For a complete list of the supported architectures and API calls for the S3 Gateway, see Concepts: S3 Compatibility.

Minimum Requirements

✅ 1 CPU

✅ 2GB of RAM

Depending on the load and throughput, more resources may be required.

Dependencies

✅ Tardigrade Satellite Account​

✅ Tardigrade Satellite Project​

✅ Tardigrade Satellite API Key​

Set Up

1. Download, unzip, and install the binary for your OS:

curl https://github.com/storj/gateway/releases/latest/download/gateway_windows_amd64.exe.zip -o gateway_windows_amd64.exe.zip; Expand-Archive gateway_windows_amd64.exe.zip -Destination . -Force

curl -L https://github.com/storj/gateway/releases/latest/download/gateway_linux_amd64.zip -O && unzip gateway_linux_amd64.zip
chmod 755 gateway
sudo mv gateway /usr/local/bin/gateway

curl -L https://github.com/storj/gateway/releases/latest/download/gateway_linux_arm.zip -O && unzip gateway_linux_arm.zip
chmod 755 gateway
sudo mv gateway /usr/local/bin/gateway

curl -L https://github.com/storj/gateway/releases/latest/download/gateway_darwin_amd64.zip -O && unzip gateway_darwin_amd64.zip
chmod 755 gateway
sudo mv gateway /usr/local/bin/gateway

2. Setup your S3 gateway by running the following command and following the instructions provided by the wizard:

cd $env:USERPROFILE/Desktop/
./gateway.exe setup

gateway setup

gateway setup

3. Enter the numeric choice or satellite address corresponding to the satellite you've created your account on.

The satellite address should be entered as <nodeid>@<address>:<port> for example: 12L9ZFwhzVpuEKMUNUqkaTLGzwY9G24tbiigLiXpmZWKwmcNDDs@europe-west-1.tardigrade.io

4. Choose an access name (this step may not yet be implemented in the version of S3 Gateway you are using - if you don't see this prompt, skip to step 5 below).

5. Enter the API key you generated:

6. Create and confirm an encryption passphrase, which is used to encrypt your files before they are uploaded:

7. Your S3 gateway is configured and ready to use!

Configure using an Access Grant

To obtain an access grant with Uplink CLI, enter:

cd $env:USERPROFILE/Desktop/
./uplink share sj://site --readonly --not-after +2h

uplink share sj://site --readonly --not-after +2h

uplink share sj://site --readonly --not-after +2h

Now we got our access grant and can configure the gateway as follows:

cd $env:USERPROFILE/Desktop/
./gateway setup --access 14aV.... --non-interactive

gateway setup --access 14aV.... --non-interactive

gateway setup --access 14aV.... --non-interactive

This command will set up the default access in the gateway config file.

You can see the path to the default config file config.yaml with this command:

cd $env:USERPROFILE/Desktop/
./gateway help

gateway help

gateway help

Add multiple Access Grants to the Gateway config file

You can add several access grants to the config.yaml. using this format:

access: 14aV.... # default Access
accesses.site: 26NBm..... # the Access with name "site"

Run the Gateway

The gateway functions as a daemon. Start it and leave it running.

./gateway.exe run

gateway run

gateway run

docker run -it --rm -p 127.0.0.1:7777:7777 --mount type=bind,source=/path/to/gateway-config-dir/,destination=/root/.local/share/storj/gateway/ --name gateway storjlabs/gateway:b8e4299-v1.1.0-go1.13.8 --server.address=":7777"

The gateway should output your S3-compatible endpoint, access key, and secret key.

Running the Gateway with Access Grant

You can run a gateway with specifying the access grant (or its name) with option --access, for example:

./gateway run --access 14aV....

./gateway run --access site

gateway run --access 14aV....

gateway run --access site

gateway run --access 14aV....

gateway run --access site

Running the Gateway to host a static website

You can also run a gateway to handle a bucket as a static website. Make sure to limit the access to the exposed buckets.

./gateway run --access 14aV.... --website

./gateway run --access site --website

gateway run --access 14aV.... --website

gateway run --access site --website

gateway run --access 14aV.... --website

gateway run --access site --website

Now you can navigate to http://localhost:7777/site/ to see the bucket site as XML or to http://localhost:7777/site/index.html to see a static page, uploaded to the bucket site.

