Swift and S3 each allow temporary, public access to objects without having to change the underlying ACLs on the object. Swift refers to this as a “TempURL” while S3 uses the term “pre-signed URLs.” The following examples show how to give temporary public access to an object in Swift and an object in S3.
Swift CLI example, which displays the URL that can be used to access the object:
$ swift tempurl GET 600 /v1/CONTAINER/OBJECT_1 'KEY_ONE'
/v1/CONTAINER/OBJECT_1?temp_url_sig=735c8ee6c7c9fef88437f29d11ce3cf769a2565d&temp_url_expires=1495482380
S3 example:
$ aws --endpoint-url=https://{endpoint} s3 presign s3://bucket-1/new-file --expires-in 600
See Pre-signed URLs for additional details.
Swift and S3 provide the ability to control access to containers and buckets.
Basic Swift headers that can be set on containers:
X-Container-Read makes the container publicly readableX-Container-Write makes the container publicly writeable
Both headers can be set for read & write access.The Swift ACLs documentation provides complete documentation on using ACLs with Swift.
S3 customers can use the pre-made permissions via the x-amz-acl headers:
privatepublic-readpublic-read-writeAdditional details on S3 permissions can be found in the API reference documentation.
Swift and S3 support versioning of objects, though there are a few differences
Swift containers can be exposed via the Softlayer CDN network using the following command:
$ curl -X PUT 'https://endpoint/v1/ACCOUNT/CONTAINER' -H "X-Auth-Token: <token>" -H "X-Container-Read: .r:*" -H "*X-Context: cdn"
See Swift CDN support and CDN for more details.
CDN is not currently available in S3.
Swift ObjectStorage provides an integrated search function for ObjectStorage. This feature is not available IBM Cloud ObjectStorage (COS).