Object Storage is an object storage service that allows users to easily store and use their desired data, with URL-based access for very convenient data management.
It enables search and retrieval of large-scale data, and provides features such as encryption and version management.
It offers both Public and Private URLs, and Public URLs can be accessed even from the internet environment.
Key Features
S3 API Utilization: Easy and fast access from applications through Restful API, and compatible with Amazon S3, so it can be easily used in applications integrated with Amazon S3.
Secure Usage: Provides encryption (SSE-S3), access control, and Public/Private access features, making it suitable for safely storing user data or backup data for service recovery.
Cost Efficiency: Users do not need to pre-set bucket capacity, and storage space is provided with efficient pricing that charges based on actual usage.
Replication: Can perform replication to buckets in different locations or the same location. Multiple replication policies can be set, and if the original bucket cannot be used due to failure or disaster, the service can be provided through the replicated bucket.
Architecture Diagram
Fig. Object Storage Architecture Diagram
Provided Features
Object Storage provides the following features.
Storage Management: Provides features for creating Object Storage, creating folders, deleting folders, uploading files, downloading files, and deleting files.
Version Management: When version management is used, all versions of uploaded files are managed. Previous files can be easily downloaded through the version list.
Encryption: When encryption is enabled, encryption is provided via SSE-S3 method.
Access Control: When access control is used, you can directly enter Public IPs allowed to access Object Storage, or select resources within the same Account allowed to access (Virtual Server, Bare Metal Server, VPC Endpoint, etc.).
Replication: Can perform replication to buckets in different locations or the same location.
Multiple replication policies can be set
Permission Management: By default, Private permission is provided, and Public permission and permission management features are provided.
Private Permission: Allows file sharing and downloading only to users who know the authentication key
Public Permission: Allows file sharing and downloading to anyone worldwide by accessing the file’s URL
Monitoring: Monitoring information such as total file count, data amount (Bytes), and HTTP Method request count can be checked through the Cloud Monitoring service.
ServiceWatch Service Integration: Data can be monitored through the ServiceWatch service.
Components
Authentication Key
The authentication key is an essential element that must be created in advance to use Object Storage. The purpose of using the authentication key is as follows.
An authentication key is required to create and access the Object Storage service from Samsung Cloud Platform Console.
The API provided by Object Storage is compatible with Amazon S3, and tools using Amazon S3 can be used in the same way. In this case, authentication key input is required, and it is used as a tool to identify users with permissions.
For detailed instructions on creating and checking authentication keys, see How-to guides > Create Authentication Key.
Bucket
A Bucket is the top-level folder, and all folders and files exist under the bucket. When you create Object Storage service in Samsung Cloud Platform Console, a bucket is created, and you can then upload folders or files. Bucket naming rules are as follows:
Bucket names must be at least 3 characters and at most 63 characters.
Bucket names can only consist of lowercase letters, numbers, periods ., and hyphens -.
Bucket names must start with a lowercase letter or number.
Bucket names must not have two periods adjacent to each other.
Bucket names must not end with a period or hyphen.
Bucket names must not have periods and hyphens adjacent to each other.
Bucket names must not use IP address format (e.g., 192.168.x.x).
Bucket names cannot use the name admin.
Bucket names must be unique within an Account/Region.
Previously used bucket names can be reused after 1 hour.
Valid Bucket Name Examples
Invalid Bucket Name Examples
Can be used with bucket names like
cpexamplebucket1
scp-example-bucket-01
my-scp-object-storage
Cannot be used with bucket names like
scp_example_bucket(includes underscore)
DocExampleBucket(includes uppercase)
-scp-example-bucket(starts with hyphen)
Folder
Folders are used to logically group files. Folder naming rules are as follows:
Folder names can consist of Korean, English, numbers, and special characters.
Special characters that cannot be entered are as follows:
Special Characters Not Allowed in Folder Names
Percent sign%
Ampersand&
Question mark?
Exclamation mark!
Less than sign<, greater than sign>
Slash/
Equal sign=
Plus sign+
Dollar sign$
Pound sign#
Backtick’
Caret^
Vertical bar/pipe|
Left curly brace{, right curly brace}
Left square bracket[, right square bracket]
File
A File refers to data stored in Object Storage and is the same as a regular file. File naming rules are as follows:
File names can consist of Korean, English, numbers, and special characters.
Special characters that cannot be entered are as follows:
Special Characters Not Allowed in File Names
Percent sign%
Ampersand&
Question mark?
Exclamation mark!
Less than sign<, greater than sign>
Slash/
Equal sign=
Plus sign+
Dollar sign$
Pound sign#
Backslash\
Backtick’
Caret^
Vertical bar/pipe|
Left curly brace{, right curly brace}
Left square bracket[, right square bracket]
Plus sign+
Folder names and file names are separated by a slash /. The following are examples of valid folder names and file names:
Examples of Mixed Folder and File Name Usage
3scp-example
my.happy_photo-2024/20240101.jpg
video/2024/video01.wmv
Note
The path length including folder name, file name, and delimiter (/) is limited to 1,024 Bytes (based on UTF-8 Encoding).
URL
You can access Object Storage buckets through URLs. Public and Private URLs are provided, allowing access not only from the same Samsung Cloud Platform environment but also from external internet environments. The URL structure is composed as follows:
If accessing files with Public Access enabled without authentication key (Access Key, Secret Key), account ID input is required; otherwise, access is possible without account ID.
