Using an Object Storage endpoint with a Managed Network Load Balancer (NLB) creates a secure connection to use IONOS Object Storage within your work environment.
To access Object Storage from a private LAN using NLB, follow these steps:
Prerequisites:
— Set up an NLB by following the steps in Create a NLB. If a load balancer already exists, then it has a private IP address.
— Use the public IP addresses of the desired Endpoints as the Target IP address.
1. In the DCD, select the NLB element to open its properties in the Inspector pane on the right.
2. In the Settings, provide the information such as Name, Primary IPv4, and Add IP settings. Adding one or more additional Listener IPs is optional. For more information, see Settings.
Note: Public IPs must be reserved first. You can reserve public IPs by following the steps in Reserve an IPv4 address.
3. In the Private IPs, add the private IP. To do so, follow the steps in Add and delete IPs.
4. In the Forwarding rules, add a forwarding rule as follows:
Select the Private IP as the Listener IP of the forwarding rule.
Choose any algorithm.
The protocol can be used as TCP, which is the default value.
For more information, see Create a rule.
5. Add target by using these values:
Target IP: Select a corresponding Target IP value that is the public IP address of the desired endpoint.
Following is the example of IP address values obtained for the endpoints:
s3.eu-central-3.ionoscloud.com
85.215.142.30
s3.eu-central-1.ionoscloud.com
81.173.115.249
s3.eu-central-2.ionoscloud.com
85.215.240.253
s3.eu-south-2.ionoscloud.com
93.93.114.231
Target Port: Use the value 443. This is the specific port on which a service or application is running on a server.
Weight: Enter a target weight from 1 to 256.
Proxy Protocol: Choose none for disabling the proxy protocol.
For more information, see the steps in Create a target.
6. Click PROVISION CHANGES to save the configurations and apply them.
7. Configure /etc/hosts on the backend server. For example, run the following command to open the file with sudo privileges:sudo nano /etc/hosts.
Edit the file /etc/hosts by adding a new line with a private listener IP address followed by the endpoint. This will map a specific domain to the private IP address of your NLB.
Example:
Result: The private LAN using NLB is successfully set up to access Object Storage.
By default, objects in the IONOS Object Storage are private and only the bucket owner has permission to access them. Only the bucket owner can generate a pre-signed URL for objects and grant time-bound permission to other users to access these objects. It is a secure and user-friendly way to share private objects stored in your Object Storage with other users.
Note: For a contract-owned bucket, in addition to the bucket owner, the administrator has permission to generate a pre-signed URL for objects and grant time-bound permission to other users to access these objects.
This way, the objects are made publically available for users with the object's pre-signed URL; however, you could limit the period of access to the object.
Pre-signed URLs are ideal for providing temporary access to a specific object without needing to change the object's permissions or share your credentials with other users.
Allows other users to upload objects directly to your Object Storage bucket without needing to provide them with access and secret keys.
You can generate a pre-signed URL to share objects through one of the following methods:
1. In the DCD, go to Menu > Storage > IONOS Object Storage.
2. From the drop-down list in the Buckets tab, choose either to Show user-owned buckets or Show contract-owned buckets depending on the bucket type you want to view.
3. From the Buckets list, choose the bucket from which you want to share the objects. The list of objects in the bucket is listed.
4. Select the object to share and click Generate Pre-Signed URL.
5. Enter the expiration time for the URL and choose whether the specified time refers to seconds, minutes, hours, or days.
6. Click Generate.
7. Copy the generated pre-signed URL and share it with users who require access to this object.
Result: The pre-signed URL for the selected object is generated successfully and copied to the clipboard. The URL is valid for the period defined during URL generation.
Prerequisites: — Set up the AWS CLI by following the installation instructions.
— Make sure to consider the supported Endpoints.
Generate a pre-signed URL for my-object.txt in the my-bucket bucket which will expire in 3600 seconds:
The creation of pre-signed URLs does not involve a dedicated API by design. These URLs are generated locally via a signing algorithm using your credentials without relying on the S3 API. To create these URLs, use the appropriate SDK for your programming language.
