The page has been translated by Gen AI.

Amazon S3 Usage Guide

Object Storage provides functions such as creating services, viewing lists, retrieving folder lists, creating folders, uploading files, and downloading files through the Samsung Cloud Platform Console. These functions are also available via an API compatible with Amazon S3. Therefore, tools that use Amazon S3 can be used in the same way.
To use Amazon S3’s utility tools, you need to generate and verify an authentication key. For detailed information, see Create Authentication Key.

Amazon S3 API

The list of Amazon S3 APIs supported by the Samsung Cloud Platform Object Storage service is as follows.

Reference

For detailed information about the Amazon S3 API, see the Amazon S3 API Guide.

Category	Detailed description
head-bucket	Retrieve bucket information
list-buckets	List buckets
get-bucket-versioning	Bucket version management query
put-bucket-versioning	Bucket version control modification
get-bucket-encryption	Retrieve bucket encryption settings
put-bucket-encryption	Apply bucket encryption settings
delete-bucket-encryption	Delete bucket encryption configuration
copy-object	Copy, move, rename objects
put-object	Object creation
get-object	Object download
list-objects	Retrieve object list
head-object	Object detail view
get-object-acl	Retrieve Object ACL
delete-object	Object deletion When versioning is enabled, deleting a file adds a Delete Marker to the file, and the Delete Marker becomes the latest version To permanently delete a file, specify the version ID for deletion
list-object-versions	View object version list
delete-object	Delete object version
presign	Issue a Presigned URL for PUT object
get-bucket-acl	Check bucket public permissions
create-bucket	Create bucket
delete-bucket	Delete bucket
get-bucket-cors	Check bucket CORS (Cross OriginResources) configuration
put-bucket-cors	Create bucket CORS (PUT)
delete-bucket-cors	Delete bucket CORS
put-bucket-tagging	Create bucket tagging
get-bucket-tagging	Bucket tagging query
delete-bucket-tagging	Delete bucket tagging
put-bucket-website	Create bucket website
get-bucket-website	View bucket website
delete-bucket-website	Delete bucket website
get-bucket-policy-status	Check bucket policy status
put-bucket-acl	Create bucket ACL
create-multipart-upload	Create multipart upload
upload-part	Perform multipart upload
complete-multipart-upload	Multipart upload completed
list-multipart-uploads	Multipart upload list
abort-multipart-upload	Delete incomplete Multipart upload
put-object-tagging	Object tagging creation
get-object-tagging	Object tagging query
delete-object-tagging	Delete object tagging
list-objects-V2	Object Lookup (v2)
put-object-acl	Create object ACL
list-parts	Parts lookup
put-public-access-block	Create public access block
get-public-access-block	public access block lookup
delete-public-access-block	Delete public access block
put-bucket-lifecycle	Create bucket Lifecycle (only Expiration rule can be used)
get-bucket-lifecycle	View Bucket Lifecycle
delete-bucket-lifecycle	Delete bucket lifecycle
put-bucket-policy	Create bucket policy(* reference)
get-bucket-policy	View bucket policy
delete-bucket-policy	Delete bucket policy
put-bucket-replication	Edit bucket replication policy When using replication-configuration, verify the following Role: IAM SRN required Rules > Destination Bucket: Bucket SRN required If the Rule ID is not provided, it is automatically generated with a random value Rule priority is not applied, so any value entered has no effect (you can set all to 1) Changing the Rule ID creates a new policy (the existing policy is deleted)
get-bucket-replication	Retrieve bucket replication policy
delete-bucket-replication	Delete bucket replication policy

Table. List of Amazon S3 supported APIs

Example of creating a bucket policy

put-bucket-policy when used, refer to the following example.

{
  "Statement": [
    {
      "Action": "s3:*",
      "Condition": {
        "IpAddress": {
          "scp:SourceIp": []
        },
    &#34;Resource&#34;: {
      &#34;scp:SourceDBaaSId&#34;: [],
      &#34;scp:SourceResourceId&#34;: [],
      &#34;scp:SourceVpcEndpointId&#34;: []
    },
&amp;#34;Service&amp;#34;: {
  &amp;#34;scp:ServiceScf&amp;#34;: &amp;#34;false&amp;#34;
}
},
&#34;Effect&#34;: &#34;Allow&#34;,
&#34;Principal&#34;: &#34;*&#34;,&#34;Resource&#34;: [
&#34;Object Storage SRN&#34;,
&#34;Object Storage SRN/*&#34;
]
}
],"Version": "2012-10-17"
}

Action, Effect, Principal, Resource cannot be modified.
- Enter the Object Storage SRN and Object Storage SRN/* in Resource.
Condition in IpAddress, Resource, Service can be modified as follows.
- IpAddress: Enter a single IP or CIDR format.
- Resource: Enter each resource ID.
- Service: false or true
- For detailed information about permissible targets, refer to Setting Access Control.

Amazon S3 CLI

To use Amazon S3 with the AWS CLI, refer to the Amazon S3 CLI Guide.

Amazon S3 SDK for Java

To use the Amazon S3 SDK for Java, please refer to Amazon S3 SDK Guide.

Reference

For SDK guides and Rest API guides for other languages, see the AWS official website.

Reference

Refer to the following for the region parameter required to use the Amazon S3 SDK.
- For Korea West (kr-west1): kr-west
- When South Korea 1,2,3 (kr-south1,2,3): kr-south
The region parameter is for reference only, and the actual region is determined based on the URL.

Reference

South Korea Region 3 (kr-south3) constraints
- File upload and download capabilities are limited through the Samsung Cloud Platform Console.
- Use of the S3 API/CLI via a public URL is restricted.
- However, private URL access is possible through resources (such as Virtual Server) created in the Samsung Cloud Platform Console.
South Korea South 1 (kr-south1), South Korea South 2 (kr-south2) region restrictions
- To access the public URL, you must allow a separate firewall configuration.
- You can view the public URL address on the Object Storage details page. Refer to Check Object Storage Details.

Overview

Monitoring Metrics