Getting started with OSS¶
Object Storage Service (OSS) is a distributed storage service that enables you to store any amount of data from anywhere via HTTP/HTTPS protocols. OSS has no restrictions on data structure or format. It also has no bucket size limit and partition management, making it suitable for virtually any use case, such as data delivery, data processing, and data lakes. OSS provides a web-based console, multi-language SDKs and APIs, command line tool, and graphical tools. It works well with Amazon S3 APIs, allowing you to quickly access community tools and plugins.
Concepts¶
This section describes key concepts that help you better understand OSS.
Access Endpoint: A default CDN acceleration domain name automatically generated when OSS service is activated, which is used for the general access of OSS service.
Bucket: A container for objects stored in OSS. Each bucket can store an unlimited number of objects.
Object: The basic unit of OSS storage. It can be data in any format, such as image, document, audio, and video.
Credential: The security certificate required for user identity verification when accessing OSS, composed of both an Access Key and a Secret Key.
Activate OSS Service¶
-
Sign in to the SwiftFederation Portal and Choose Object Storage Service (OSS) at top navigation pane.
-
Choose Activate OSS Service at Dashboard tab.
Create Credential¶
1.Sign in to the VNCDN Portal and Choose Object Storage Service (OSS) at top navigation pane.
2.In the Credentials list, choose Add Credential. The Add Credential page opens.
3.Choose permission.
4.Choose Add Credential.
5.Get and note down the Credentials Access Key and Secret Key carefully.
Note.
1) The Create Credential will only provide the Secret Key when created, and cannot be queried afterward.
2) Credential key is an important credential for creating OSS requests. For the security of your assets and services, please keep the keys private, change them regularly, and delete old keys promptly after creating new ones.
What permissions can I grant?¶
The following table lists the set of permissions that OSS supports in an ACL (Access control list). The set of ACL permissions is AWS S3-compatible for object ACL and bucket ACL.
| Permission | Bucket Access | Object Access |
|---|---|---|
| Read | Allows grantee to list the objects in the bucket | Allows grantee to read the object data and its metadata |
| Read-Write | Allows grantee to create new objects in the bucket in addition to the permission mentioned above in "Read". | Allows grantee to read the object data and its metadata |
| Full Control | Allows grantee to grant the ACL permissions on the bucket in addition to the permission mentioned above in "Read-Write" | Allows grantee to grant the ACL permissions on the object in addition to the permission mentioned above in "Read-Write" |