IONOS Object Storage is S3-compatible, allowing seamless integration with any SDK supporting the S3 protocol for tasks like generating pre-signed URLs. For generating pre-signed URLs using SDKs, see the following AWS methods: Python, Go, Java 2.x., JavaScript 2.x., JavaScript v3, and PHP Version 3.
Depending on the Bucket Types access you want to share with the user, learn how to retrieve the required user ID.
For another user to share the content of their IONOS Object Storage with you, they need your user ID, which you will find in the Object Storage Key Management section.
Prerequisite:
— Make sure you have the corresponding permissions to work with the Object Storage. If you are not the contract owner or administrator, you must be added to a group with Use Object Storage privilege.
— You must have generated the first Object Storage key using Generate a Key. Only upon generating the first key, the Canonical User ID of the user is displayed in the Credentials and Users & Groups > Users > Object Storage Keys > IDs section.
1. In the DCD, go to Menu > Storage and click the IONOS Object Storage.
2. Select the Key management tab.
3. In the Object Storage Credentials, click Copy against the user's ID as follows:
Copy the Contract User ID to grant access to contract-owned buckets.
Copy the Canonical User ID to grant access to user-owned buckets.
Result: Your user ID is successfully copied to the clipboard.
The grantee is the user under the same contract at IONOS, but it also could be the user under another contract. You need the user ID to share access to the bucket or object using Share access methods.
Prerequisites:
— Make sure the grantee Object Storage account already exists. If not, then, begin creating the grantee by following the steps to Retrieve the user ID of a new user.
— Make sure you have the corresponding permission to work with the Object Storage. You must be added to a group with Use Object Storage privilege. Only contract owners and administrators can retrieve the IONOS Object Storage IDs of their account users.
— Only upon generating the first object storage key, the Canonical User ID of the user is displayed in the Users & Groups > Users > Object Storage Keys > IDs section.
1. In the DCD, go to Menu > Management > Users & Groups.
2. Select the user from the Users list and click the Object Storage Keys tab.
3. Click the Object Storage link and retrieve the user's ID as follows:
Copy the Contract User ID to grant access to contract-owned buckets.
Copy the Canonical User ID to grant access to user-owned buckets.
Result: The user ID for the grantee is successfully retrieved.
If the grantee's user account does not already exist or you want to assign a different set of permissions, then the root user of the contract needs to create the user account and then retrieve the user ID to grant access to buckets and objects.
1. In the DCD, go to Menu > Management > Users & Groups.
2. In the Users tab, click + Create.
3. Enter the user details such as First Name, Last Name, Email, Password, and click Create.
Result: The new user is created and shown in the Users list.
4. Add the user to a group with Use Object Storage privilege enabled.
5. The user must log in to the DCD with their credentials and manually generate the Object Storage key by using Generate a Key.
Info: Only upon generating the first key, the Canonical User ID of the user is displayed in the Object Storage Credentials and Users & Groups > Users > Object Storage Keys > IDs section.
6. In the Users list, select the user and click the Object Storage Keys tab.
5. Select the Active checkbox to activate the Key.
6. Click the Object Storage link and retrieve the user's ID as follows:
Copy the Contract User ID to grant access to contract-owned buckets.
Copy the Canonical User ID to grant access to user-owned buckets.
Result: The new user is successfully created and the user ID is retrieved. You can now share access to the bucket with the new user using Share access.
For each user, an Object Storage key must be generated manually using Generate a Key.
1. In the DCD, go to Menu > Storage > IONOS Object Storage.
2. In the Key management tab, go to the Access keys section that lists all keys present in your account.
3. Select the key and toggle on or off the Active option to activate or deactivate the key respectively.
Result: The access key status is set as active when toggled on and deactivated when toggled off.
Warning:
— When you have only one access key, disabling this key will lose your access to all existing buckets. However, the objects remain and usage costs continue to apply.
