S3 Flashcards
What do you need to do to allow a client to do requests on your S3 bucket?
Allow public access and enable CORS headers on the bucket. The CORS header is “Access-Control-Allow-Origin”
Your application on EC2 creates images thumbnails after profile photos are uploaded to Amazon S3. These thumbnails can be easily recreated, and only need to be kept for 45 days. The source images should be able to be immediately retrieved for these 45 days, and afterwards, the user can wait up to 6 hours. How would you design this?
S3 source images can be on Standard, with a lifecycle configuration to transition them to Glacier after 45 days.
The thumbnails can be kept on One Zone-IA with a lifecycle configuration to delete them after 45 days. One Zone is better because it’s cheaper, and in case of disaster, the thumbnails can be recreated
A rule in your company states that you should be able to recover your deleted S3 objects immediately for 15 days, although this may happen rarely. After this time, and for up to 365 days, deleted objects should be recoverable within 48 hours
You need to enable S3 versioning, so that “deleted objects” are just hidden by a delete marker and can be recovered.
You can transition the noncurrent versions of the objects to IA, and transition them to Deep Archive after 15 days.
How long is the minimum storage time for an object in Glacier?
90 days
Does S3 Transfer Acceleration support Multi-Part uploads?
Yes
What happen if you delete a versioned object?
The object is not actually deleted, a delete marker is instead created and the object is hidden
How many S3 buckets can you have with a new account?
100
When creating a website, and hosting exclusively on S3 while using Route53 to point an Alias to the bucket, what naming conventions must be met?
Bucket name must match the URL
What are the limit to upload and retrieve data to S3 per second?
3500 req/s per bucket prefix to add data
5500 req/s per bucket prefix to retrieve data
prefix = folder path in which the object is contained
What is a namespace in Glacier called?
Vault
Can you set a retention policy specifically for an object version?
Yes, each version of an object can have its own retention policy
Can you create a lifecycle policy to move object from S3 Standard to S3 One Zone-IA after 1 week?
No, the minimum duration to transition from Standard to One Zone-IA is 30 days
What’s the minimum storage duration charge for S3 Zone-IA and S3 Standard-IA
30 days
You want to grant access to S3 to a specific user, what would you use?
Bucket or IAM policies.
Not ACL, because ACL can only grant access at the AWS account level
Can you lock an object in S3?
Yes, you can do it with two different modes
Compliance mode: the object cannot be deleted by any user (including root), its retention mode cannot be changed and the retention period cannot be shortened
Governance mode: the object can be deleted or the retention period changed only by users with special permissions
You can set a retention period, or put a legal hold. Legal hold means that the object has no expiration