Running the Gateway to host a static website with cache

You can use the Minio caching technology in conjunction with hosting of a static website.

The following example uses /mnt/drive1, /mnt/drive2 ,/mnt/cache1 ... /mnt/cache3 for caching, while excluding all objects under bucket mybucket and all objects with '.pdf' extensions on a S3 Gateway setup. Objects are cached if they have been accessed three times or more. Cache max usage is restricted to 80% of disk capacity in this example. Garbage collection is triggered when the high watermark is reached (i.e. at 72% of cache disk usage) and will clear the least recently accessed entries until the disk usage drops to the low watermark - i.e. cache disk usage drops to 56% (70% of 80% quota).

Export the environment variables before running the Gateway:

$env:MINIO_CACHE="on"
$env:MINIO_CACHE_EXCLUDE="*.pdf,mybucket/*"
$env:MINIO_CACHE_QUOTA=80
$env:MINIO_CACHE_AFTER=3
$env:MINIO_CACHE_WATERMARK_LOW=70
$env:MINIO_CACHE_WATERMARK_HIGH=90

export MINIO_CACHE="on"
export MINIO_CACHE_DRIVES="/mnt/drive1,/mnt/drive2,/mnt/cache{1...3}"
export MINIO_CACHE_EXCLUDE="*.pdf,mybucket/*"
export MINIO_CACHE_QUOTA=80
export MINIO_CACHE_AFTER=3
export MINIO_CACHE_WATERMARK_LOW=70
export MINIO_CACHE_WATERMARK_HIGH=90

export MINIO_CACHE="on"
export MINIO_CACHE_DRIVES="/mnt/drive1,/mnt/drive2,/mnt/cache{1...3}"
export MINIO_CACHE_EXCLUDE="*.pdf,mybucket/*"
export MINIO_CACHE_QUOTA=80
export MINIO_CACHE_AFTER=3
export MINIO_CACHE_WATERMARK_LOW=70
export MINIO_CACHE_WATERMARK_HIGH=90

Then run the gateway with static site enabled.

Reconfiguring the AWS CLI to interface with the Tardigrade Network

To show that this gateway is working, first make sure you have the AWS S3 CLI installed.

Once you do, in a new terminal session, configure it with your Gateway's credentials:

$ aws configure
---
AWS Access Key ID: [Enter your Gateway's Access Key]
AWS Secret Access Key: [Enter your Gateway's Secret Key]
Default region name: [null]
Default output format: [null]

Then, test out some AWS S3 CLI commands!

Create a bucket

aws s3 --endpoint=http://localhost:7777/ mb s3://bucket-name

Upload an object

aws s3 --endpoint=http://localhost:7777/ cp ~/Desktop/your-large-file.mp4 s3://bucket-name

List objects in a bucket

aws s3 --endpoint=http://localhost:7777/ ls s3://bucket-name/

Download an object

aws s3 --endpoint=http://localhost:7777/ cp s3://bucket-name/your-large-file.mp4 ~/Desktop/your-large-file.mp4

Generate a URL for an object

aws s3 --endpoint=http://localhost:7777/ presign s3://bucket-name/your-large-file.mp4

(This URL will allow live video streaming through your browser or VLC)

Delete an object

aws s3 --endpoint=http://localhost:7777/ rm s3://bucket-name/your-large-file.mp4

All Commands

​cp - Copies a local file or S3 object to another location locally or in S3

​ls - List S3 objects and common prefixes under a prefix or all S3 buckets

​mb - Creates an S3 bucket

​mv - Moves a local file or S3 object to another location locally or in S3.

​presign - Generate a pre-signed URL for an S3 object. This allows anyone who receives the pre-signed URL to retrieve the S3 object with an HTTP GET request.

​rb - Deletes an empty S3 bucket

​rm - Deletes an S3 object

​sync - Syncs directories and S3 prefixes. Recursively copies new and updated files from the source directory to the destination. Only creates folders in the destination if they contain one or more files

And that's it! You've learned how to use our S3-compatible Gateway. Ideally, you'll see how easy it is to swap out AWS for the Uplink, going forward.

​