Upload API: 5GB for single upload operation, 5TB for Multipart
Number of files in bucket
Up to 200 million
Table. Object Storage Constraints
Warning
It is recommended to store up to 200 million files in a bucket. If exceeding 200 million, severe performance degradation may occur, so manage the number of files.
When using S3 Backend Filesystem solutions (ex. s3fs, objectivefs, etc.), it is recommended not to use version management. Performance degradation may occur when using version management.
Note
When executing Amazon S3 API after changing IAM permissions, it may take up to 30 seconds.
Note
Korea South3 (kr-south3) region constraints
File upload and download functions through Samsung Cloud Platform Console are limited.
S3 API/CLI usage using Public URL is limited.
However, Private URL access through resources created in Samsung Cloud Platform Console (Virtual Server, etc.) is possible.
Korea South1 (kr-south1), Korea South2 (kr-south2) region constraints
Separate firewall settings must be allowed for Public URL access.
Object Storage provides functions such as service creation, list retrieval, folder list retrieval, folder creation, file upload, download, etc., through the Samsung Cloud Platform Console. Additionally, these functions are also provided via an API compatible with Amazon S3. Therefore, tools that use Amazon S3 can be used in the same way. To use Amazon S3’s utility, you need to create and verify an authentication key. For details, see Create Authentication Key.
Caution
When using the Amazon S3 utility, you must use the following version. If you use a different version, some features may be limited, so be careful.
SDK v2: 2.22.x or lower
SDK v1: 1.12.781 or less
CLI v2: 2.22.x or lower
CLI v1: 1.36.x or lower
SDK for JavaScript v3 : 3.728.0 or lower
SDK for Python(Boto3) : 1.35.x or lower
Amazon S3 API
The list of Amazon S3 APIs supported by Samsung Cloud Platform Object Storage service is as follows.
Reference
For detailed information about the Amazon S3 API, please refer to Amazon S3 API Guide.
Category
Detailed description
head-bucket
Bucket Information Lookup
list-buckets
List bucket
get-bucket-versioning
Bucket versioning query
put-bucket-versioning
Modify bucket versioning
get-bucket-encryption
Bucket encryption settings query
put-bucket-encryption
Apply bucket encryption settings
delete-bucket-encryption
Delete bucket encryption setting
copy-object
Object copy, move, rename
put-object
Create object
get-object
Object download
list-objects
Object list query
head-object
Object detailed view
get-object-acl
Object ACL query
delete-object
Delete Object
If versioning is enabled, deleting a file adds a Delete Marker to the file and the Delete Marker becomes the latest version
If permanent deletion of a file is required, delete by specifying the version ID
list-object-versions
Object version list query
delete-object
Delete object version
presign
PUT object Presigned URL issuance
get-bucket-acl
Bucket public permission check
create-bucket
Create bucket
delete-bucket
Delete bucket
get-bucket-cors
Bucket CORS (Cross OriginResources) configuration check
put-bucket-cors
Create bucket CORS (PUT)
delete-bucket-cors
Bucket CORS Delete
put-bucket-tagging
Bucket tagging creation
get-bucket-tagging
Bucket tagging query
delete-bucket-tagging
Delete bucket tagging
put-bucket-website
Create bucket website
get-bucket-website
bucket website view
delete-bucket-website
Delete bucket website
get-bucket-policy-status
Bucket policy status query
put-bucket-acl
Create bucket ACL
create-multipart-upload
Multipart upload creation
upload-part
Multipart upload execution
complete-multipart-upload
Multipart upload completed
list-multipart-uploads
Multipart upload list
abort-multipart-upload
Delete incomplete multipart upload
put-object-tagging
Object tagging creation
get-object-tagging
Object tagging query
delete-object-tagging
Object tagging Delete
list-objects-V2
Object query (v2)
put-object-acl
Object acl creation
list-parts
Parts lookup
put-public-access-block
Public access block creation
get-public-access-block
public access block lookup
delete-public-access-block
public access block delete
put-bucket-lifecycle
Create bucket lifecycle (only Expiration rule can be used)
get-bucket-lifecycle
Bucket Lifecycle Query
delete-bucket-lifecycle
Bucket Lifecycle Delete
put-bucket-replication
Modify bucket replication policy
When using replication-configuration, the following items need to be checked
The following table shows the monitoring metrics of Object Storage that can be checked through Cloud Monitoring. For detailed usage of Cloud Monitoring, please refer to the Cloud Monitoring guide.
Metric Name
Description
Unit
Objects
Number of objects stored in a bucket
cnt
Bucket Used
Amount of data stored in a bucket (bytes)
bytes
Requests [Upload Avg]
Average upload usage per bucket
bytes
Requests [Download Avg]
Average download usage per bucket
bytes
Requests [Total]
Total number of HTTP requests executed on a bucket
cnt
Requests [Get]
Number of HTTP GET requests executed on objects in a bucket
cnt
Requests [Head]
Number of HTTP HEAD requests executed on objects in a bucket
cnt
Requests [List]
Number of LIST requests executed on objects in a bucket
cnt
Requests [Post]
Number of HTTP POST requests executed on objects in a bucket
cnt
Requests [Put]
Number of HTTP PUT requests executed on objects in a bucket
cnt
Requests [Delete]
Number of HTTP DELETE requests executed on objects in a bucket
cnt
Table. Object Storage Monitoring Metrics
1.3 - ServiceWatch metric
Object Storage sends metrics to ServiceWatch. The metrics provided by basic monitoring are data collected at a 1-minute interval.
