detailed description
Replication location	Required	Select replication location (region) Other locations can be selected
Replication Bucket Name	Required	Enter the name of the replicated bucket If set the same as the original bucket name, replication policy cannot be modified If you set a bucket already in use as the replication bucket, replication policy cannot be modified
Target File	Required	Select files to replicate All: Replicate all files Prefix: Replicate files that start with the value entered as a prefix Enter within 1,024 bytes based on UTF-8 encoding (same as file length constraint) Special characters (`%<>#\```^\|{}[]`) cannot be entered When performing putObject using the S3 API’s prefix option, the prefix must start with `/`
Delete marker duplication	Select	Whether to use delete marker duplication

Table. Replication Policy Edit Popup Items

Confirm 버튼을 클릭하세요. 복제 정책 수정이 완료됩니다.

Caution

If there is an invalid policy, you cannot add a replication policy.

Example: If a policy remains after the replica bucket has been deleted, you cannot add a replication policy.

Change replication policy status

You can enable or disable the replication policy to change whether the replication policy is performed.

To change the replication policy status, follow the steps below.

All Services > Storage > Object Storage Click the menu. Navigate to the Service Home page of Object Storage.
Click the Object Storage menu on the Service Home page. Navigate to the Object Storage List page.
Click the resource to change the replication policy status on the Object Storage List page. Navigate to the Object Storage Details page.
Clone tab click.
In the replication policy list, click the More > Activate or More > Deactivate button for the policy whose status you want to change. A popup window notifying the replication policy status change will open.
- Activation: Performs replication according to the replication policy.
- Disable: Stops performing replication.
Click the Confirm button. The status of the replication policy will change.

Delete replication policy

You can delete unused replication policies.

To modify the replication policy, follow the steps below.

All Services > Storage > Object Storage Click the menu. Navigate to Object Storage’s Service Home page.
Click the Object Storage menu on the Service Home page. It moves to the Object Storage List page.
Object Storage List On the page, click the resource to delete the replication policy. Object Storage Details Navigate to the page.
Clone 탭을 클릭하세요.
Click the More > Delete button of the policy you want to edit in the replication policy list. A popup notifying the deletion of the replication policy will open.
Confirm Click the button. The replication policy will be deleted.

Caution

If you change the usage of versioning for the source and replica buckets, replication will not be performed correctly.
- If versioning of the source bucket is set to disabled, replication will not be performed. If set back to enabled, replication will be performed for files uploaded after the setting.
- If you set versioning of the replica bucket to disabled, replication will be performed but versioning is not possible. If you set it back to enabled, versioning will apply from the point it is set.
If you delete the source bucket, the configured replication policy will also be deleted.
If you delete the replica bucket, the replication policy set on the source bucket remains.
- If you recreate a replication bucket with the same bucket name as a deleted replication bucket, replication will be performed to that bucket.

2.5 -

3 - Release Note

Object Storage

2025.10.23

FEATURE Duplication, file copy feature added and Cloud Functions service integration

Object Storage’s replication feature has been added.
- You can perform replication to a bucket in a different location or the same location, and you can set multiple replication policies.
File copy feature has been added.
- You can copy the desired file within the same bucket and folder.
Cloud Functions service has been added to access control.
- You can upload Java Runtime executable files in Cloud Functions.

2025.07.01

FEATURE Add access server resources and Presigned URL feature

A server resource target product has been added to Object Storage access control.
- Multi-node GPU Cluster, PostgreSQL, MariaDB, MySQL, EPAS, Microsoft SQL Server
Presigned URL has been added.
- You can download the file using a Presigned URL for the set period of time.
You can perform Copyobject on encrypted files.

2025.04.28

FEATURE Amazon S3 version added

Additional versions of the Amazon S3 SDK and Amazon S3 CLI that can be used have been added.

2025.02.27

FEATURE VPC Endpoint connection feature added

Object Storage feature change
- VPC Endpoint can be used to access Object Storage from external networks.
Samsung Cloud Platform Common Function Change
- Account, IAM and Service Home, tags, etc. have been reflected in the common CX changes.

2024.10.01

NEW Object Storage Service Official Version Release

Launched an object storage service that makes data storage and retrieval easy.

2024.07.02

NEW Beta version release

We have launched Object Storage, a service that provides a space (bucket) to economically store large amounts of data.