Skip to content

Latest commit

 

History

History
229 lines (161 loc) · 7.13 KB

tutorial-migration-oss-to-s3.md

File metadata and controls

229 lines (161 loc) · 7.13 KB

Migration from Alibaba Cloud OSS to Amazon S3

中文

This tutorial is the guide to transfer Objects from AlibabaCloud OSS to Amazon S3.

We assume that you have already finished the deployment of the Data Transfer Hub Solution. And the solution is deployed in Oregon (us-west-2) region.

You can refer to Deployment Guide to deploy the solution first.

Login to Data Transfer Hub Portal

Once the cloudformation stack is created successfully, you will receive an email notification that contains a temporary password for login, the username is the AdminEmail you set while you launch the cloudformation. The portal url can be found in the outputs tab of the cloudformation stack, see below screenshot as an example:

portal

To login the portal.

  1. Open the portal URL in your browser
  2. Sign in with your username and the temporary password
  3. Change the temporary password
  4. Verify the email (optional) portal

Configure Credentials

  1. Open Secrets Manager console
  2. Choose Secrets in the left navigation bar
  3. Click Store a new secret button
  4. Select Other type of secrets as type
  5. Input the credentials of AlibabaCloud as text in Plaintext, the credentials format should follow 
    {
  "access_key_id": "<Your Access Key ID>",
  "secret_access_key": "<Your Access Key Secret>"
}
  6. Click Next
  7. Input Secret name, for example: drh-credentials
  8. Click Next
  9. Select Disable automatic rotation
  10. Click Store

Create Replication Task from Web Portal

  1. Go back to Data Transfer Hub portal, choose Amazon S3 and click Next Step. portal

  2. In Edition type we recommened EC2 Graviton 2, then click Next Step. portal

  3. In Source settings part, enter the name of source bucket Name and other config item. portal

  4. In Destination settings part, enter the name of destination bucket Name and other config item. portal

  5. Enter the alarm email and click Next Step portal

  6. After reviewing task, click Create Task. Then, you can see the task you created. portal

Monitoring via Cloudwatch Dashboard

portal

Real time data transfer by OSS Event Triger

If you want to do real time data clone from AlibabaCloud OSS to Amazon S3. This is a guide of how to enable OSS event to trigger the replication.

Prerequisites

Data Transfer Hub must be deployed in AWS account, in this guide we assume that you deployed in the us-west-2 region.

After you started the task, go to SQS console and write down the Queue URL and Queue arn, you will use them in the next steps.

portal

Prepare your AWS account's AK/SK

Go to IAM console, create a new policy.

portal

Click the JSON

Remember replace your Queue arn in the JSON.

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": [
                "sqs:SendMessageBatch",
                "sqs:SendMessage"
            ],
            "Resource": "arn:aws:sqs:us-west-2:xxxxxxxxxxx:DTHS3Stack-S3TransferQueue-1TSF4ESFQEFKJ"
        }
    ]
}

portal

Then create the user. Go to User page and click Add User.

portal

And then attach the policy you create previously to the User.

portal

Save the AK/SK, you will use them in the next steps.

portal

Prepare the sender function for Alibaba Cloud

Open the terminal and enter the command, suggest using docker or linux machine.

mkdir tmp
cd tmp
pip3 install -t . boto3

Create a index.py in the same folder, and enter the code

import json
import logging
import os
import boto3


def handler(event, context):
    logger = logging.getLogger()
    logger.setLevel('INFO')

    evt = json.loads(event)

    if 'events' in evt and len(evt['events']) == 1:
        evt = evt['events'][0]

        logger.info('Got event {}'.format(evt['eventName']))
        obj = evt['oss']['object']
        # logger.info(obj)

        ak = os.environ['ACCESS_KEY']
        sk = os.environ['SECRET_KEY']
        queue_url = os.environ['QUEUE_URL']
        region_name = os.environ['REGION_NAME']

        # minimum info of a message
        obj_msg = {
            'key': obj['key'],
            'size': obj['size']
        }

        # start sending the msg
        sqs = boto3.client('sqs', region_name=region_name,
                           aws_access_key_id=ak, aws_secret_access_key=sk)

        try:
            sqs.send_message(
                QueueUrl=queue_url,
                MessageBody=json.dumps(obj_msg)
            )
        except Exception as e:
            logger.error(
                'Unable to send the message to Amazon SQS, Exception:', e)

    else:
        logger.warning('Unknown Message '+evt)

    return 'Done'

Zip the code (including boto3)

zip -r code.zip *

Create a Function in Alibaba Cloud

Go to console of 函数计算/Function Compute, click 新建函数/create function

portal

Use the code.zip to create the function.

portal

Then click 新建/create

Config the function's Environment Variables

Click the 修改配置/Edit Config

portal

Then enter the config json in the 环境变量/Environment Variables, remember to use your owen ACCESS_KEY, SECRET_KEY and QUEUE_URL.

{
    "ACCESS_KEY": "XXX",
    "QUEUE_URL": "https://sqs.us-west-2.amazonaws.com/xxxx/DTHS3Stack-S3TransferQueue-xxxx",
    "REGION_NAME": "us-west-2",
    "SECRET_KEY": "XXXXX"
}

portal

Create the trigger

Click the 创建触发器/create trigger to create the trigger for the function.

portal

Then config the trigger as the picture show below. For 触发事件/Trigger Event, please choose:

oss:ObjectCreated:PutObject
oss:ObjectCreated:PostObject 
oss:ObjectCreated:CopyObject
oss:ObjectCreated:CompleteMultipartUpload
oss:ObjectCreated:AppendObject

portal