Reference
To check metrics in ServiceWatch, refer to the ServiceWatch guide.
Basic Indicators
The following are the basic metrics for the namespace Object Storage.
Performance Item
Detailed Description
Unit
Meaningful Statistics
Table. Object Storage Basic Metrics
2 - How-to guides
The user can enter the required information for Object Storage through the Samsung Cloud Platform Console, select detailed options, and create the service.
Creating an access key
To create and use the Object Storage service in the Samsung Cloud Platform Console, you need to generate an authentication key in advance.
Authentication key creation can be done from My Menu > My Info. > Authentication Key Management > Create Authentication Key. For more details, see IAM > Create Authentication Key.
Reference
The authentication key (Access Key, Secret Key) is used when authenticating Amazon S3 utility.
The authentication key is used not only for Object Storage, but also for authentication in OpenAPI and CLI.
Up to 2 authentication keys can be generated.
Caution
If the authentication key expires, access rights to the Object Storage service will be restricted. To ensure smooth service usage, check the authentication key’s expiration period in advance.
If you disable the authentication key, access rights to the Object Storage service will be restricted.
Object Storage Create
You can create and use the Object Storage service in the Samsung Cloud Platform Console.
To create Object Storage, follow the steps below.
All Services > Storage > Object Storage Click the menu. Go to the Service Home page of Object Storage.
Service Home on the page click the Create Object Storage button. Navigate to the Create Object Storage page.
Object Storage creation Enter the information required to create the service on the page.
Category
Required
Detailed description
Bucket Name
Required
Bucket name created by the user
Starts with a lowercase English letter or digit, and using lowercase English letters, digits, hyphen-, period., input 3~63 characters
Period. cannot appear consecutively two or more times.
Table. Object Storage Required Information Input Items
Caution
In the Archive Storage service, if you create with the bucket name that is being used as the Archiving target, be careful as the configured Archiving policy will be applied.
Summary Check the detailed information and estimated billing amount generated in the panel, and click the Complete button.
When creation is complete, check the created resources on the Object Storage List page.
Object Storage Check Detailed Information
Object Storage service can view and edit the full resource list and detailed information. Object Storage Details page consists of Details, Folder List, Tag tabs.
To view detailed information of the Object Storage service, follow the steps below.
All Services > Storage > Object Storage Click the menu. Go to the Service Home page of Object Storage.
Click the Object Storage menu on the Service Home page. Navigate to the Object Storage List page.
Object Storage List page, click the resource to view detailed information. Navigate to the Object Storage Details page.
Object Storage Details page displays status information and additional feature information, and consists of Details, Folder List, Replication, Tag tabs.
Category
Detailed description
Bucket status
Bucket status
Active: Available state
Service cancellation
Button to cancel the service
Table. Status Information and Additional Functions
Note
Object Storage resources do not support operation history. If necessary, please check via the Logging&Audit service. For more details, see Logging & Auddit > How-to Guides.
Detailed Information
Object Storage list page, you can view the detailed information of the selected resource and, if necessary, edit the information.
Category
Detailed description
service
service name
Resource Type
Resource Type
SRN
Unique resource ID in Samsung Cloud Platform
In the Object Storage service, it refers to a bucket SRN
Resource Name
Resource Name
In Object Storage service, it refers to the bucket name
Resource ID
Unique resource ID in the service
Bucket Name
Bucket name created by the user
Category
Field that distinguishes original or replica
Currently only the original exists, and a replica will be added when the DR feature is introduced later
Usage
Total data usage of the bucket
Encryption
Encryption usage information
When encryption is used, SSE‑S3 encryption key method and AES256 encryption algorithm are applied
Encryption settings can be configured on the Object Storage Details page after creating Object Storage
**Disable**: Disable the policy (display as enabled when disabled)
**Edit**: Can edit replication target, target files, and options of the replication policy
For details on editing replication policies, see [Edit Replication Policy](/userguide/storage/object_storage/how_to_guides/obj_policy.md#복제-정책-수정하기)
**Delete**: Delete the policy
For details on deleting replication policies, see [Delete Replication Policy](/userguide/storage/object_storage/how_to_guides/obj_policy.md#복제-정책-삭제하기)
Table. Object Storage Replication Information Tab Items
Tag
Object Storage List page, you can view the tag information of the selected resource, and you can add, modify, or delete it.
Category
Detailed description
Tag List
Tag List
Tag’s Key and Value information can be checked
Up to 50 tags can be added per resource
When entering a tag, search and select from the existing list of Keys and Values
Table. Object Storage Tag Tab Items
Work History
Reference
Object Storage resources do not support operation history. If needed, please check via the Logging&Audit service. For more details, see Logging&Auddit > How-to Guides.
Object Storage Encryption Setup
You can set it to encrypt the data stored in the bucket. After setting bucket encryption, the encryption setting is applied to uploaded data. When using encryption, the SSE‑S3 encryption key method and the AES256 encryption algorithm are applied.
