Getting started with S3 Express One Zone
The following section describes how to get started using the Amazon S3 Express One Zone storage class and directory buckets. For more information, see What is S3 Express One Zone?.
Topics
Set up AWS Identity and Access Management (IAM) with S3 Express One Zone
AWS Identity and Access Management (IAM) is an AWS service that helps administrators securely control access to AWS resources. IAM administrators control who can be authenticated (signed in) and authorized (have permissions) to use Amazon S3 resources in S3 Express One Zone. You can use IAM for no additional charge.
By default, users don't have permissions for directory buckets and S3 Express One Zone operations. To grant access permissions for directory buckets and S3 Express One Zone operations, you can use IAM to create users or roles and attach permissions to those identities.
To get started with IAM, see AWS Identity and Access Management (IAM) for S3 Express One Zone and IAM identity-based policies for S3 Express One Zone.
Configure gateway VPC endpoints
To access S3 Express One Zone, you use Regional and Zonal endpoints that are different from standard Amazon S3 endpoints. Depending on the Amazon S3 API operation that you use, either a Zonal or Regional endpoint is required. For a complete list of supported API operations by endpoint type, see API operations supported by S3 Express One Zone. You must access both Zonal and Regional endpoints through a gateway virtual private cloud (VPC) endpoint. To configure gateway endpoints, see Networking for S3 Express One Zone.
Work with S3 Express One Zone by using the S3 console, AWS CLI, and AWS SDKs
You can work with the S3 Express One Zone storage class and directory buckets by using the AWS SDKs, Amazon S3 console, AWS Command Line Interface (AWS CLI), and Amazon S3 REST API.
S3 Console
To get started using the S3 console, follow these steps:
AWS SDKs
S3 Express One Zone supports the following AWS SDKs:
-
AWS SDK for C++
-
AWS SDK for Go v2
-
AWS SDK for Java 2.x
-
AWS SDK for JavaScript v3
-
AWS SDK for .NET
-
AWS SDK for PHP
-
AWS SDK for Python (Boto3)
-
AWS SDK for Ruby
-
AWS SDK for Kotlin
-
AWS SDK for Rust
When you're working with S3 Express One Zone, we recommend using the latest version of the AWS SDKs. The supported AWS SDKs for S3 Express One Zone handle session establishment, refreshment, and termination on your behalf. This means that you can immediately start using API operations after you download and install the AWS SDKs and configure the necessary IAM permissions. For more information, see AWS Identity and Access Management (IAM) for S3 Express One Zone.
For information about the AWS SDKs, including how to download and install them,
see Tools to Build on
AWS
For AWS SDK examples, see the following:
AWS Command Line Interface (AWS CLI)
You can use the AWS Command Line Interface (AWS CLI) to create directory buckets and use supported Regional and Zonal endpoint API operations for S3 Express One Zone.
To get started with the AWS CLI, see Get started with the AWS CLI in the AWS CLI Command Reference.
Note
To use directory buckets with the high-level aws s3 commands, update your AWS CLI to the latest version. For more information about how to install and configure the AWS CLI,
see Install or update the latest version of the AWS CLI in the AWS CLI Command Reference.
For AWS CLI examples, see the following:
