frostfs-s3-gw/config/config.env

# Wallet
# Path to wallet
S3_GW_WALLET=/path/to/wallet.json
# Account address. If omitted default one will be used.
S3_GW_ADDRESS=NfgHwwTi3wHAS8aFAN243C5vGbkYDpqLHP
# Passphrase to decrypt wallet.
S3_GW_WALLET_PASSPHRASE=s3

# Nodes
# This configuration makes the gateway use the first node (grpc://s01.neofs.devenv:8080)
# while it's healthy. Otherwise, gateway uses the second node (grpc://s01.neofs.devenv:8080)
# for 10% of requests and the third node (grpc://s03.neofs.devenv:8080) for 90% of requests.
# Until nodes with the same priority level are healthy
# nodes with other priority are not used.
# The lower the value, the higher the priority.
S3_GW_PEERS_0_ADDRESS=grpc://s01.neofs.devenv:8080
S3_GW_PEERS_0_PRIORITY=1
S3_GW_PEERS_0_WEIGHT=1
S3_GW_PEERS_1_ADDRESS=grpc://s02.neofs.devenv:8080
S3_GW_PEERS_1_PRIORITY=2
S3_GW_PEERS_1_WEIGHT=0.1
S3_GW_PEERS_2_ADDRESS=grpc://s03.neofs.devenv:8080
S3_GW_PEERS_2_PRIORITY=2
S3_GW_PEERS_2_WEIGHT=0.9

# Address to listen and TLS
S3_GW_LISTEN_ADDRESS=0.0.0.0:8080
S3_GW_TLS_CERT_FILE=/path/to/tls/cert
S3_GW_TLS_KEY_FILE=/path/to/tls/key

# Config file
S3_GW_CONFIG=/path/to/config/yaml

# Logger
S3_GW_LOGGER_LEVEL=debug

# Endpoint of the tree service. Must be provided. Can be one of the node address (from the `peers` section).
S3_GW_TREE_SERVICE=grpc://s01.neofs.devenv:8080

# RPC endpoint and order of resolving of bucket names
S3_GW_RPC_ENDPOINT=http://morph-chain.neofs.devenv:30333/
S3_GW_RESOLVE_ORDER="nns dns"

# Metrics
S3_GW_PPROF_ENABLED=true
S3_GW_PPROF_ADDRESS=localhost:8085

S3_GW_PROMETHEUS_ENABLED=true
S3_GW_PROMETHEUS_ADDRESS=localhost:8086

# Timeout to connect to a node
S3_GW_CONNECT_TIMEOUT=10s
# Timeout to check node health during rebalance.
S3_GW_HEALTHCHECK_TIMEOUT=15s
# Interval to check node health
S3_GW_REBALANCE_INTERVAL=60s
# The number of errors on connection after which node is considered as unhealthy
S3_GW_POOL_ERROR_THRESHOLD=100

# Limits for processing of clients' requests
S3_GW_MAX_CLIENTS_COUNT=100
# Deadline after which the gate sends error `RequestTimeout` to a client
S3_GW_MAX_CLIENTS_DEADLINE=30s

# Caching
# Cache for objects
S3_GW_CACHE_OBJECTS_LIFETIME=5m
S3_GW_CACHE_OBJECTS_SIZE=1000000
# Cache which keeps lists of objects in buckets
S3_GW_CACHE_LIST_LIFETIME=1m
S3_GW_CACHE_LIST_SIZE=100000
# Cache which contains mapping of bucket name to bucket info
S3_GW_CACHE_BUCKETS_LIFETIME=1m
S3_GW_CACHE_BUCKETS_SIZE=1000
# Cache which contains mapping of nice name to object addresses
S3_GW_CACHE_NAMES_LIFETIME=1m
S3_GW_CACHE_NAMES_SIZE=10000
 # Cache for system objects in a bucket: bucket settings, notification configuration etc
S3_GW_CACHE_SYSTEM_LIFETIME=5m
S3_GW_CACHE_SYSTEM_SIZE=100000
# Cache which stores access box with tokens by its address
S3_GW_CACHE_ACCESSBOX_LIFETIME=10m
S3_GW_CACHE_ACCESSBOX_SIZE=100