Reference
Object Storage bucket encryption can provide two types (SSE‑S3/SSE‑KMS). SSE‑S3 is server‑side encryption (SSE‑S3) using Amazon S3 managed keys. SSE‑KMS is server‑side encryption (SSE‑KMS) using Key Management Service (KMS) keys. In this service, server‑side encryption (SSE‑S3) using Amazon S3 managed keys is released as the default method, and server‑side encryption (SSE‑KMS) using Key Management Service (KMS) keys will be provided later according to the service roadmap.
Information
If there is data saved before bucket encryption was set, the encryption settings will not be applied.
If you re-upload the file, encryption will be applied.
To set encryption for existing data, you need to re-upload it.
Object Storage Follow the steps below to use bucket encryption.
All Services > Storage > Object Storage Click the menu. Go to the Service Home page of Object Storage.
Click the Object Storage menu on the Service Home page. Navigate to the Object Storage List page.
Object Storage List page, click the resource (bucket) to use encryption. Object Storage Details page will be opened.
On the Object Storage Detailed page, check if encryption is not used.
If Encryption is Not Used, click the Edit button.Encryption Edit Popup opens.
After checking Encryption Use, click the Confirm button.
Object Storage Cancel
You can cancel unused Object Storage to reduce operating costs. However, if you cancel the service, the running service may be immediately stopped, so you should consider the impact of service interruption sufficiently before proceeding with the cancellation.
Caution
Service termination is possible for buckets with no stored data.
If a file is being uploaded, the upload will be canceled.
Please be careful as data cannot be recovered after deletion.
If you want to cancel Object Storage, follow the steps below.
All Services > Storage > Object Storage Click the menu. Go to the Service Home page of Object Storage.
Click the Object Storage menu on the Service Home page. Navigate to the Object Storage list page.
Object Storage list on the page, select the resource (bucket) to cancel, and click the Cancel Service button.
Please enter bucket name to confirm termination.
If you have entered the Bucket Name correctly, the Confirm button will be activated. Click the Confirm button.
When termination is complete, check whether the resource has been terminated on the Object Storage List page.
2.1 - Access Control
If you set bucket access control to enabled, only resources that are allowed access can access the bucket. You can set it to allow access by entering a public IP or for resources created in the Samsung Cloud Platform Console.
Set up access control
You can set bucket access control to enabled.
Object Storage Follow the steps below to set up access control.
All Services > Storage > Object Storage Click the menu. Go to the Service Home page.
Click the Object Storage menu on the Service Home page. Navigate to the Object Storage list page.
Click the resource (bucket) to set access control on the Object Storage List page. It navigates to the Object Storage Details page.
Verify that Access Control is Unused on the Object Storage Details page.
Click the Edit button if Access Control is Unused. The Edit Access Control popup opens.
After checking Access Control Use, click the Confirm button. On the Object Storage Details page, Access Control will be changed to Use.
Notice
If you change the access control to use, you can set the access control for Public UP, service resources, and Cloud Functions services.
Public IP, Register service resources to allow access, or set whether to use access control for the Cloud Functions service.
Category
Detailed description
Public IP Allow
Add registered Public IP or CIDR
Example: 192.168.x.x, 192.168.x.x/24
Allow Service Resources
Select service resources created in the same Account/Region
Service: Service Name
Example: Virutal Server, GPU Server, Bare Metal Server, Multi-node GPU Cluster, VPC Endpoint, PostgreSQL, MariaDB, MySQL, EPAS, Microsoft SQL Server
Resource Name: Name of the service resource
Allow Cloud Functions service
Setting whether to allow Object Storage access to modify Java Runtime code in Cloud Functions service
Allowed when set, Cloud Functions service can load Java Runtime executable files stored in Object Storage
Table. Access Control Items
Reference
If you modify the access permission, it may take up to 30 seconds for the changes to be completed.
Reference
South Korea (kr-south) region constraints
South Korea (kr-south) region does not provide Cloud Functions service, so the Cloud Functions Service Allowance feature cannot be used.
Allow Public IP Access
If bucket access control is set to enabled, you can add a public IP allowance.
Object Storage in to add Public IP access permission, follow the steps below.
All Services > Storage > Object Storage Click the menu. Service Home page will be navigated to.
Click the Object Storage menu on the Service Home page. Navigate to the Object Storage list page.
Object Storage List page, click the resource (bucket) to set access control. Navigate to the Object Storage Details page.
Object Storage Details page, check if access control is enabled.
If Access control is unused, click the Edit button, then in the Access control popup change access control to Enabled.
Only when access control is enabled, the Allow IP Access, Allow Service Resources, Allow Cloud Functions Service list is displayed.
Public IP Allow in Edit click the button. Public IP Allow Edit The popup window opens.
Enter the Public IP to allow access, and click the Add button.
Column
Required
Detailed description
Public IP Allowed
Required
Enter as a single IP or CIDR format (up to 150 entries)
192.168.x.x (IP format)
192.168.x.x/24 (CIDR format)
Table. Public IP Allowance Edit Popup Input Items
Check the items added to the list and press the Confirm button.
Check the added Public IP in the Object Storage Details page’s Access Control > Allow Public IP list.
