Week 6 of my AWS learning journey. This week is diving deeper into what S3 can provide us. We’re going to do a quick overview of a couple new services Glacier and Athena. Let’s go into the details.
S3 Replication
Let’s talk about AWS S3 Replication
- To do that we must enable versioning in both source and destination buckets
- We have Cross Region Replication (CRR) which is ideal for compliance, lower latency access and also when you want to replicate across accounts
Then we have same region replication (SRR) which can be for log aggregation or live replication between production and test accounts
- In either case, buckets can be in different accounts
- Copy is asynchronous and we must give proper IAM permissions
After enabling S3 Replication, only new objects are replicated and not everything.
- When deleting. Deletes without version ID add a delete marker which is not replicated.
- Deleting with a version ID, it deletes in the source and is not replicated
We cannot do “chaining” of replication.
- That means that if Bucket A has a replication into Bucket B which then has a replication into Bucket C and we add an object into bucket A, it won’t make it all the way to Bucket C
S3 pre-signed URLs
Let’s talk about AWS S3 pre-signed URLs
- We can generate links that have the same permissions on the file as when we open it via the AWS console.