Service Overview
Object Storage is an object storage service that allows users to easily store and use their desired data, with URL-based access for very convenient data management. It enables search and retrieval of large-scale data, and provides features such as encryption and version management. It offers both Public and Private URLs, and Public URLs can be accessed even from the internet environment.
Key Features
- S3 API Utilization: Easy and fast access from applications through Restful API, and compatible with Amazon S3, so it can be easily used in applications integrated with Amazon S3.
- Secure Usage: Provides encryption (SSE-S3), access control, and Public/Private access features, making it suitable for safely storing user data or backup data for service recovery.
- Cost Efficiency: Users do not need to pre-set bucket capacity, and storage space is provided with efficient pricing that charges based on actual usage.
- Replication: Can perform replication to buckets in different locations or the same location. Multiple replication policies can be set, and if the original bucket cannot be used due to failure or disaster, the service can be provided through the replicated bucket.
Architecture Diagram
Provided Features
Object Storage provides the following features.
- Storage Management: Provides features for creating Object Storage, creating folders, deleting folders, uploading files, downloading files, and deleting files.
- Version Management: When version management is used, all versions of uploaded files are managed. Previous files can be easily downloaded through the version list.
- Encryption: When encryption is enabled, encryption is provided via SSE-S3 method.
- Access Control: When access control is used, you can directly enter Public IPs allowed to access Object Storage, or select resources within the same Account allowed to access (Virtual Server, Bare Metal Server, VPC Endpoint, etc.).
- Replication: Can perform replication to buckets in different locations or the same location.
- Multiple replication policies can be set
- Permission Management: By default, Private permission is provided, and Public permission and permission management features are provided.
- Private Permission: Allows file sharing and downloading only to users who know the authentication key
- Public Permission: Allows file sharing and downloading to anyone worldwide by accessing the file’s URL
- Monitoring: Monitoring information such as total file count, data amount (Bytes), and HTTP Method request count can be checked through the Cloud Monitoring service.
- ServiceWatch Service Integration: Data can be monitored through the ServiceWatch service.
Components
Authentication Key
The authentication key is an essential element that must be created in advance to use Object Storage.
The purpose of using the authentication key is as follows.
- An authentication key is required to create and access the Object Storage service from Samsung Cloud Platform Console.
- The API provided by Object Storage is compatible with Amazon S3, and tools using Amazon S3 can be used in the same way. In this case, authentication key input is required, and it is used as a tool to identify users with permissions. For detailed instructions on creating and checking authentication keys, see How-to guides > Create Authentication Key.
Bucket
A Bucket is the top-level folder, and all folders and files exist under the bucket. When you create Object Storage service in Samsung Cloud Platform Console, a bucket is created, and you can then upload folders or files.
Bucket naming rules are as follows:
- Bucket names must be at least 3 characters and at most 63 characters.
- Bucket names can only consist of lowercase letters, numbers, periods
., and hyphens-. - Bucket names must start with a lowercase letter or number.
- Bucket names must not have two periods adjacent to each other.
- Bucket names must not end with a period or hyphen.
- Bucket names must not have periods and hyphens adjacent to each other.
- Bucket names must not use IP address format (e.g., 192.168.x.x).
- Bucket names cannot use the name admin.
- Bucket names must be unique within an Account/Region.
- Previously used bucket names can be reused after 1 hour.
| Valid Bucket Name Examples | Invalid Bucket Name Examples |
|---|---|
Can be used with bucket names like
| Cannot be used with bucket names like
|
Folder
Folders are used to logically group files.
Folder naming rules are as follows:
- Folder names can consist of Korean, English, numbers, and special characters.
- Special characters that cannot be entered are as follows:
| Special Characters Not Allowed in Folder Names |
|---|
|
File
A File refers to data stored in Object Storage and is the same as a regular file.
File naming rules are as follows:
- File names can consist of Korean, English, numbers, and special characters.
- Special characters that cannot be entered are as follows:
| Special Characters Not Allowed in File Names |
|---|
|
Folder names and file names are separated by a slash /. The following are examples of valid folder names and file names:
| Examples of Mixed Folder and File Name Usage |
|---|
|
Note
The path length including folder name, file name, and delimiter (
/) is limited to 1,024 Bytes (based on UTF-8 Encoding).URL
You can access Object Storage buckets through URLs. Public and Private URLs are provided, allowing access not only from the same Samsung Cloud Platform environment but also from external internet environments.
The URL structure is composed as follows:
| URL Without Account ID | URL With Account ID |
|---|---|
| https://[Representative URL]/[bucket name]/[folder name]/[file name] | https://[Representative URL]/[accountId]:[bucket name]/[folder name]/[file name] |
| Component | Description | Example |
|---|---|---|
| Representative URL | The Representative URL can be checked from the URL in Check Object Storage Detailed Information
| - |
| accountId | account ID
| c2ef8be0481d4094af3c6d046e536d25 |
| bucket name | Bucket name created by the user | bucketname |
| folder name | Folder name where the file is located | folder/folder01/folder02/ |
| file name | File name | Filename02 |
Table. Object Storage URL Components
Complete URL information for files can be found in Check File Information.
Constraints
Constraints of Object Storage are as follows:
| Component | Description |
|---|---|
| Number of creatable Object Storage services | Up to 1,000 per region |
| File name length (including path) | 1,024 Bytes or less |
| File upload capacity |
|
| Number of files in bucket | Up to 200 million |
Table. Object Storage Constraints
Warning
- It is recommended to store up to 200 million files in a bucket. If exceeding 200 million, severe performance degradation may occur, so manage the number of files.
- When using S3 Backend Filesystem solutions (ex. s3fs, objectivefs, etc.), it is recommended not to use version management. Performance degradation may occur when using version management.
Note
When executing Amazon S3 API after changing IAM permissions, it may take up to 30 seconds.
Note
- Korea South3 (kr-south3) region constraints
- File upload and download functions through Samsung Cloud Platform Console are limited.
- S3 API/CLI usage using Public URL is limited.
- However, Private URL access through resources created in Samsung Cloud Platform Console (Virtual Server, etc.) is possible.
- Korea South1 (kr-south1), Korea South2 (kr-south2) region constraints
- Separate firewall settings must be allowed for Public URL access.
- Public URL address can be checked on the Object Storage detail page. Refer to Check Object Storage Detailed Information.
Prerequisite Services
Object Storage has no prerequisite services.