Replicating Altinity.Cloud backups to S3

Configuring external S3 buckets for Altinity.Cloud backups

You can use external S3 buckets to store replicas of Altinity.Cloud backups. To configure them, you’ll need to contact us to get an Amazon ARN (Amazon Resource Name) that identifies the S3 bucket you’ll use.

Here are the steps to set everything up:

  1. Create the S3 bucket you want to use.
  2. Contact Altinity support and give us the bucket name. Support will use that bucket name to create the ARN.
  3. Set the ARN and bucket name in the following JSON, then use kubectl to apply it:
{
  "Id": "altinity-clickhouse-backup-for-s3-dougco-prod",
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "altinity-clickhouse-backup-for-s3-dougco-prod",
      "Action": [
        "s3:GetBucketVersioning",
        "s3:ListBucket"
      ],
      "Effect": "Allow",
      "Resource": "arn:aws:s3:::dougco-clickhouse-production",
      "Principal": {
        "AWS": [
          "arn:aws:iam::313342380333:user/clickhouse-backup-dougco-prod"
        ]
      }
    },
    {
      "Sid": "altinity-clickhouse-backup-for-s3-dougco-prod",
      "Action": [
        "s3:DeleteObject",
        "s3:GetObject",
        "s3:PutObject"
      ],
      "Effect": "Allow",
      "Resource": "arn:aws:s3:::dougco-clickhouse-production/*",
      "Principal": {
        "AWS": [
          "arn:aws:iam::313342380333:user/clickhouse-backup-dougco-prod"
        ]
      }
    }
  ]
}