GCE S3 Compatible Bucket Setup
Last updated
Last updated
vBase provides a variety of managed services compatible with AWS Simple Storage Service (S3):
Automated commitment of buckets and objects for data producers (provers)
Automated validation of buckets and objects for data consumers (verifiers)
Derived data and dashboards with verified calculation and cryptographically assured provenance
Users of Google Cloud Storage (GCS) can use the following guide to set up GCE datasets to be shared in an S3-compatible manner, enabling read access by vBase managed services.
Below are the instructions for users of the Google Cloud Console web interface:
Go to the .
Navigate to Storage > Create Bucket.
Choose a globally unique name for the bucket.
Set appropriate permissions and lifecycle rules for your data.
Navigate to Storage > Settings.
Enable Interoperable Storage Access.
Create an Access Key and Secret Key for interoperability.
Assign role Storage Object Viewer
to grant the necessary permissions to vBase.
Use Service Accounts to grant programmatic access.
Define bucket policies to restrict or allow access based on conditions like user roles or geographic IP ranges.
Below are the instructions for users of the Google Cloud CLI:
Authenticate to Google Cloud:
Use the gcloud
CLI to create a bucket:
Replace BUCKET_NAME
with a unique name and LOCATION
with your preferred location (e.g., us-central1
).
Enable the Interoperability API:
Generate an access key and secret key:
Note the Access Key
and Secret Key
for later use.
To create an IAM policy for vBase to access the bucket using the API key only, you can utilize service accounts and key-based authentication instead of binding the policy to a specific user's email.
Replace BUCKET_NAME
with your bucket's name:
Replace PROJECT_ID
with your Google Cloud project ID.
This creates a JSON file (vbase-key.json
) containing the API key and credentials. Share this file securely with vBase.
Share the access key and secret key securely with vBase using a vault system or by encrypting and sending them.
Use Terraform or Cloud Deployment Manager to automate bucket and IAM setup.
Install the gcloud
CLI tool from the .