Reference
If you modify the Public IP allowance, it may take up to 30 seconds for the changes to be completed.
Public IPs are allowed up to a maximum of 150.
Allow access to service resources
If bucket access control is set to enabled, you can add service resources in the allowed service resources.
Object Storage Follow the steps below to allow access to service resources.
Click the All Services > Storage > Object Storage menu. Go to the Service Home page.
Service Home page, click the Object Storage menu. Navigate to the Object Storage list page.
Object Storage List page, click the resource (bucket) to set access control. Object Storage Details page navigate.
Object Storage Details on the page, check whether Access Control is enabled.
Access control is unused, click the Edit button, then in the Access control popup change access control to Enabled.
Only when access control is enabled, the IP access allowed, service resource allowed, Cloud Functions service allowed list is displayed.
Click the Edit button in Allow Service Resources. The Select Service Resources popup opens.
Notice
The allowed criteria per service are as follows.
Virtual Server/GPU Server/Bare Metal Server/Multi-node GPU Cluster: Allowed per server
VPC Endpoint: Allow per VPC Endpoint
PostgreSQL, MariaDB, MySQL, EPAS, Microsoft SQL Server: Allowed per cluster
To access Object Storage from the server, the following tasks are required.
Verify Object Storage IP via nslookup command on the server
Register rule through Security Group or Firewall service and apply to server
Target address: Object Storage IP confirmed in ①
Direction : Outbound
Service : TCP 80, 443 (80 when using http / 443 when using https)
Caution
If each service’s status is as follows, permission and revocation of service resource access are possible. If it is not the following status, previously permitted service resources may also be affected.
Virtual Server/GPU Server: Build, Building, Networking, Scheduling, Block_Device_Mapping, Spawning, Deleting, Error and other statuses
Bare Metal Server/Multi-node GPU Cluster: Running, Starting, Stopping, Stopped
Select the server to allow access, and press the Confirm button.
Check the added server in the Object Storage Details page’s Access Control > Service Resource Allow list.
Reference
Modifying service resource permissions may take up to 30 seconds for changes to be completed.
Up to 150 service resources are allowed.
Cloud Functions Allow Service Access
If access control on the bucket is set to enabled, you can allow the Cloud Functions service to access Object Storage.
To allow access to the Cloud Functions service from Object Storage, follow these steps.
All Services > Storage > Object Storage Click the menu. Service Home page will be displayed.
Click the Object Storage menu on the Service Home page. You will be taken to the Object Storage list page.
Object Storage List On the page, click the resource (bucket) to set access control. Object Storage Details Navigate to the page.
Object Storage Details page, check if access control is enabled.
If Access Control is Disabled, click the Edit button, then in the Access Control popup change Access Control to Enabled.
Only when access control is enabled, the list of Allow IP Access, Allow Service Resources, Allow Cloud Functions Service is displayed.
Click the Edit button in Cloud Functions Service Allow. The Cloud Functions Service Edit popup opens.
After checking Allow, click the Confirm button.
Reference
When the access permission setting for the Cloud Functions service is completed, the Cloud Functions service can retrieve the Java Runtime executable stored in Object Storage.
For loading the Java Runtime executable in the Cloud Functions service, refer to Change Java Runtime code.
Reference
South Korea (kr-south) region constraints
The South Korea (kr-south) region does not provide Cloud Funtions service, so the Allow Cloud Functions Service feature cannot be used.
2.2 - File and Folder Management
If you need to manage, such as saving files to the created Object Storage or downloading saved files, you can perform tasks on the Object Storage Details and Folder List pages.
Create new folder
A new folder may need to be created to store new data in the bucket.
Object Storage Follow the steps below to create a new folder.
All Services > Storage > Object Storage Click the menu. Service Home page will be displayed.
Click the Object Storage menu on the Service Home page. It navigates to the Object Storage list page.
Object Storage List page, click the resource (bucket) to create a new folder. You will be taken to the Object Storage Details page.
Folder List Click the tab. Folder List Navigate to the page.
Click the New Folder button. New Folder popup window opens.
Enter the folder name to use, and click the Confirm button. A popup window notifying the creation of a new folder will open.
Caution
Folder names must not contain special characters that are not allowed. For more details, see Folder Name Creation Rules.
The total path length, including folder name, file name, and delimiter (/), is limited to within 1,024 Bytes (based on UTF-8 encoding).
After clicking the Confirm button, check the created folder in the Folder List.
File Upload
Reference
Korea South 3 (kr-south3) region constraints
The file upload and download functionality through the Samsung Cloud Platform Console is limited.
Using S3 API/CLI via Public URL is restricted.
However, accessing a Private URL through resources (such as Virtual Server) created in the Samsung Cloud Platform Console is possible.
Korea South1 (kr-south1), Korea South2 (kr-south2) region constraints
Public URL access requires allowing a separate firewall setting.
You can download files stored in the bucket.
Object Storage Follow the steps below to download the file.
Click the All Services > Storage > Object Storage menu. You will be taken to the Service Home page.
Click the Object Storage menu on the Service Home page. Go to the Object Storage list page.
Object Storage List page, click the resource (bucket) to download. Object Storage Details page will be opened.
Click the Folder List tab. You will be taken to the Folder List page.
Click the More > Download button located at the far right end of the file to be downloaded. The file download will start.
