Manage Access Keys
Tigris access keys authenticate programmatic access to your object storage buckets. You can manage them via the Tigris Dashboard or programmatically using the AWS CLI.
๐ Create an Access Keyโ
From the Dashboardโ
-
Open the Dashboard
Go to the Tigris Dashboard and select Access Keys from the sidebar. -
Click "Create New Access Key +"
Optionally choose your service endpoint (DefaultorFly). -
Fill in Key Details
- Key Name: e.g.,
ci-access,backup-script - Permissions:
- Admin โ full access (dev use only)
- Editor โ read/write to selected buckets
- ReadOnly โ read-only for selected buckets
- Key Name: e.g.,
-
Click Create
Youโll receive:- Access Key ID
- Secret Access Key (shown onceโstore it securely)
- S3 & IAM endpoint URLs
- Region
Set the following environment variables:
export AWS_ACCESS_KEY_ID=your-access-key-id
export AWS_SECRET_ACCESS_KEY=your-secret-access-key
export AWS_ENDPOINT_URL_S3=https://t3.storage.dev
export AWS_ENDPOINT_URL_IAM=https://iam.storage.dev
export AWS_REGION=auto
Programmaticallyโ
-
Set Environment Variables
export AWS_ACCESS_KEY_ID=tid_
export AWS_SECRET_ACCESS_KEY=tsec_
export AWS_ENDPOINT_URL_S3=https://t3.storage.dev
export AWS_ENDPOINT_URL_IAM=https://iam.storage.dev
export AWS_REGION=auto -
Create an Access Key
aws iam create-access-key --endpoint-url "$AWS_ENDPOINT_URL_IAM"
๐๏ธ Delete an Access Keyโ
From the Dashboardโ
-
Open the Dashboard
Go to the Tigris Dashboard and select Access Keys. -
Find the Key
In the list, locate the access key you want to delete. -
Delete the Key
Click the ๐๏ธ icon next to the key. A confirmation modal will appearโclick Delete to confirm.
Programmaticallyโ
Ensure your environment variables are still set (see above), then run:
aws iam delete-access-key --endpoint-url "$AWS_ENDPOINT_URL_IAM" --access-key-id=tid_
๐ Tip: Rotate or delete unused access keys regularly.