# NATS
S3_GW_NATS_ENABLED=true
S3_GW_NATS_ENDPOINT=nats://nats.neofs.devenv:4222
S3_GW_NATS_TIMEOUT=30s
S3_GW_NATS_CERT_FILE=/path/to/cert
S3_GW_NATS_KEY_FILE=/path/to/key
S3_GW_NATS_ROOT_CA=/path/to/ca

# Default policy of placing containers in NeoFS
# If a user sends a request `CreateBucket` and doesn't define policy for placing of a container in NeoFS, the S3 Gateway
# will put the container with default policy. It can be specified via environment variable, e.g.:
S3_GW_DEFAULT_POLICY="REP 3"

# CORS
# value of Access-Control-Max-Age header if this value is not set in a rule. Has an int type.
S3_GW_CORS_DEFAULT_MAX_AGE=600
[#396] Add .env and .yaml examples Signed-off-by: Angira Kekteeva <kira@nspcc.ru> 2022-04-12 22:29:51 +00:00			`# Wallet`
			`# Path to wallet`
			`S3_GW_WALLET=/path/to/wallet.json`
			`# Account address. If omitted default one will be used.`
			`S3_GW_ADDRESS=NfgHwwTi3wHAS8aFAN243C5vGbkYDpqLHP`
			`# Passphrase to decrypt wallet.`
			`S3_GW_WALLET_PASSPHRASE=s3`

			`# Nodes`
			`# This configuration makes the gateway use the first node (grpc://s01.neofs.devenv:8080)`
			`# while it's healthy. Otherwise, gateway uses the second node (grpc://s01.neofs.devenv:8080)`
			`# for 10% of requests and the third node (grpc://s03.neofs.devenv:8080) for 90% of requests.`
			`# Until nodes with the same priority level are healthy`
			`# nodes with other priority are not used.`
			`# The lower the value, the higher the priority.`
			`S3_GW_PEERS_0_ADDRESS=grpc://s01.neofs.devenv:8080`
			`S3_GW_PEERS_0_PRIORITY=1`
			`S3_GW_PEERS_0_WEIGHT=1`
			`S3_GW_PEERS_1_ADDRESS=grpc://s02.neofs.devenv:8080`
			`S3_GW_PEERS_1_PRIORITY=2`
			`S3_GW_PEERS_1_WEIGHT=0.1`
			`S3_GW_PEERS_2_ADDRESS=grpc://s03.neofs.devenv:8080`
			`S3_GW_PEERS_2_PRIORITY=2`
			`S3_GW_PEERS_2_WEIGHT=0.9`

			`# Address to listen and TLS`
			`S3_GW_LISTEN_ADDRESS=0.0.0.0:8080`
			`S3_GW_TLS_CERT_FILE=/path/to/tls/cert`
			`S3_GW_TLS_KEY_FILE=/path/to/tls/key`

			`# Config file`
			`S3_GW_CONFIG=/path/to/config/yaml`

			`# Logger`
			`S3_GW_LOGGER_LEVEL=debug`

[#592] Add tree section to configuration doc Signed-off-by: Denis Kirillov <denis@nspcc.ru> 2022-07-22 13:24:35 +00:00			# Endpoint of the tree service. Must be provided. Can be one of the node address (from the `peers` section).
			`S3_GW_TREE_SERVICE=grpc://s01.neofs.devenv:8080`

[#396] Add .env and .yaml examples Signed-off-by: Angira Kekteeva <kira@nspcc.ru> 2022-04-12 22:29:51 +00:00			`# RPC endpoint and order of resolving of bucket names`
[#396] Rename rpc-endpoint and resolve-order To make cli params more consistent Signed-off-by: Angira Kekteeva <kira@nspcc.ru> 2022-04-14 18:10:57 +00:00			`S3_GW_RPC_ENDPOINT=http://morph-chain.neofs.devenv:30333/`
			`S3_GW_RESOLVE_ORDER="nns dns"`
[#396] Add .env and .yaml examples Signed-off-by: Angira Kekteeva <kira@nspcc.ru> 2022-04-12 22:29:51 +00:00
			`# Metrics`
[#591] Sync metrics and pprof configuration Signed-off-by: Denis Kirillov <denis@nspcc.ru> 2022-07-26 13:29:07 +00:00			`S3_GW_PPROF_ENABLED=true`
			`S3_GW_PPROF_ADDRESS=localhost:8085`

