Kloudless API Guide

# Kloudless API interaction

  • Connector Category: Storage
  • Unified APIs Supported: Storage, Activity

# Setting up access keys for Amazon S3

Amazon S3 applications do not use OAuth. Instead, the user is asked to provide IAM access keys during the authentication flow, which are then used to authenticate requests. Access and secret keys are encrypted and stored securely. When users connect an account, they should provision an IAM user with the minimum amount of permissions required for your application.

You can test connecting an account via the Kloudless API Explorer.

# Sample IAM Policy

The permissions in AWS IAM are extremely flexible. In order access all of the functionality provided by the Kloudless API (including event notifications), the following policy should be used:

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Sid": "KloudlessFull",
            "Effect": "Allow",
            "Action": [
                "s3:PutObject",
                "s3:GetObject",
                "s3:ListBucketMultipartUploads",
                "s3:ListAllMyBuckets",
                "s3:AbortMultipartUpload",
                "s3:ListBucket",
                "s3:DeleteObject",
                "s3:ListMultipartUploadParts",
                "s3:PutBucketNotification",
                "s3:GetBucketNotification",
                "s3:GetAccelerateConfiguration"
            ],
            "Resource": "*"
        }
    ]
}

If events are not needed, the Notification related permissions can be omitted. For further details on using IAM permissions with S3, refer to the AWS Documentation.

# S3 Transfer Acceleration

Kloudless recommends enabling S3 Transfer Acceleration on buckets receiving large uploads, particularly if the buckets are far from the U.S., where our default API endpoints are. If S3 Transfer Acceleration is enabled, please also add the s3:GetAccelerateConfiguration IAM permission to the S3 credentials used to connect the Kloudless account so that Kloudless auto-detects whether S3 Transfer Acceleration is enabled on the bucket being accessed. For further details, please refer to the Amazon S3 Transfer Acceleration Documentation.

Kloudless caches acceleration settings of buckets for up to 5 minutes.

# Support

Please contact us at support@kloudless.com with any questions you may have. We'd be happy to help you get set up.

Amazon S3 Compatible