Udemy lecture 5: Amazon S3 Flashcards
__________ is one of the main building blocks of AWS
Amazon S3
What are the different use cases of amazon S3?
- Backup & storage
- Disaster recovery
- Archive
- Hybrid cloud storage
- Application hosting
- Media hosting
etc
Amazon S3 stores objects (files) into ____________
Buckets (directories)
Buckets must have a ____________________ name (across all regions all accounts)
Globally unique name
Buckets are defined at the __________ level
Region
What is the naming conventions for S3 buckets?
- No uppercase, no underscore
- 3-63 character long
- Not an IP
- Must start with lowercase letter or number
- Must not start with the prefix xn-
- Must not end with the suffix -s3alias
So just use letters, numbers, and hyphons youll be fine
Objects (files) have a ________
Key
The key is the _________ path
Full (all the layers of your file like think of it being in a folder & having multiple layers
The object key is composed of the __________ + _____________
prefix + object name (ex. s3://my-bucket/my_folderI/another_folder(prefix)/(object name) my_file.txt
Keys are usually just long names that contain ________
Slashes (/)
Object values are the content of the _________
Body
What are some aspects of objects related to their sizing?
- Max. object size is 5TB (5000GB)
- If uploading more than 5GB, must use “multi-part upload”
Object can also contain __________
Metadata
What are metadata?
Metadata consists of a list of text key/ value pairs, which can be used by the system or user to know some elements of the file
Metadata contain ______– which are unicode key/ value pair up to 10 & they are useful for security/ lifecycle
Tags
Metadata also contains a __________ if versioning is enabled
Version ID
What are the different Amazon S3 securities?
- User-based
- Resources- Based
- Encryption
What are the user-based policies used in Amazon S3?
IAM policies
What are IAM polices related to S3?
IAM policies are API calls that decide which API calls should be allowed for a specific user from IAM
What are the different resource-based policies related to S3?
- Bucket policies
- Object Access Control List (ACL)
- Bucket Access control list (ACL)
What is the bucket policies related to S3?
Its bucket wide rules from the S3 console which allows cross account (its what allows it to become public)
What are the object access control list (ACL) related to S3?
Finer grain that can be disabled
What are the bucket access control list (ACL) related to S3?
Less common & can be disabled
What are the conditions that must be met for an IAM principal to access an S3 object?
- The user IAM permissions allow it or the resources policy allows it
- There’s no explicit deny