tS3Put Standard properties
These properties are used to configure tS3Put running in the Standard Job framework.
The Standard tS3Put component belongs to the Cloud family.
The component in this framework is available in all Talend products.
Basic settings
Use existing connection |
Select this check box and in the Component List drop-down list, select the desired connection component to reuse the connection details you already defined. |
Access Key |
The Access Key ID that uniquely identifies an AWS Account. For how to get your Access Key and Access Secret, visit Getting Your AWS Access Keys. |
Secret Key |
The Secret Access Key, constituting the security credentials in combination with the access Key. To enter the secret key, click the [...] button next to the secret key field, and then in the pop-up dialog box enter the password between double quotes and click OK to save the settings. |
Credential Provider |
Specify the way to obtain AWS security credentials: Static Credentials, Inherit credentials from AWS role, Web Identity Token, or Profile credentials or inherit from AWS role.
Information noteNote:
Information noteNote:
|
Assume Role |
If you temporarily need some access permissions associated to an AWS IAM role that is not granted to your user account, select this check box to assume that role. Then specify the values for the following parameters to create a new assumed role session. |
Region |
Specify the AWS region by selecting a region name from the list or entering a region between double quotation marks (e.g. "us-east-1") in the list. For more information about the AWS Region, see Regions and Endpoints. |
Encrypt |
Select this check box and from the
Key type drop-down list
displayed, select one of the following three options for encrypting the data on the
client-side before sending to Amazon S3. For more information, see Protecting Data Using Client-Side
Encryption.
|
Bucket |
Specify the name of the bucket, namely the top level folder, on the S3 server. |
Key |
Specify the path to the file that will hold the uploaded data on the S3 server, using slash (/) to separate folders in the path. If:
Information noteWarning: This field must not start with a slash (/).
|
File or Stream |
The path to the local file to be uploaded or the input stream from which data will be uploaded. For an example of how to use stream, see Reading data from a remote file in streaming mode. |
Server-Side Encryption |
Select this check box to enable server-side encryption with Amazon S3-Managed Encryption Keys (SSE-S3) and use the 256-bit Advanced Encryption Standard (AES-256) cipher to encrypt your data. For more information about the server-side encryption, see Protecting Data Using Server-Side Encryption. |
Use KMS |
Select this check box to enable server-side encryption with AWS KMS-Managed Keys (SSE-KMS) instead of Amazon S3-Managed Encryption Keys (SSE-S3). This property is available when the Server-Side Encryption check box is selected. |
Customer Master Key |
Specify your own customer master key (CMK) that is created in the IAM console using AWS Key Management Service for SSE-KMS encryption. If not specified, the default CMK, which is created the first time you add an SSE-KMS encrypted object to the defined bucket in your region, will be used for SSE-KMS encryption. This property is available when the Use KMS check box is selected. |
Die on error |
This check box is cleared by default, meaning to skip the row on error and to complete the process for error-free rows. |
Advanced settings
Config client |
Select this check box to configure client parameters. Client parameter: select client parameters from the list. Value: enter the parameter value. Not available when Use existing connection is selected. |
STS Endpoint |
Select this check box to specify the AWS Security Token Service (STS) endpoint from which to retrieve the session credentials. For example, enter sts.amazonaws.com. This check box is available only when the Assume Role check box is selected. |
Signing region |
Select the AWS region of the STS service. If the region is not in the list, you can enter its name between double quotation marks. The default value is us-east-1. This drop-down list is available only when the Assume Role check box is selected. |
External Id |
If the administrator of the account to which the role belongs provided you with an external ID, enter its value here. The External Id is a unique identifier that allows a limited set of users to assume the role. This field is available only when the Assume Role check box is selected. |
Serial number |
When you assume a role, the trust policy of this role might require Multi-Factor Authentication (MFA). In this case, you must indicate the identification number of the hardware or virtual MFA device that is associated with the user who assumes the role. This field is available only when the Assume Role check box is selected. |
Token code |
When you assume a role, the trust policy of this role might require Multi-Factor Authentication (MFA). In this case, you must indicate a token code. This token code is a time-based one-time password produced by the MFA device. This field is available only when the Assume Role check box is selected. |
Tags |
