Managed S3 / RustFS
S3-compatible object storage for files, backups, and assets, backed by RustFS. Object storage is one of the managed services Temps runs as a container on your own infrastructure.
Provision and manage object storage three ways: the dashboard, the @temps-sdk/cli command-line tool (Manage from the CLI), or the REST API. If you use an AI coding agent (Claude Code, Cursor, Windsurf), install the temps-cli skill and just describe what you want.
Creating S3 Storage
Via Dashboard:
- Navigate to Services → Create Service.
- Select S3 / RustFS.
- Choose the storage engine:
- RustFS — the Rust-native default (
rustfs/rustfs:1.0.0-alpha.98). - MinIO — kept for legacy services (
minio/minio:RELEASE.2025-09-07T16-13-09Z). Deprecated — use RustFS for anything new. - Custom image — bring your own.
- RustFS — the Rust-native default (
- Click Create Service.
On creation Temps auto-assigns an API port starting from 9000 (and a console port from 9001 for RustFS), sets the region to us-east-1, and generates an access key (AKIA…) and secret key.
MinIO is deprecated. Existing MinIO services keep working, but provision RustFS for new object storage — it is the default, supported engine going forward.
Manage from the CLI
Provision and manage object storage from the terminal with the @temps-sdk/cli tool — the same flow worked end-to-end for PostgreSQL.
Create
# Log in once (stores credentials in ~/.temps)
bunx @temps-sdk/cli login
# Create the service. Set parameters with repeatable -s key=value flags;
# if a required one is missing the CLI fails fast and names it, so you
# can add it and re-run.
bunx @temps-sdk/cli services create -t s3 -n my-storage -y
Inspect, link & manage
# List services and grab the numeric ID
bunx @temps-sdk/cli services list
# Full details, including endpoint and access keys
bunx @temps-sdk/cli services show --id 10
# Link to a project so S3_ENDPOINT / S3_ACCESS_KEY (and friends) are injected
bunx @temps-sdk/cli services link --id 10 --project-id 5
bunx @temps-sdk/cli services env --id 10 --project-id 5 # see injected vars
bunx @temps-sdk/cli services unlink --id 10 --project-id 5
# Lifecycle
bunx @temps-sdk/cli services stop --id 10
bunx @temps-sdk/cli services start --id 10
bunx @temps-sdk/cli services upgrade --id 10 -v rustfs/rustfs:1.0.0-alpha.98
bunx @temps-sdk/cli services remove --id 10 -f # destroys data
Prefer natural language? With the temps-cli skill installed, ask your AI agent to "create an S3 bucket and link it to my project" and it runs these commands for you. The same services create -t <type> flow covers every managed service — see Managed PostgreSQL for the fully worked, parameter-by-parameter example.
Connecting to S3
When linked to a project, Temps injects S3_ENDPOINT, S3_HOST, S3_PORT, S3_ACCESS_KEY, S3_SECRET_KEY, S3_REGION, and S3_BUCKET, along with AWS-style aliases (AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY, AWS_DEFAULT_REGION, AWS_ENDPOINT_URL) so standard AWS SDKs work unchanged:
Node.js with AWS SDK v3
import { S3Client, PutObjectCommand, GetObjectCommand } from '@aws-sdk/client-s3';
const s3 = new S3Client({
endpoint: process.env.S3_ENDPOINT,
region: process.env.S3_REGION,
forcePathStyle: true,
credentials: {
accessKeyId: process.env.S3_ACCESS_KEY,
secretAccessKey: process.env.S3_SECRET_KEY,
},
});
await s3.send(new PutObjectCommand({
Bucket: process.env.S3_BUCKET,
Key: 'uploads/image.jpg',
Body: fileBuffer,
ContentType: 'image/jpeg',
}));
Python with boto3
import os
import boto3
# boto3 reads AWS_* automatically, or pass them explicitly:
s3 = boto3.client(
's3',
endpoint_url=os.environ['S3_ENDPOINT'],
aws_access_key_id=os.environ['S3_ACCESS_KEY'],
aws_secret_access_key=os.environ['S3_SECRET_KEY'],
)
s3.upload_file('local-file.jpg', os.environ['S3_BUCKET'], 'uploads/image.jpg')
Pre-Signed URLs
Generate pre-signed URLs for temporary access without exposing credentials:
import { getSignedUrl } from '@aws-sdk/s3-request-presigner';
const command = new GetObjectCommand({
Bucket: process.env.S3_BUCKET,
Key: 'uploads/private-document.pdf',
});
// URL expires in 1 hour
const url = await getSignedUrl(s3, command, { expiresIn: 3600 });
Durability
Objects are stored on the underlying server disk via a dedicated Docker volume. For disaster recovery, replicate buckets to a separate off-server S3-compatible destination using rclone or a replication rule — data on a single disk is not protected against hardware failure.