Check that the file download has completed in the browser.
View file information
You can retrieve information about files stored in the bucket.
Object Storage Follow the steps below to view file information.
All Services > Storage > Object Storage Click the menu. Service Home page will be opened.
Click the Object Storage menu on the Service Home page. Navigate to the Object Storage List page.
Object Storage list page, click the resource (bucket) that contains the file you want to view file information. Object Storage detail page will be opened.
Folder List Click the tab. Folder List Navigate to the page.
Click the More > File Info button located at the far right of the file to view information. File Info popup window opens.
File Information Check detailed file information in the popup window.
Category
Detailed description
file name
file name
Content type
Object type
Total size
File size
Modification Date/Time
The date and time the file was most recently modified
Permission
Public Access allowance
URL
Provide Public and Private addresses to access the file path URL
Public: Provided to be accessible from external internet network
Private: Provides an address accessible from resources created in the same Account and same region of the Samsung Cloud Platform Console
Table. File Information Items
Copy file
You can copy the file stored in the bucket to the same location.
To copy a file, follow these steps.
Click the Storage > Object Storage menu. Go to the Object Storage list page.
Object Storage List On the page, click the resource (bucket) to copy the file. Object Storage Details Navigate to the page.
Folder List Click the tab. Folder List Navigate to the page.
Click the More > File Copy button at the far right of the file to be copied. The File Copy popup window opens.
After entering the filename, click the Confirm button. A popup notifying file copy will open.
Caution
Only files with a full path length (including bucket name, folder name, file name, delimiter (/)) of 1,024 Bytes or less (based on URL Encoding) can be copied.
In the Samsung Cloud Platform Console, you can only copy files when the file size is 5 GB or less. If the file size exceeds 5 GB, you can copy using the S3 API.
You can copy within the same bucket and folder.
If the bucket does not use versioning, files with the same name in the folder will be overwritten.
After clicking the Confirm button, check the copied file in the Folder List.
Delete files and folders
You can delete files and folders stored in the bucket.
Object Storage Follow the steps below to delete files and folders.
Caution
When deleting a folder, all subfolders/files inside the folder will be deleted.
All versions will be deleted at once when the file is deleted.
All Services > Storage > Object Storage Click the menu. Service Home page will be opened.
Click the Object Storage menu on the Service Home page. Navigate to the Object Storage list page.
Click the resource (bucket) that contains the file or folder to delete on the Object Storage list page. It moves to the Object Storage details page.
Folder List tab, click it. Folder List page, navigate.
Click the More > Delete button located at the far right of the file or folder to be deleted. The Delete popup window will open.
After selecting multiple files or folders from the left check box, you can click the Delete button at the top to delete multiple files or folders at once.
Click the Confirm button in the delete popup to complete the deletion.
Folder List Check that files or folders have been deleted from the list.
Reference
When deleting multiple files and folders simultaneously, it may take a long time.
2.3 - Version Management
By setting version management on a bucket, you can manage the history of file modifications when uploading files with the same name.
Additionally, you can check the version list of files and download previous versions of files from the version list.
Notice
When using the version management feature, if you accidentally upload a file and overwrite an existing file, you can find the previous version through the version list.
Setting Up Version Management
You can set up version management on a bucket.
Warning
If you are using S3 Backend Filesystem solutions (ex. s3fs, objectivefs, etc.), it is recommended not to use version management. Performance degradation may occur when using version management.
To set up Object Storage version management, follow these steps:
Click the All Services > Storage > Object Storage menu. You will move to the Service Home page.
On the Service Home page, click the Object Storage menu. You will move to the Object Storage List page.
On the Object Storage List page, click the resource (bucket) for which you want to set up version management. You will move to the Object Storage Detail page.
On the Object Storage Detail page, check if Version Management is Disabled.
If Version Management is Disabled, click the Edit button. The Version Management Edit popup window will open.
Check Enable for version management, then click the Confirm button. On the Object Storage Detail page, Version Management will change to Enabled.
Note
When setting up version management for the first time, it may take some time for the changes to complete.
The time required may vary depending on the size of the bucket. Operations performed before the setup is complete may not have versions applied.
Checking Version List
You can check and manage versions of file uploads and modifications from the time version management is set up.
Notice
Version management of file uploads and modifications is possible from the time version management is set up.
All files have a version ID. However, before version management is set up, the version ID is null(-), and files uploaded after version management is set up are created and assigned a version ID.
For example, if you upload files with the same name to the same location, a new version file with a different version ID will be displayed in the version list even though the file name is the same.
To check the version list of Object Storage files, follow these steps:
Click the All Services > Storage > Object Storage menu. You will move to the Service Home page.
On the Service Home page, click the Object Storage menu. You will move to the Object Storage List page.
On the Object Storage List page, click the resource (bucket) that contains the file for which you want to check the version list. You will move to the Object Storage Detail page.
Click the Folder List tab. The folder and file list will be displayed.
In the folder and file list, click the More > Version List button located at the right end of the file for which you want to check the version list. The Version List popup window will open.