List session tags in the form of key-value pairs. You can then use these session tags in policies to allow or deny access to requests. Transitive: select this check box to indicate that a tag will persist to the next role in a role chain. For more information about tags, see Passing Session Tags in AWS STS This field is available only when the Assume Role check box is selected. |
IAM Policy ARNs |
Enter the Amazon Resource Names (ARNs) of the IAM managed policies that you want to use as managed session policies. Use managed session policies to limit the permissions of the session. The policies must exist in the same account as the role. The resulting session's permissions are the intersection of the role's identity-based policy and the session policies. For more information about session policies, see the corresponding section in Policies and Permissions This field is available only when the Assume Role check box is selected. |
Policy |
Enter an IAM policy in JSON format that you want to use as a session policy. Use session policies to limit the permissions of the session. The resulting session's permissions are the intersection of the role's identity-based policy and the session policies. For more information about session policies, see the corresponding section in Policies and Permissions This field is available only when the Assume Role check box is selected. |
Multipart threshold (MB) |
Specify the multipart threshold (in MB). A file will be uploaded in parts if its size is larger than the multipart threshold. Note that this setting has no effect in the streaming mode. Information noteNote: This field is available only when you have installed
the R2021-05 Studio Monthly update or a later one delivered by Talend.
For more information, check with your administrator
|
Part size (Mb) |
Specify the part size (in MB) when uploading an object in parts. Part size is in the range 5MB to 5GB. A value less than 5 uploads the object with the part size of 5MB. For an object that is less than 5GB in size, you can have it uploaded without being divided into parts by setting this option to a large enough value. For information about S3 multipart upload, see Multipart Upload Overview. |
Enable Accelerate Mode |
Select this check box to enable fast, easy and secure transfers of files over long distances between your client and an S3 bucket. To take it into account, you should enable this acceleration mode on the S3 bucket in advance. This option can work as a dynamic parameter and be assigned a value using a context variable. Information noteNote: This option can work as a dynamic parameter only when
you have installed the R2021-05 Studio Monthly update or a later one
delivered by Talend. For more information, check with your
administrator.
|
Access control |
Select this check box to set the access control list (ACL) for the current object. With Access control selected, click the plus
button under the Access table to add a new line, where
you can add an AWS user account and set permissions for it as follows.
Information noteNote:
|
Canned Access Control |
Select an option from the drop-down list to grant a predefined permission for the current resource. See Canned ACL for information about canned ACL. Information noteNote: This
option is available only when you have installed the R2021-03 Studio Monthly
update or a later one delivered by Talend. For more information, check with
your administrator.
|
Enable object lock |
Select this option to enable the Amazon S3 Object lock feature. With this option enabled, you need also to select a retention mode (which can be Governance or Compliance) from the Retention mode drop-down list and set a retention period in the Retention period field. For information about the Amazon S3 Object lock feature, retention mode, and retention period, see Protecting data with Amazon S3 Object Lock. Information noteNote: This option is available only when you have installed
the R2021-06 Studio Monthly update or a later one delivered by Talend.
For more information, check with your administrator.
|
tStatCatcher Statistics |
Select this check box to collect log data at the component level. |
Global Variables
ERROR_MESSAGE |
The error message generated by the component when an error occurs. This is an After variable and it returns a string. This variable functions only if the Die on error check box is selected. |
Usage
Usage rule |
This component can be used alone or with other S3 components, e.g. tS3Connection. |
Dynamic settings |
Click the [+] button to add a row in the table and fill the Code field with a context variable to choose your database connection dynamically from multiple connections planned in your Job. This feature is useful when you need to access database tables having the same data structure but in different databases, especially when you are working in an environment where you cannot change your Job settings, for example, when your Job has to be deployed and executed independent of Talend Studio. Once a dynamic parameter is defined, the Component List box in the Basic settings view becomes unusable. For examples on using dynamic parameters, see Reading data from databases through context-based dynamic connections and Reading data from different MySQL databases using dynamically loaded connection parameters. For more information on Dynamic settings and context variables, see Talend Studio User Guide. |