			`S3_GW_PROMETHEUS_ENABLED=true`
			`S3_GW_PROMETHEUS_ADDRESS=localhost:8086`
[#396] Add .env and .yaml examples Signed-off-by: Angira Kekteeva <kira@nspcc.ru> 2022-04-12 22:29:51 +00:00
			`# Timeout to connect to a node`
[#592] Change pool defaults params Signed-off-by: Denis Kirillov <denis@nspcc.ru> 2022-07-18 13:11:25 +00:00			`S3_GW_CONNECT_TIMEOUT=10s`
[#396] Add .env and .yaml examples Signed-off-by: Angira Kekteeva <kira@nspcc.ru> 2022-04-12 22:29:51 +00:00			`# Timeout to check node health during rebalance.`
[#396] Rename params session-token -> session-tokens rebalance_timer -> rebalance interval request_timeout -> healthcheck_timeout Signed-off-by: Angira Kekteeva <kira@nspcc.ru> 2022-04-14 15:09:57 +00:00			`S3_GW_HEALTHCHECK_TIMEOUT=15s`
[#396] Add .env and .yaml examples Signed-off-by: Angira Kekteeva <kira@nspcc.ru> 2022-04-12 22:29:51 +00:00			`# Interval to check node health`
[#592] Change pool defaults params Signed-off-by: Denis Kirillov <denis@nspcc.ru> 2022-07-18 13:11:25 +00:00			`S3_GW_REBALANCE_INTERVAL=60s`
[#633] Add config param for pool error threshold Signed-off-by: Denis Kirillov <denis@nspcc.ru> 2022-07-29 06:26:11 +00:00			`# The number of errors on connection after which node is considered as unhealthy`
			`S3_GW_POOL_ERROR_THRESHOLD=100`
[#396] Add .env and .yaml examples Signed-off-by: Angira Kekteeva <kira@nspcc.ru> 2022-04-12 22:29:51 +00:00
			`# Limits for processing of clients' requests`
			`S3_GW_MAX_CLIENTS_COUNT=100`
			# Deadline after which the gate sends error `RequestTimeout` to a client
			`S3_GW_MAX_CLIENTS_DEADLINE=30s`

			`# Caching`
			`# Cache for objects`
			`S3_GW_CACHE_OBJECTS_LIFETIME=5m`
			`S3_GW_CACHE_OBJECTS_SIZE=1000000`
			`# Cache which keeps lists of objects in buckets`
			`S3_GW_CACHE_LIST_LIFETIME=1m`
			`S3_GW_CACHE_LIST_SIZE=100000`
			`# Cache which contains mapping of bucket name to bucket info`
			`S3_GW_CACHE_BUCKETS_LIFETIME=1m`
			`S3_GW_CACHE_BUCKETS_SIZE=1000`
			`# Cache which contains mapping of nice name to object addresses`
			`S3_GW_CACHE_NAMES_LIFETIME=1m`
			`S3_GW_CACHE_NAMES_SIZE=10000`
			`# Cache for system objects in a bucket: bucket settings, notification configuration etc`
			`S3_GW_CACHE_SYSTEM_LIFETIME=5m`
			`S3_GW_CACHE_SYSTEM_SIZE=100000`
			`# Cache which stores access box with tokens by its address`
			`S3_GW_CACHE_ACCESSBOX_LIFETIME=10m`
			`S3_GW_CACHE_ACCESSBOX_SIZE=100`

			`# NATS`
			`S3_GW_NATS_ENABLED=true`
			`S3_GW_NATS_ENDPOINT=nats://nats.neofs.devenv:4222`
			`S3_GW_NATS_TIMEOUT=30s`
			`S3_GW_NATS_CERT_FILE=/path/to/cert`
			`S3_GW_NATS_KEY_FILE=/path/to/key`
			`S3_GW_NATS_ROOT_CA=/path/to/ca`

			`# Default policy of placing containers in NeoFS`
			# If a user sends a request `CreateBucket` and doesn't define policy for placing of a container in NeoFS, the S3 Gateway
			`# will put the container with default policy. It can be specified via environment variable, e.g.:`
			`S3_GW_DEFAULT_POLICY="REP 3"`

			`# CORS`
			`# value of Access-Control-Max-Age header if this value is not set in a rule. Has an int type.`
			`S3_GW_CORS_DEFAULT_MAX_AGE=600`