Monitoring
View live metrics and health in the dashboard's Services section — CPU & memory usage, disk usage, and uptime. Service-level monitoring is not yet exposed through the CLI.
Resource Limits
You can cap how much memory, swap, and CPU the service's container is allowed to use, and inspect what it's actually consuming. A service with no limits set runs unconstrained (the default). The same controls apply to every managed service type — PostgreSQL (standalone and cluster), MongoDB, Redis, RustFS, and S3.
The service detail page shows a Resources card that polls runtime status every 30 seconds and live usage every 5 seconds, plus an Edit limits dialog.
Editing limits
Open Services → select the service → Resources card → Edit limits. The dialog has independent Memory and CPU toggles:
| Field | Meaning | Empty / off |
|---|---|---|
| Memory | Hard memory cap, in MiB | Unlimited |
| Swap | Extra swap above the memory cap, in MiB | No extra swap |
| CPU | CPU cap, in cores | Unlimited |
The Swap input means swap in addition to the memory limit — Memory = 512 and Swap = 256 lets the container use 512 MiB of RAM plus 256 MiB of swap. Internally Temps submits memory + swap to Docker. When a memory cap is set and the working set exceeds it, the kernel OOM killer terminates the container — that kill never reaches the app's own logs, so the oom_killed flag on the runtime endpoint is often the only signal.
Endpoints
All served under the /api prefix:
GET /api/external-services/{id}/runtime
GET /api/external-services/{id}/stats
PATCH /api/external-services/{id}/resources
GET …/runtime(ExternalServicesRead) — a per-containerdocker inspectsnapshot:status,restart_count(a steady climb signals a crash loop),oom_killed, lastexit_code, image, and the limits actually applied (so you can detect drift between configured and live caps).GET …/stats(ExternalServicesRead) — a one-shot CPU/memory usage sample per container, cheap enough to poll every 5–10s.memory_percentis measured against the memory limit when one is set, or against host RAM otherwise.PATCH …/resources(ExternalServicesWrite) — persists the caps to the service's encrypted config and live-applies them via Docker's update API (no restart needed). A request where every field isnullremoves all limits.
Security
- Name
Network Isolation- Description
- Reachable only from containers on the same Temps internal network — the port is never exposed to the public internet
- Apps connect using the container name as the host, over private networking
- Access keys are auto-generated at creation; you never have to choose one
- Name
Credential Handling- Description
- Temps injects the endpoint and keys as environment variables when the service is linked — never hard-code them
- Credentials are stored encrypted at rest (see Encryption below)
- Rotate them from Services → select service → Rotate Credentials; linked projects update automatically
Encryption
Credentials (access keys, secret keys) are encrypted with AES-256-GCM before being written to the Temps database. The key lives at ~/.temps/encryption_key — protect this file and back it up separately from the database.
Stored objects are not encrypted at the application layer by default. For encryption at rest, enable it at the infrastructure level — encrypted volumes or LUKS on bare metal; Temps does not manage disk encryption. In transit, traffic stays on the internal Docker network and is never exposed to the public internet.
Deleting the Service
Deleting the service permanently destroys all objects and backups associated with it. This cannot be undone.
- Download a backup — Services → select the service → Backups → download the latest.
- Unlink all projects so no running app still holds a reference to the credentials.
- Delete the service from its settings page and confirm.
Pricing & Ownership
Because the service runs on your own infrastructure, there are no per-GB storage charges, request fees, or metered bandwidth costs. A recommended starting allocation:
| Tier | Storage |
|---|---|
| Small | 10 GB |
| Medium | 100 GB |
| Large | 500 GB+ |
Object storage is built in — Vercel bills Vercel Blob separately, while Netlify and Railway are external-only. Your data never leaves your server; Temps (the company) has no access to it. See Data Ownership & Privacy for the full policy, including GDPR.