Amazon S3 (Simple Storage Service) is a scalable, high-speed, web-based cloud storage service designed for online backup and archiving of data and applications. It provides developers and IT teams with secure, durable, and highly available object storage.
This guide is designed to help users understand the basics of Amazon S3, including how to set up and use it effectively. By following this guide, you will learn how to create an S3 bucket, manage access, and work with files in S3.
Using an IAM user instead of the root account enhances security by limiting access and permissions to only what is necessary for specific tasks.
- Log in to the AWS Management Console.
- Navigate to the IAM service.
- Click on Users and then Create User.
- Enter a username.
- Attach a policy (directly) (e.g., AmazonS3FullAccess) or create a custom policy.
- Review and create the user.
Access keys are credentials that allow programmatic access to AWS services. They consist of an access key ID and a secret access key.
- After creating an IAM user, click on your IAM user name.
- Go to Security credentials, then Create access key.
- Select Application running outside AWS and create access key.
- Download access key and secret access key.
- Store them securely in a password manager, as environment variables or in config.json file.
- Avoid hardcoding them in your application.
- Navigate to the S3 service in the AWS Management Console.
- Click Create bucket.
- Enter a unique bucket name.
- Versioning is not supported yet, so disable it.
- Leave default values, review and create the bucket.
Bucket names must be globally unique, between 3 and 63 characters, and cannot contain uppercase letters or underscores.
For more information about the S3 consistency model, versioning, and encryption options, see the official AWS documentation here.
Uploading a file to S3 involves specifying the file path, object key which is a path to the object in the bucket and content type(text file, image etc. ).
# Upload a file
s3_client.upload_file(filepath='usr/hello.txt', object_key='test-folder/hello.txt',content_type='text/str')# Download a file
s3_client.download_to_file(object_key='test-folder/hello.txt') # Delete a file
s3_client.delete_file(object_key='test-folder/hello.txt') This script will:
- Upload a file to S3.
- Download the same file.
- Delete the file.
Before running the script, you need to add configuration details to the config.json file, such as the bucket name, access key, secret key, AWS region, and the download path (the local directory where downloaded files will be saved).
Alternatively, you can provide these configuration details directly through the S3 client constructor, but using a config file is recommended.
from s3client import S3Client
s3_client = S3Client(
region="eu-west-3",
access_key="YOUR_ACCESS_KEY",
secret_key="YOUR_SECRET_KEY",
bucket="your-bucket-name",
download_path="s3_downloads/"
)
# Upload a file
s3_client.upload_file(filepath='usr/hello.txt', object_key='test-folder/hello.txt',content_type='text/str')
# Download a file
s3_client.download_to_file(object_key='test-folder/hello.txt')
# Delete a file
s3_client.delete_file(object_key='test-folder/hello.txt')- Replace
bucketwith your S3 bucket name. - Replace
access_keyandsecret_keywith your access and secret key. - Ensure your AWS credentials are configured properly.