AWS SDK and Hosted Gateway MT
Hosted S3 Compatible Multitenant Gateway - AWS SDK
Storj now offers a hosted multitenant gateway (Gateway MT) that is backward compatible with S3. This means you’ll be able to integrate with the Storj network via HTTP, and you won’t have to run anything extra on your end.
By using hosted Gateway MT you are opting into Server-side Encryption
Using Gateway MT with AWS CLI is a 2-step process:
- Generate Credentials to the Gateway MT
- Gateway MT with Amazon S3
Navigate to the Access page within your project and then click on Create S3 Credentials. A modal window will pop up where you should enter a name for this access grant.
Assign the permissions you want this access grant to have, then click on Encrypt My Access:
Enter the Encryption Passphrase you used for your other access grants. If this is your first access grant, we strongly encourage you to use a mnemonic phrase as your encryption passphrase (The GUI automatically generates one on the client-side for you.)
This passphrase is important! Encryption keys derived from it are used to encrypt your data at rest, and your data will have to be re-uploaded if you want it to change!
Importantly, if you want two access grants to have access to the same data, they must use the same passphrase. You won't be able to access your data if the passphrase in your access grant is different than the passphrase you uploaded the data with.
Please note that Storj does not know or store your encryption passphrase, so if you lose it, you will not be able to recover your files.
Click either on the Copy to clipboard link or Download .txt and confirm that you copied your Encryption Phrase to a safe place.
Click the Create my Access link to finish generating of S3 credentials.
Copy your Access Key, Secret Key, and Endpoint to a safe location or download them.
Now you are ready to configure AWS SDK
e.g. with npm
The getSignedUrl function creates a cryptographically signed url. No contact with the gateway is needed here; this happens instantaneously.
