# Amazon S3 - Simple Storage Service

During todays workshop we will focus on practical usage of S3. There are three main methods of accessing Amazon S3:
- AWS Management Console
- AWS CLI
- Boto3

##    AWS Management Console
AWS Management Console lets you access and manage AWS through a simple and intuitive web-based user interface.

Tasks to complete in this subsection:
- show buckets
- list objects in a bucket
- operations on files
    - downloading
    - uploading
- getting familiar with bucket properties
- getting familiar with bucket permissions
- exercise

#### Show buckets, list objects in a bucket 

A. Go to [AWS console](https://eu-west-1.console.aws.amazon.com/console/home?nc2=h_ct&region=eu-west-1&src=header-signin#) and login.

B. Choose: 
>Services

<img src="img/02.png" width="900">


C. Choose: 
> S3 

<img src="img/03.png" width="900">

D. Choose a bucket whose content you would like to display, for example:
> staging-dir-wimlds-workshop

#### Operations on files
Downloading:
- mark file 
- "Actions" 
- "Download as"
    
Uploading:
- "Upload"
- Drag and drop or provide directory

### Bucket properties
- __versioning:__ keep multiple versions of an object in one bucket. This feauture protects you from the consequences of unintended overwrites and deletions
- __server access logging:__ detailed records for the requests that are made to a bucket
- __static website hosting:__ host a static website 
- __object-level logging:__ data events provide insight into the resource operations performed on or within a resource
- __default encryption:__ provides a way to set the default encryption behavior for an S3 bucket. You can set default encryption on a bucket so that all objects are encrypted when they are stored in the bucket. The objects are encrypted using server-side encryption with either Amazon S3-managed keys (SSE-S3) or AWS KMS-managed keys (SSE-KMS)
- __object lock:__ store objects using a "Write Once Read Many" (WORM) model
- __tags:__ track the storage cost or other criteria for individual projects or groups of projects
- __transfer acceleration:__ fast transfer of files over long distances between client and an S3 bucket
- __events:__ enable certain Amazon S3 bucket events to send a notification message to a destination whenever the events occur
- __requester pays:__ the requester instead of the bucket owner pays the cost of the request and the data download from the bucket

 
<img src="img/04.png" width="900">




### Bucket permissions
- __public access settings:__ whether data can be accessed publicly 
- __access control list:__ decide who and what may see
- __bucket policy:__ decide what actions may be done and by who

<img src="img/05.png" width="1000">



## Exercise (2 minutes)
1. Create a bucket.
2. Select the bucket you have created and upload titanic.csv file there.
3. Add tags to the file.


##    AWS CLI 
The AWS Command Line Interface (CLI) is a unified tool to manage AWS services. Enable controlling multiple AWS services from the command line and automate them through scripts.

Tasks to complete in this subsection:
- prerequisities
    - AWS CLI installation
    - get the access key
    - configure AWS profile
- getting familiar with S3 commands
- run commands:
    - ls
    - cp
- exercise

### Prerequisities

#### Install AWS CLI 
- Windows 
    Download and run the 64-bit or 32-bit Windows installer (website)
    
[Here you will find files if you use windows](https://aws.amazon.com/cli/)

- Mac and linux 

    `[sudo] pip3 install awscli`

#### Generate access key and secret access key

- [Instruction](https://help.bittitan.com/hc/en-us/articles/115008255268-How-do-I-find-my-AWS-Access-Key-and-Secret-Access-Key-)


#### Create AWS profile on your local machine
- Type in terminal:

    `aws --profile <profile_name> configure`
    
    for example
    
    `aws --profile wimlds configure`


- You have to provide your access key, secret acces key (generated in the previous step) and region

<img src="img/06.png" width="400">



### Available commands


`cp` copy 

`ls` list objects

`mb` create empty bucket

`mv` move

`presign` generates URL adress for an object

`rb` delete empty bucket

`rm` delete object

`sync` syncs directories and s3 prefixes, recursive copies from the source directory to the destination

`website` set the website configuration for a bucket - creates static website

### Examples
`ls` list buckets


In [None]:
! aws --profile wimlds s3 ls

`ls` list objects in the given bucket


In [None]:
! aws --profile wimlds  s3 ls s3://staging-dir-wimlds-workshop

`cp` copy [Flags](https://docs.aws.amazon.com/cli/latest/reference/s3/cp.html)

- From S3 to local


In [None]:
! aws --profile wimlds s3 cp s3://staging-dir-wimlds-workshop/titanic.csv <local_directory_where_you_want_to_save_a_file>

- From local to S3

In [None]:
! aws --profile wimlds s3 cp <file_to_upload_directory> s3://staging-dir-wimlds-workshop/titanic.csv

## Exercise 2 (5 minutes)

Goal: Create a new bucket and upload a file. Then create an URL adress and copy object from your browser.

1. List available buckets.
2. Create a new bucket.
3. List available bucket (double check).
4. Copy local file to S3.
5. Create URL adress.
6. Copy and paste adress to your web browser.
7. Download file.

## Python boto3
Boto is the Amazon Web Services (AWS) SDK for Python, which allows Python developers to write software that makes use of Amazon services like S3 and EC2. Boto provides an easy to use, object-oriented API as well as low-level direct service access.

Tasks to complete in this subsection:
- prerequisities
    - boto3 installation
    - boto3 documentation
- getting familiar with boto 3
- list buckets
- list objects in a given bucket
- exercise

### Prerquisities

#### Install boto3
- Go to terminal and type

    `pip install boto3`

    if does not work
    
    `pip3 install boto3`

    or 

    `sudo pip3 install boto3`

- [Boto 3 Documentation](https://boto3.amazonaws.com/v1/documentation/api/latest/index.html)


### Working with boto3

You have to create an object of a class you want to work with. Two main classes are:
- client (low-level)
- resource (higher-level)

### Examples

`Create a session`

In [None]:
import boto3
profile_name = 'wimlds'
session = boto3.session.Session(profile_name=profile_name)
s3 = session.client('s3')

`list buckets`

In [None]:
# List buckets
s3_buckets = s3.list_buckets()
for bucket in s3_buckets['Buckets']:
    print(bucket['Name'])

`list objects in the given bucket`

In [None]:
# List objects in the bucket
bucket_name = 'staging-dir-wimlds-workshop'
s3_objects = s3.list_objects(Bucket = bucket_name)
for object in s3_objects['Contents']:
    print("Filename {} of size {} kB".format(object['Key'], object['Size']/1000))

## Exercise 3 (3 minutes)

Goal: Send file to S3 using boto3. 

Protip: You may/should :) use boto3 documentation
    
