AWS : S3 (Simple Storage Service) III - Bucket Versioning

Versioning allows us to preserve, retrieve, and restore every version of every file in an Amazon S3 bucket. Once we enable Versioning for a bucket, Amazon S3 preserves existing files anytime we overwrite or delete them.

This provides an additional level of protection by providing a means of recovery for accidental overwrites or expirations. Versioning-enabled buckets store all versions of our objects by default.

Versioning is a means of keeping multiple variants of an object in the same bucket. We can use Lifecycle rules to manage all versions of our objects as well as their associated costs. Lifecycle rules enable us to automatically archive our objects to the Glacier Storage Class and/or remove them after a specified time period.

Once enabled, Versioning cannot be disabled, only suspended.

Image source : Amazon Simple Storage Service

In one bucket, for example, we can have two objects with the same key, but different version IDs, such as photo.gif (version 111111) and photo.gif (version 121212).

Versioning-enabled buckets enable us to recover objects from accidental deletion or overwrite. For example:

1. If we delete an object, instead of removing it permanently, Amazon S3 inserts a delete marker, which becomes the current object version. We can always restore the previous version.
2. If we overwrite an object, it results in a new object version in the bucket. We can always restore the previous version.

Buckets can be in one of three states:

1. unversioned (the default)
2. versioning-enabled
3. versioning-suspended

The versioning state applies to all of the objects in that bucket. The first time we enable a bucket for versioning, objects in it are thereafter always versioned and given a unique version ID:

1. Objects stored in our bucket before we set the versioning state have a version ID of null. When we enable versioning, existing objects in our bucket do not change. What changes is how Amazon S3 handles the objects in future requests.
2. The bucket owner (or any user with appropriate permissions) can suspend versioning to stop accruing object versions. When we suspend versioning, existing objects in our bucket do not change. What changes is how Amazon S3 handles objects in future requests.

We can configure bucket versioning using any of the following methods:

1. Configure versioning using the Amazon S3 console
2. Configure versioning programmatically using the AWS SDKs

Each bucket we create has a versioning subresource (see Bucket Configuration Options) associated with it. By default, our bucket is unversioned, and accordingly the versioning subresource stores empty versioning configuration.

<VersioningConfiguration xmlns="http://s3.amazonaws.com/doc/2015-03-01/">
</VersioningConfiguration>

<VersioningConfiguration xmlns="http://s3.amazonaws.com/doc/2015-03-01/">
  <Status>Enabled</Status> 
</VersioningConfiguration>

To enable versioning on a bucket:

1. Sign in to the AWS Management Console and open the Amazon S3 console at https://console.aws.amazon.com/s3/.
2. In the Buckets list, click the details icon on the left of the bucket name and then click Properties to display bucket properties.
   
   
   
3. In the Properties pane, click Versioning and then click Enable Versioning.
   
   

   After we enable versioning on a bucket, it can be in only the enabled or suspended state; we cannot disable versioning on a bucket. If we suspend versioning, Amazon S3 suspends the creation of object versions for all operations, but preserves any existing object versions.

   
   

A versioning-enabled bucket can have multiple versions of objects in the bucket. Amazon S3 assigns each object a unique version ID.

When a bucket is versioning-enabled, we can show or hide all the object versions. The following example shows the list of objects in the bogotobogo-bucket bucket. Version information is hidden, so these objects represent the latest version.

If we click Show, the console lists all the versions, as shown in the following example.

For each object version, the console shows a unique version ID, the date and time the object version was created, and other properties. Note that the files have already been put into the bucket before we enabled versioning. That's why we have nulls in Version ID column.

If we add a new file, we can see the newly added file has Version ID unlike the files before we Enabled Versioning.

If we upload an object with a key name that already exists in the bucket, Amazon S3 creates another version of the object instead of replacing the existing object. bogo1.txt:

If we update any object properties after the initial object upload, such as changing the storage details or any other metadata changes, then Amazon S3 creates a new object version in the bucket. If we rename the object, Amazon S3 creates a new object version.