— To avoid losing access to your Object Storage buckets, you need at least one active access key. You can either generate a new access key or set an existing deactivated key as active.
Prerequisite: Only contract administrators and owners can set up the object storage and manage keys for other users. Make sure you have the corresponding permission.
1. In the DCD, go to Menu > Management > Users & Groups.
2. Select the user from the Users list and click the Object Storage Keys tab.
3. Select the checkbox Active against the Key you want to set as active. Uncheck the checkbox if you want to deactivate the key.
Result: The access key status is successfully updated.
1. In the DCD, go to Menu > Storage > IONOS Object Storage.
2. In the Key management tab, go to the Access keys section that lists all keys present in your account.
3. Select the key to be deleted and click Delete.
Warning: Any access associated with this key will be revoked and cannot be restored.
4. To confirm the deletion of the key, click Delete.
Result: The access key is successfully deleted.
Warning: When you have only one access key with existing buckets, you cannot delete this key. You can either choose to Deactivate a key or create a new access key before deleting the selected key. You can also delete existing buckets and continue with deleting the last access key.
Prerequisite: Only contract administrators and owners can delete keys for other users. Make sure you have the corresponding permission.
1. In the DCD, go to Menu > Management > Users & Groups.
2. Select the user from the Users list and click the Object Storage Keys tab.
3. Select the key to be deleted from the list of keys and click Delete.
Warning: Any access associated with this key will be revoked and cannot be restored.
4. To confirm the deletion of the key, click OK.
Result: The access key is successfully deleted.
Use the API or Object Storage Management API to manage Object Storage access keys.
To manage your buckets, objects, and keys in your Object Storage, refer to the following How-Tos that guide you with step-by-step instructions to complete the tasks.
View the bucket types, navigate to the bucket settigs, copy the endpoint URL, or delete a bucket.
Use the search, versioning, prefixes, and delete options to manage objects and folders effectively.
Generate Object Storage keys to login securely, and activate or deactivate to keys to manage access to buckets and objects.
Retrieve Canonical User ID for sharing buckets, objects, and object versions with other Object Storage users.
Generate pre-signed URL to time-bound object share access with other Object Storage users.
Create a secure connection using NLB and access Object Storage from a private LAN.
Using the DCD, you can search for objects in buckets if the prefix or full name is known. For technical reasons, it is not possible to search for objects across buckets or folders.
To search for an object, follow these steps:
1. In the DCD, go to Menu > Storage > IONOS Object Storage.
2. From the drop-down list in the Buckets tab, choose either Show user-owned buckets or Show contract-owned buckets depending on the bucket type you want to view.
3. From the Buckets list, choose the bucket in which you want to search for objects.
4. In the Search by Prefix field, enter the prefix or file name to search for.
Result: The objects matching your search criteria are displayed.
If you have enabled versioning for your Object Storage bucket, you have the flexibility to download non-current versions of objects. Toggle the Show versions option to view objects that are versioned. Objects that were already uploaded to the object storage before versioning was activated are identified by ID null. If versioning is deactivated, existing object versions are retained.
Versioning is not enabled by default. For more information, see Versioning.
1. In the DCD, go to Menu > Storage > IONOS Object Storage.
2. From the drop-down list in the Buckets tab, choose either Show user-owned buckets or Show contract-owned buckets depending on the bucket type you want to view.
3. From the Buckets list, choose the bucket or folder from which you want to download an object.
4. (Optional) To view the object's versions, toggle on Show versions. This option is available only if Versioning is enabled for the bucket.
Info: You may toggle off Show versions to view only the newest version of the objects.
5. Choose the object or object's version to download and click on the respective object's action menu (three dots).
6. Click Download.
7. (Optional) Use the Copy URL option to copy the object's URL to the clipboard.
Result: The object is successfully downloaded.
If you no longer want to keep the objects in the IONOS Object Storage, these objects can be deleted. Deleted objects are not physically removed from the Object Storage, but receive a 'delete marker' and then have a size of 0 KB. These markers are deleted at an interval specified by the user or by the system.
