Access objects in private buckets

Nebula enables you to provide secure and direct access to objects in private buckets.

You must use signed URLs with a token that is unique to every private storage bucket. You can find this access token in 2 places:

On a bucket's details page in the Console
In the response payload of the Create bucket, Get bucket, and List all buckets endpoints.

A token is created when you create a private bucket, or set a public bucket to private.

If you set a private bucket to public, the token becomes invalid. If you set the same bucket to private again, a new token is created.

To create a signed URL, you need:

the object's direct URL
the access token

Simply append ?token={token value} after the object's URL like this:

https://cdn.usenebula.io/{bucket-name}/{object-key}?token={token-value}

Signed URL example

https://cdn.usenebula.io/okr-neb-my-secret-bucket/image.jpg?token=zf3ae3b1-7da2-41e3-82d4-497815c41234

Need help?

If you have any technical questions or encounter any problems, get in touch with our Support team! We're here to help, and will provide support if you encounter any issues with NebCompute.