For example, if we update an object's storage class or change how the object is stored at rest by updating its server-side encryption property, Amazon S3 creates an object version for each property update we save.

When versions are hidden, we can update all the object properties; when versions are shown, we can update only the permissions for the specific object version.

In a versioning-enabled bucket, we can either delete an object from the object list (version information hidden).

With version information hidden, the console shows the object list as shown in the following example:

or delete a specific version of the object.

If we select and delete the bogo4.txt object, Amazon S3 adds a delete marker for the object and the object no longer appears in the object list:

To delete an object permanently, we must delete all the versions of the object, including the delete marker (if present). If we delete only a specific object version, Amazon S3 permanently deletes only that specific version. If we delete the delete marker, the object reappears in the object list.

1. AWS S3 versioning operations are based on stack data structure.
2. We can enable versioning by clicking 'Enable Version' button under 'Properties'.
3. There are two ways of restoring previous versions: Restoring Previous Versions
   1. Deleting the more recent versions.
      
      
      
   2. Put the previous version on top (re-uploading after copy(download))
      
      
      
4. Testing Results - Restoring previous version works as expected.
   1. Performed in console mode.
   2. We can test the versioning using multiple text files with the same name but with different content, for example, version 1, version2, etc.
   3. We can simulate GET method by downloading the 'test1' with 'Hide' on.
      1. Method 1 (Deletion) Delete the top (v.4) => We get previous version (v.3)
      2. Method 2 (Copying) Copying the previous version (v.3) , and put it on top of v4 by uploading it. => We get v.3

AWS (Amazon Web Services)

