Hemanshu Sanjay Mahajan's blog

Day 47 : AWS S3 (Simple Storage Service)

Hemanshu S Mahajan's photo
Hemanshu S Mahajan
·

8 min read

Day 47 : AWS S3 (Simple Storage Service)

What is S3?

  • S3 is one of the first services that has been produced by aws.

  • S3 stands for Simple Storage Service.

  • S3 provides developers and IT teams with secure, durable, highly scalable object storage.

  • It is easy to use with a simple web services interface to store and retrieve any amount of data from anywhere on the web.

  • S3 is a safe place to store the files.

  • It is Object-based storage, i.e., you can store the images, word files, pdf files, etc.

  • The files which are stored in S3 can be from 0 Bytes to 5 TB.

  • It has unlimited storage means that you can store the data as much you want.

  • Files are stored in Bucket. A bucket is like a folder available in S3 that stores the files.

  • S3 is a universal namespace, i.e., the names must be unique globally. Bucket contains a DNS address. Therefore, the bucket must contain a unique name to generate a unique DNS address.

If you create a bucket, URL look like:

111.png

  • If you upload a file to S3 bucket, then you will receive an HTTP 200 code means that the uploading of a file is successful.

Advantages of Amazon S3 :

222.jpg

  • Create Buckets: Firstly, we create a bucket and provide a name to the bucket. Buckets are the containers in S3 that stores the data. Buckets must have a unique name to generate a unique DNS address.

  • Storing data in buckets: Bucket can be used to store an infinite amount of data. You can upload the files as much you want into an Amazon S3 bucket, i.e., there is no maximum limit to store the files. Each object can contain upto 5 TB of data. Each object can be stored and retrieved by using a unique developer assigned-key.

  • Download data: You can also download your data from a bucket and can also give permission to others to download the same data. You can download the data at any time whenever you want.

  • Permissions: You can also grant or deny access to others who want to download or upload the data from your Amazon S3 bucket. Authentication mechanism keeps the data secure from unauthorized access.

  • Standard interfaces: S3 is used with the standard interfaces REST and SOAP interfaces which are designed in such a way that they can work with any development toolkit.

  • Security: Amazon S3 offers security features by protecting unauthorized users from accessing your data.

S3 is a simple key-value store :

S3 is object-based. Objects consist of the following :

  • Key: It is simply the name of the object. For example, hello.txt, spreadsheet.xlsx, etc. You can use the key to retrieve the object.

  • Value: It is simply the data which is made up of a sequence of bytes. It is actually a data inside the file.

  • Version ID: Version ID uniquely identifies the object. It is a string generated by S3 when you add an object to the S3 bucket.

  • Metadata: It is the data about data that you are storing. A set of a name-value pair with which you can store the information regarding an object. Metadata can be assigned to the objects in Amazon S3 bucket.

  • Subresources: Subresource mechanism is used to store object-specific information.

  • Access control information: You can put the permissions individually on your files.

Amazon S3 Concepts :

Buckets

  • A bucket is a container used for storing the objects.

  • Every object is incorporated in a bucket.For example, if the object named photos/tree.jpg is stored in the treeimage bucket, then it can be addressed by using the URL treeimage.s3.amazonaws.com/photos/tree.jpg.

  • A bucket has no limit to the amount of objects that it can store. No bucket can exist inside of other buckets.

  • S3 performance remains the same regardless of how many buckets have been created.

  • The AWS user that creates a bucket owns it, and no other AWS user cannot own it. Therefore, we can say that the ownership of a bucket is not transferrable.

  • The AWS account that creates a bucket can delete a bucket, but no other AWS user can delete the bucket.

Objects

  • Objects are the entities which are stored in an S3 bucket.

  • An object consists of object data and metadata where metadata is a set of name-value pair that describes the data.

  • An object consists of some default metadata such as date last modified, and standard HTTP metadata, such as Content type. Custom metadata can also be specified at the time of storing an object.