Component
Detailed Description
File Name
File name
Modified Date
Date and time when the file was modified
Version ID
Version ID assigned to each file
Version ID of files stored before setting up version management is displayed as null(-)
Files stored after version management is set up are created with a unique version ID
If files with the same name are uploaded to the same location, a version ID is created and the version file is added, which can be viewed in the version list
Etag
Object-specific version that identifies the file
Size
Size of the version file
More
Provides additional features such as version file download and deletion
File Download: Download the selected version of the file
To restore a file to a previous version, download the previous version and upload it again
Delete: Delete the selected version of the file
If all version files are deleted, the original file is also deleted
To keep the original file, at least 1 version must be left
Delete
Delete the file
When the checkbox of the version file to delete is selected in the list, the button is activated
Table. Version List Popup Items
Downloading Version File
Note
Korea South3 (kr-south3) region constraints
File upload and download functions through Samsung Cloud Platform Console are limited.
S3 API/CLI usage using Public URL is limited.
However, Private URL access through resources created in Samsung Cloud Platform Console (Virtual Server, etc.) is possible.
Korea South1 (kr-south1), Korea South2 (kr-south2) region constraints
Separate firewall settings must be allowed for Public URL access.
You can download version files of files.
To download version files of Object Storage files, follow these steps:
Click the All Services > Storage > Object Storage menu. You will move to the Service Home page.
On the Service Home page, click the Object Storage menu. You will move to the Object Storage List page.
On the Object Storage List page, click the resource (bucket) that contains the version file you want to download. You will move to the Object Storage Detail page.
Click the Folder List tab. The folder and file list will be displayed.
In the folder and file list, click the More > Version List button located at the right end of the file for which you want to download the version file. The Version List popup window will open.
Click the More > File Download button located at the right end of the version file you want to download. File Download will start.
Check if the file download is complete in your browser.
Note
When you download a version file from the version list, the version ID is included in the file name.
Deleting Version File
You can delete the version list of files.
Warning
If you delete all version files, the original file will also be deleted. To avoid deleting the original file, you must leave at least 1 version.
Version files with object lock (WORM) set cannot be deleted.
To delete the version list of Object Storage files, follow these steps:
Click the All Services > Storage > Object Storage menu. You will move to the Service Home page.
On the Service Home page, click the Object Storage menu. You will move to the Object Storage List page.
On the Object Storage List page, click the resource (bucket) that contains the version file you want to delete. You will move to the Object Storage Detail page.
Click the Folder List tab. The folder and file list will be displayed.
In the folder and file list, click the More > Version List button located at the right end of the file for which you want to delete the version list. The Version List popup window will open.
Click the More > Delete button located at the right end of the version file you want to delete. Deletion will be completed.
2.4 - Permission Management
Each file is provided with Private permission by default, and each file can be changed to Public permission through permission settings. Private permission allows file disclosure and download only to users who know the Access Key and Secret Key, but Public permission allows file disclosure and download to anyone worldwide when accessing the file’s Public URL, so caution is required.
Check permission management
You can check the permission settings on the file.
Object Storage Follow the steps below to check file permissions.
All Services > Storage > Object Storage Click the menu. Service Home Navigate to the page.
Service Home on the page, click the Object Storage menu. Go to the Object Storage list page.
Object Storage list page, click the resource (bucket) that contains the file whose permissions you want to check. Object Storage details page will be opened.
Folder List Click the tab. Folder List Navigate to the page.
Click the More > File Info button located at the far right of the file you want to view file information. The File Info popup window opens.
File Information in the popup window Permissions please check.
Category
Detailed description
Permission
Public Access allowed or Public Access not allowed
Table. Permission Information Description
Public Access Allow
You can set the file’s Public Access permission to allow.
Object Storage Follow the steps below to set file permissions to allow Public Access.
All Services > Storage > Object Storage Click the menu. Service Home Navigate to the page.
Service Home on the page, click the Object Storage menu. Go to the Object Storage list page.
On the Object Storage List page, click the resource (bucket) that has files to allow Public Access. You will be taken to the Object Storage Details page.
Folder List Click the tab. Folder List Navigate to the page.
Click the More > File Info button located at the far right of the file you want to view file information for. The File Info popup window opens.
Check that Permission is in Public Access not allowed state, and click the Confirm button.
Click the More > Permission Management button located at the right end of the file. The Edit Permission Management popup window opens.
Edit Permission Management In the popup, check Allow Public Access for Permission Management, and click the Confirm button. Navigate to the Folder List page.
Click the More > File Info button located at the far right of the file. The File Info popup window opens.
Permission is Public Access allowed. Check the state.
Notice
When Public Access is allowed, accessing the file’s Public URL allows the file to be publicly disclosed and downloaded by anyone worldwide. Please set it only if file disclosure is absolutely necessary.
2.5 - Replication Policy Management
You can perform replication to a bucket in a different location or the same location. You can set multiple replication policies, and if the original bucket is unavailable due to a failure or disaster, you can provide service through the replica bucket.
Notice
The replication feature operates in a 1:N structure, allowing replication within a region or between regions. When performing cross-region replication, data transfer fees are added.
The replication feature applies only to files uploaded after the replication policy is set.
Even if you delete the original version file, files in the replica bucket are not deleted.
Example: If set from Bucket A to Bucket B, even if the version file of Bucket A is deleted, it remains in Bucket B.
You can set up bidirectional replication.