There are two ways to delete objects from the IONOS Object Storage using the DCD - manually and automatically.
1. In the DCD, go to Menu > Storage > IONOS Object Storage.
2. From the drop-down list in the Buckets tab, choose either Show user-owned buckets or Show contract-owned buckets depending on the bucket type you want to view.
3. From the Buckets list, choose the bucket from which you want to delete an object.
4. Choose the object to delete and click on the respective object's action menu (three dots). Alternatively, you can also select the object to delete and click Delete selected objects.
6. Click Delete.
6. Confirm the deletion of the object by choosing Delete.
Result: The object is successfully deleted from the bucket.
You can also automate the deletion of objects using Lifecycle.
1. In the DCD, go to Menu > Storage > IONOS Object Storage.
2. From the drop-down list in the Buckets tab, choose either Show user-owned buckets or Show contract-owned buckets depending on the bucket type you want to view.
3. From the Buckets list, choose the bucket from which you want to delete a folder.
4. Choose the folder to delete and click on the respective folder's action menu (three dots). Alternatively, you can also select the folder to delete and click Delete selected objects.
5. Click Delete.
6. Confirm the deletion of the folder by choosing Delete. If the folder contains objects, you see an option to Empty and delete which deletes all the objects within the folder and then deletes the folder.
Result: The folder is successfully deleted from the bucket.
You can delete multiple objects and folders in a bucket at a time by following these steps:
1. In the DCD, go to Menu > Storage > IONOS Object Storage.
2. From the drop-down list in the Buckets tab, choose either Show user-owned buckets or Show contract-owned buckets depending on the bucket type you want to view.
3. From the Buckets list, choose the bucket from which you want to delete objects and folders.
4. Select the checkboxes next to the names of the objects and folders to be deleted.
5. (Optional) To delete all objects and folders, select the checkbox next to the names of the objects and folders.
6. Click Delete selected objects.
7. Confirm the deletion of selected objects and folders by choosing Delete. If the folder contains objects, you see an option to Empty and delete which deletes all the objects within the folder and then deletes the folder.
Result: The objects and folders selected for deletion are successfully deleted from the bucket.
1. In the DCD, go to Menu > Storage > IONOS Object Storage.
2. From the drop-down list in the Buckets tab, choose either to Show user-owned buckets or Show contract-owned buckets depending on the bucket type you want to view.
Result: All the buckets present under the selected bucket type are listed.
— On choosing Show user-owned buckets, only buckets owned by the user are listed.
— On choosing Show contract-owned buckets, all the buckets created by all the users under this contract are listed.
— Each bucket displays the bucket name, bucket type, , and the date of bucket creation.
1. In the DCD, go to Menu > Storage > IONOS Object Storage.
2. From the drop-down list in the Buckets tab, choose either Show user-owned buckets or Show contract-owned buckets depending on the bucket type you want to view.
3. From the Buckets list, choose the bucket on which you want to perform the actions and click on the respective bucket's action menu (three dots).
4. You can perform the following actions:
Result: The action chosen to perform on the bucket is successfully applied.
1. In the DCD, go to Menu > Storage > IONOS Object Storage.
2. From the drop-down list in the Buckets tab, choose either Show user-owned buckets or Show contract-owned buckets depending on the bucket type you want to view.
3. From the Buckets list, choose the bucket to delete and click on the respective bucket's action menu (three dots).
4. Click Delete.
5. Confirm the deletion of the bucket by choosing Delete. If the bucket consists of objects and folders, you see an option to Empty and delete which deletes all the content within the bucket and then deletes the bucket.
Result: The bucket is successfully deleted and removed from the Buckets list.
Bucket Settings: Manage your bucket and its objects by applying the related to data management, access management, and public access settings.
Copy Endpoint URL: Copy the endpoint URL of the bucket to use this URL in the and .
Delete: Use this option to .
