File: s3-example-privatelink.rst

package info (click to toggle)
python-boto3 1.40.72-1
  • links: PTS, VCS
  • area: main
  • in suites: sid
  • size: 11,812 kB
  • sloc: python: 14,006; javascript: 192; makefile: 170
file content (77 lines) | stat: -rw-r--r-- 2,766 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
 
.. Copyright 2010-2021 Amazon.com, Inc. or its affiliates. All Rights Reserved.

   This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0
   International License (the "License"). You may not use this file except in compliance with the
   License. A copy of the License is located at http://creativecommons.org/licenses/by-nc-sa/4.0/.

   This file is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND,
   either express or implied. See the License for the specific language governing permissions and
   limitations under the License.

##################
AWS PrivateLink for Amazon S3
##################

This section demonstrates how to configure an S3 client to use an interface
VPC endpoint.


Configuring the client endpoint URL
================================

When configuring an S3 client to use an interface VPC endpoint it's important
to note that only the resource type specified in the endpoint can be addressed
using that client. An exception is Amazon S3 buckets, which can be addressed
using `using an access point alias
<https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-points-naming.html#access-points-alias>`_
on the bucket endpoint as the bucket name. 

The following example configures an S3 client to access S3 buckets via an
interface VPC endpoint. This client cannot be used to address S3 access points
unless you `use an access point alias
<https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-points-naming.html#access-points-alias>`_.

.. code-block:: python

    import boto3

    s3_client = boto3.client(
        service_name='s3',
        endpoint_url='https://bucket.vpce-abc123-abcdefgh.s3.us-east-1.vpce.amazonaws.com'
    )

The following example configures an S3 client to access S3 access points via an
interface VPC endpoint. This client cannot be used to address S3 buckets.

.. code-block:: python

    import boto3

    s3_client = boto3.client(
        service_name='s3',
        endpoint_url='https://accesspoint.vpce-abc123-abcdefgh.s3.us-east-1.vpce.amazonaws.com'
    )

The following example configures an S3 Control client to use an interface VPC
endpoint.

.. code-block:: python

    import boto3

    control_client = boto3.client(
        service_name='s3control',
        endpoint_url='https://control.vpce-abc123-abcdefgh.s3.us-east-1.vpce.amazonaws.com'
    )

The following example accesses an object in an Amazon S3 bucket using an access point alias.

.. code-block:: python

    import boto3

    s3_client = boto3.client(
        service_name='s3',
        endpoint_url = 'https://bucket.vpce-abc123-abcdefgh.s3.us-east-1.vpce.amazonaws.com'
    )
    s3_client.get_object(Bucket='some-bucket-alias-s3alias', Key='file.txt')