  • It is uniquely identified within a bucket by key and version ID.

Key

  • A key is a unique identifier for an object.

  • Every object in a bucket is associated with one key.

  • An object can be uniquely identified by using a combination of bucket name, the key, and optionally version ID.

  • For example, in the URL jtp.s3.amazonaws.com/2019-01-31/Amazons3.wsdl where "jtp" is the bucket name, and key is "2019-01-31/Amazons3.wsdl"

Regions

  • You can choose a geographical region in which you want to store the buckets that you have created.

  • A region is chosen in such a way that it optimizes the latency, minimize costs or address regulatory requirements.

  • Objects will not leave the region unless you explicitly transfer the objects to another region.

Data Consistency Model

Amazon S3 replicates the data to multiple servers to achieve high availability. Two types of model:

  • Read-after-write consistency for PUTS of new objects.

  1. For a PUT request, S3 stores the data across multiple servers to achieve high availability.

  2. A process stores an object to S3 and will be immediately available to read the object.

  3. A process stores a new object to S3, it will immediately list the keys within the bucket.

  4. It does not take time for propagation, the changes are reflected immediately.

  • Eventual consistency for overwrite PUTS and DELETES

  1. For PUTS and DELETES to objects, the changes are reflected eventually, and they are not available immediately.

  2. If the process replaces an existing object with the new object, you try to read it immediately. Until the change is fully propagated, the S3 might return prior data.

  3. If the process deletes an existing object, immediately try to read it. Until the change is fully propagated, the S3 might return the deleted data.

  4. If the process deletes an existing object, immediately list all the keys within the bucket. Until the change is fully propagated, the S3 might return the list of the deleted key.

How To Creating an S3 Bucket :

  • Sign in to the AWS Management console. After sign in, the screen appears is shown below:

1.png

  • Move to the S3 services. After clicking on S3, the screen appears is shown below:

2.png

  • To create an S3 bucket, click on the "Create bucket". On clicking the "Create bucket" button, the screen appears is shown below:

3.png

  • Enter the bucket name which should look like DNS address, and it should be resolvable. A bucket is like a folder that stores the objects. A bucket name should be unique. A bucket name should start with the lowercase letter, must not contain any invalid characters. It should be 3 to 63 characters long.

4.png

  • Click on the "Create" button. Now, the bucket is created.

5.png

We have seen from the above screen that bucket and its objects are not public as by default, all the objects are private.

  • Now, click on the "bhupeshbucket" to upload a file in this bucket. On clicking, the screen appears is shown below:

6.png

  • Click on the "Upload" button to add the files to your bucket.

7.png

  • Click on the "Add files" button.

8.png

  • Add the jtp.jpg file.

9.png

  • Click on the "upload" button.

10.png

From the above screen, we observe that the "jtp.jpg" has been successfully uploaded to the bucket "bhupeshbucket".

  • Move to the properties of the object "jtp.jpg" and click on the object URL to run the file appearing on the right side of the screen

11.png

  • On clicking the object URL, the screen appears is shown below:

12.png

From the above screen, we observe that we are not allowed to access the objects of the bucket.

  • To overcome from the above problems, we need to set the permissions of a bucket, i.e., "bhupeshbucket" and unchecked all of them.

13.png

  • Save these permissions.

  • Enter "confirm" in a textbox, then click on the "confirm" button.

14.png

  • Click on the "Actions" dropdown and then click on the "Make public".

15.png

  • Now, click on the Object URL of an object to run the file.

16.png

Important points to remember :

  • Buckets are a universal namespace, i.e., the bucket names must be unique.

  • If uploading of an object to S3 bucket is successful, we receive a HTTP 200 code.

  • S3, S3-IA, S3 Reduced Redundancy Storage are the storage classes.

  • Encryption is of two types, i.e., Client Side Encryption and Server Side Encryption

  • Access to the buckets can be controlled by using either ACL (Access Control List) or bucket policies.

  • By default buckets are private and all the objects stored in a bucket are also private.