s3

The s3 service deploys an S3 compatible object storage service based on GarageFS. Currently only single region deployments are supported.

Buckets are managed via the buckets list, each bucket can have multiple access keys with owner, read or write permissions. The generated access keys are automatically stored in the configured secret provider. With public_access enabled the bucket content is publicly available via https without any authentication, optionally also on additional domains via public_access_domains. Buckets that are removed from the list will not be deleted automatically.

Required Providers

A cloud provider (hcloud), a backup provider (backup_local or backup_aws_s3) and a secret provider (pass or protonpass).

Example

name: cloud1

providers:
  - type: pass
  - type: ssh_key
  - type: hcloud
  - type: backup_local

services:
  - type: s3
    name: storage1
    buckets:
      - name: bucket1
        access_keys:
          - name: key1
            read: true
            write: true

See the configuration format for the full keyword reference.