Example: When set as Bucket A ↔ Bucket B, files uploaded to Bucket A are replicated to Bucket B, and files uploaded to Bucket B are replicated to Bucket A.
The duplicated file is not duplicated.
Example: If set as Bucket A → Bucket B → Bucket C, files replicated from Bucket A → Bucket B are not replicated from Bucket B → Bucket C.
Reference
kr-south region does not provide inter-region Object Storage replication functionality.
Add replication policy
Notice
You can set replication on the created bucket.
To add a replication policy, you must set the version control feature to enabled.
To modify the replication policy, follow the steps below.
All Services > Storage > Object Storage Click the menu. Navigate to the Service Home page of Object Storage.
Click the Object Storage menu on the Service Home page. Navigate to the Object Storage list page.
Object Storage List page, click the resource to modify the replication policy. Navigate to the Object Storage Detail page.
Click the Clone tab.
Click the More > Edit button of the policy you want to modify in the replication policy list. Edit Replication Policy popup window opens.
After modifying the replication policy information, click the Confirm button. A popup window notifying the replication policy modification will open.
Category
Required
Detailed description
Replication location
Required
Select replication location (region)
Other locations can be selected
Replication Bucket Name
Required
Enter the name of the replicated bucket
If set the same as the original bucket name, replication policy cannot be modified
If you set a bucket already in use as the replication bucket, replication policy cannot be modified
Target File
Required
Select files to replicate
All: Replicate all files
Prefix: Replicate files that start with the value entered as a prefix
Enter within 1,024 bytes based on UTF-8 encoding (same as file length constraint)
Special characters (%<>#\`^|{}[]) cannot be entered
When performing putObject using the S3 API’s prefix option, the prefix must start with /
Delete marker duplication
Select
Whether to use delete marker duplication
Table. Replication Policy Edit Popup Items
Confirm 버튼을 클릭하세요. 복제 정책 수정이 완료됩니다.
Caution
If there is an invalid policy, you cannot add a replication policy.
Example: If a policy remains after the replica bucket has been deleted, you cannot add a replication policy.
Change replication policy status
You can enable or disable the replication policy to change whether the replication policy is performed.
To change the replication policy status, follow the steps below.
All Services > Storage > Object Storage Click the menu. Navigate to the Service Home page of Object Storage.
Click the Object Storage menu on the Service Home page. Navigate to the Object Storage List page.
Click the resource to change the replication policy status on the Object Storage List page. Navigate to the Object Storage Details page.
Clone tab click.
In the replication policy list, click the More > Activate or More > Deactivate button for the policy whose status you want to change. A popup window notifying the replication policy status change will open.
Activation: Performs replication according to the replication policy.
Disable: Stops performing replication.
Click the Confirm button. The status of the replication policy will change.
Delete replication policy
You can delete unused replication policies.
To modify the replication policy, follow the steps below.
All Services > Storage > Object Storage Click the menu. Navigate to Object Storage’s Service Home page.
Click the Object Storage menu on the Service Home page. It moves to the Object Storage List page.
Object Storage List On the page, click the resource to delete the replication policy. Object Storage Details Navigate to the page.
Click the Clone tab.
Click the More > Delete button of the policy you want to edit in the replication policy list. A popup notifying the deletion of the replication policy will open.
Confirm Click the button. The replication policy will be deleted.
Caution
If you change the usage of versioning for the source and replica buckets, replication will not be performed correctly.
If versioning of the source bucket is set to disabled, replication will not be performed. If set back to enabled, replication will be performed for files uploaded after the setting.
If you set versioning of the replica bucket to disabled, replication will be performed but versioning is not possible. If you set it back to enabled, versioning will apply from the point it is set.
If you delete the source bucket, the configured replication policy will also be deleted.
If you delete the replica bucket, the replication policy set on the source bucket remains.
If you recreate a replication bucket with the same bucket name as a deleted replication bucket, replication will be performed to that bucket.
3 - Release Note
Object Storage
2025.10.23
FEATUREDuplication, file copy feature added and Cloud Functions service integration
Object Storage’s replication feature has been added.
You can perform replication to a bucket in a different location or the same location, and you can set multiple replication policies.
File copy feature has been added.
You can copy the desired file within the same bucket and folder.
Cloud Functions service has been added to access control.
You can upload Java Runtime executable files in Cloud Functions.
2025.07.01
FEATUREAdd access server resources and Presigned URL feature
A server resource target product has been added to Object Storage access control.
Multi-node GPU Cluster, PostgreSQL, MariaDB, MySQL, EPAS, Microsoft SQL Server
Presigned URL has been added.
You can download the file using a Presigned URL for the set period of time.
You can perform Copyobject on encrypted files.
2025.04.28
FEATUREAmazon S3 version added
Additional versions of the Amazon S3 SDK and Amazon S3 CLI that can be used have been added.
2025.02.27
FEATUREVPC Endpoint connection feature added
Object Storage feature change
VPC Endpoint can be used to access Object Storage from external networks.
Samsung Cloud Platform Common Function Change
Account, IAM and Service Home, tags, etc. have been reflected in the common CX changes.
2024.10.01
NEWObject Storage Service Official Version Release
Launched an object storage service that makes data storage and retrieval easy.
2024.07.02
NEWBeta version release
We have launched Object Storage, a service that provides a space (bucket) to economically store large amounts of data.
