An S3 compatible object storage endpoint backed by the local filesystem, with signed requests required.
S3Proxy is an open source Java application that implements the Amazon S3 API and proxies requests to a storage backend. Configured with the local filesystem backend, it turns a virtual machine and its data disk into an S3 compatible object store: point any S3 SDK, the AWS CLI, s3cmd, rclone or a backup tool at it and read and write buckets and objects exactly as you would against Amazon S3, entirely within your own account.
It suits teams who need a private S3 endpoint for applications and backups that speak the S3 API, an object storage target for testing and development without an Amazon account, or a drop in object store for tooling such as rclone, restic and Veeam, all running on infrastructure they own.
The cloudimg image installs S3Proxy from the official release behind an nginx reverse proxy that binds the gateway to loopback and terminates TLS, so a working S3 endpoint is reachable securely within minutes. Security is enforced from the first request: S3Proxy can run with authorization disabled, but this image requires AWS Signature Version 4 on every call and generates a unique access key and secret key on each virtual machine's first boot, written to a root only file, with the service configured to refuse to start until a key pair is present, so there is no open anonymous endpoint and no shared credential in the image. Bucket and object data lives on a dedicated data disk. The paired deployment guide covers reading your keys, configuring an S3 client, creating a bucket, and putting and getting objects, and every deployment carries 24/7 support.