1. AWS : EKS (Elastic Container Service for Kubernetes)
2. AWS : Creating a snapshot (cloning an image)
3. AWS : Attaching Amazon EBS volume to an instance
4. AWS : Adding swap space to an attached volume via mkswap and swapon
5. AWS : Creating an EC2 instance and attaching Amazon EBS volume to the instance using Python boto module with User data
6. AWS : Creating an instance to a new region by copying an AMI
7. AWS : S3 (Simple Storage Service) 1
8. AWS : S3 (Simple Storage Service) 2 - Creating and Deleting a Bucket
9. AWS : S3 (Simple Storage Service) 3 - Bucket Versioning
10. AWS : S3 (Simple Storage Service) 4 - Uploading a large file
11. AWS : S3 (Simple Storage Service) 5 - Uploading folders/files recursively
12. AWS : S3 (Simple Storage Service) 6 - Bucket Policy for File/Folder View/Download
13. AWS : S3 (Simple Storage Service) 7 - How to Copy or Move Objects from one region to another
14. AWS : S3 (Simple Storage Service) 8 - Archiving S3 Data to Glacier
15. AWS : Creating a CloudFront distribution with an Amazon S3 origin
16. AWS : Creating VPC with CloudFormation
17. AWS : WAF (Web Application Firewall) with preconfigured CloudFormation template and Web ACL for CloudFront distribution
18. AWS : CloudWatch & Logs with Lambda Function / S3
19. AWS : Lambda Serverless Computing with EC2, CloudWatch Alarm, SNS
20. AWS : Lambda and SNS - cross account
21. AWS : CLI (Command Line Interface)
22. AWS : CLI (ECS with ALB & autoscaling)
23. AWS : ECS with cloudformation and json task definition
24. AWS Application Load Balancer (ALB) and ECS with Flask app
25. AWS : Load Balancing with HAProxy (High Availability Proxy)
26. AWS : VirtualBox on EC2
27. AWS : NTP setup on EC2
28. AWS: jq with AWS
29. AWS & OpenSSL : Creating / Installing a Server SSL Certificate
30. AWS : OpenVPN Access Server 2 Install
31. AWS : VPC (Virtual Private Cloud) 1 - netmask, subnets, default gateway, and CIDR
32. AWS : VPC (Virtual Private Cloud) 2 - VPC Wizard
33. AWS : VPC (Virtual Private Cloud) 3 - VPC Wizard with NAT
34. DevOps / Sys Admin Q & A (VI) - AWS VPC setup (public/private subnets with NAT)
35. AWS - OpenVPN Protocols : PPTP, L2TP/IPsec, and OpenVPN
36. AWS : Autoscaling group (ASG)
37. AWS : Setting up Autoscaling Alarms and Notifications via CLI and Cloudformation
38. AWS : Adding a SSH User Account on Linux Instance
39. AWS : Windows Servers - Remote Desktop Connections using RDP
40. AWS : Scheduled stopping and starting an instance - python & cron
41. AWS : Detecting stopped instance and sending an alert email using Mandrill smtp
42. AWS : Elastic Beanstalk with NodeJS
43. AWS : Elastic Beanstalk Inplace/Rolling Blue/Green Deploy
44. AWS : Identity and Access Management (IAM) Roles for Amazon EC2
45. AWS : Identity and Access Management (IAM) Policies, sts AssumeRole, and delegate access across AWS accounts
46. AWS : Identity and Access Management (IAM) sts assume role via aws cli2
47. AWS : Creating IAM Roles and associating them with EC2 Instances in CloudFormation
48. AWS Identity and Access Management (IAM) Roles, SSO(Single Sign On), SAML(Security Assertion Markup Language), IdP(identity provider), STS(Security Token Service), and ADFS(Active Directory Federation Services)
49. AWS : Amazon Route 53
50. AWS : Amazon Route 53 - DNS (Domain Name Server) setup
51. AWS : Amazon Route 53 - subdomain setup and virtual host on Nginx
52. AWS Amazon Route 53 : Private Hosted Zone
53. AWS : SNS (Simple Notification Service) example with ELB and CloudWatch
54. AWS : Lambda with AWS CloudTrail
55. AWS : SQS (Simple Queue Service) with NodeJS and AWS SDK
56. AWS : Redshift data warehouse
57. AWS : CloudFormation
58. AWS : CloudFormation Bootstrap UserData/Metadata
59. AWS : CloudFormation - Creating an ASG with rolling update
60. AWS : Cloudformation Cross-stack reference
61. AWS : OpsWorks
62. AWS : Network Load Balancer (NLB) with Autoscaling group (ASG)
63. AWS CodeDeploy : Deploy an Application from GitHub
64. AWS EC2 Container Service (ECS)
65. AWS EC2 Container Service (ECS) II
66. AWS Hello World Lambda Function
67. AWS Lambda Function Q & A
68. AWS Node.js Lambda Function & API Gateway
69. AWS API Gateway endpoint invoking Lambda function
70. AWS API Gateway invoking Lambda function with Terraform
71. AWS API Gateway invoking Lambda function with Terraform - Lambda Container
72. Amazon Kinesis Streams
73. AWS: Kinesis Data Firehose with Lambda and ElasticSearch
74. Amazon DynamoDB
75. Amazon DynamoDB with Lambda and CloudWatch
76. Loading DynamoDB stream to AWS Elasticsearch service with Lambda
77. Amazon ML (Machine Learning)
78. Simple Systems Manager (SSM)
79. AWS : RDS Connecting to a DB Instance Running the SQL Server Database Engine
80. AWS : RDS Importing and Exporting SQL Server Data
81. AWS : RDS PostgreSQL & pgAdmin III
82. AWS : RDS PostgreSQL 2 - Creating/Deleting a Table
83. AWS : MySQL Replication : Master-slave
84. AWS : MySQL backup & restore
85. AWS RDS : Cross-Region Read Replicas for MySQL and Snapshots for PostgreSQL
86. AWS : Restoring Postgres on EC2 instance from S3 backup
87. AWS : Q & A
88. AWS : Security
89. AWS : Security groups vs. network ACLs
90. AWS : Scaling-Up
91. AWS : Networking
92. AWS : Single Sign-on (SSO) with Okta
93. AWS : JIT (Just-in-Time) with Okta