Skip to content
/ s3proxy-python Public

Transparent client-side encryption proxy for S3 — AES-256-GCM envelope encryption, zero code changes, Kubernetes-native with Helm chart

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ServerSideHannes/s3proxy-python

BranchesTags

Repository files navigation

AES-256-GCM Python Kubernetes

S3Proxy

Transparent client-side encryption for S3. Zero code changes.

Helm Install Ceph S3 Compatibility

Overview

S3's server-side encryption is great, but your cloud provider holds the keys. S3Proxy sits between your app and S3, encrypting everything before it leaves your infrastructure.

┌──────────┐         ┌──────────┐         ┌──────────┐
│          │  plain  │          │  AES    │          │
│ Your App │ ──────▶ │ S3Proxy  │ ──────▶ │    S3    │
│          │  data   │          │  256    │          │
└──────────┘         └──────────┘         └──────────┘
                           │
                     You own the keys.

Streaming Multipart SigV4 Redis HA Scaling

Install

Option A — inline secrets (quick start):

helm install s3proxy oci://ghcr.io/serversidehannes/s3proxy-python/charts/s3proxy-python \
  --set secrets.encryptKey="your-32-byte-key" \
  --set secrets.awsAccessKeyId="AKIA..." \
  --set secrets.awsSecretAccessKey="wJalr..."

Option B — existing K8s secret (recommended for production):

kubectl create secret generic s3proxy-secrets \
  --from-literal=S3PROXY_ENCRYPT_KEY="your-32-byte-key" \
  --from-literal=AWS_ACCESS_KEY_ID="AKIA..." \
  --from-literal=AWS_SECRET_ACCESS_KEY="wJalr..."

helm install s3proxy oci://ghcr.io/serversidehannes/s3proxy-python/charts/s3proxy-python \
  --set secrets.existingSecrets.enabled=true \
  --set secrets.existingSecrets.name=s3proxy-secrets

Then point any S3 client at the proxy:

aws s3 --endpoint-url http://s3proxy-python:4433 cp file.txt s3://bucket/

Use the same credentials you configured above. That's it.

Endpoints — In-cluster: http://s3proxy-python.<ns>:4433 · Gateway: http://s3-gateway.<ns> · Ingress: https://s3proxy.example.com

HealthGET /healthz · GET /readyz · MetricsGET /metrics

Battle-Tested

Verified with real database operators: backup, cluster delete, restore, data integrity check.

Database Operator Backup Tool
PostgreSQL 17 CloudNativePG 1.25 Barman S3
Elasticsearch 9.x ECK 3.2.0 S3 Snapshots
ScyllaDB 6.x Scylla Operator 1.19 Scylla Manager
ClickHouse 24.x Altinity Operator clickhouse-backup

How It Works

Credential flow — S3 clients sign requests with their secret key. When S3Proxy encrypts the payload, the body changes and the original signature is invalidated. The proxy re-signs with the same key. Configure credentials once on the proxy, all clients use them.

Envelope encryption — Your master key derives a KEK (Key Encryption Key). Each object gets a random DEK (Data Encryption Key), encrypted with AES-256-GCM. The DEK is wrapped by the KEK and stored as object metadata. Your master key never touches S3.

Master Key → KEK (derived via SHA-256)
              └→ wraps DEK (random per object)
                   └→ encrypts data (AES-256-GCM)

Configuration

Value Default Description
replicaCount 3 Pod replicas
s3.host s3.amazonaws.com S3 endpoint (AWS, MinIO, R2, etc.)
s3.region us-east-1 AWS region
secrets.encryptKey Encryption key
secrets.existingSecrets.enabled false Use existing K8s secret
redis-ha.enabled true Deploy embedded Redis HA
gateway.enabled false Create gateway service
ingress.enabled false Enable ingress
performance.memoryLimitMb 64 Memory budget for streaming concurrency

See chart/README.md for all options.

FAQ

Can I use existing unencrypted data? Yes. S3Proxy detects unencrypted objects and returns them as-is. Migrate by copying through the proxy.
What if I lose my encryption key? Data is unrecoverable. Back up your key.
What if Redis fails mid-upload? Upload fails and must restart. Use redis-ha.enabled=true with persistence.
MinIO / R2 / Spaces? Yes. Set s3.host to your endpoint.
Presigned URLs? Yes. The proxy verifies the presigned signature, then makes its own authenticated request to S3.

Roadmap

  • Key rotation (re-encrypt objects with a new master key)
  • Multiple AWS credential pairs (per-client auth)
  • Per-bucket / per-prefix encryption keys
  • S3 Select passthrough
  • Ceph S3 compatibility > 80%
  • Batch re-encryption CLI tool
  • Audit logging (who accessed what, when)
  • Web dashboard for key & upload status

Changelog

2026.2.0

  • Modular handler architecture (objects/, multipart/, routing/, client/, streaming/)
  • Memory-based concurrency limiting (replaces count-based), default 64 MB budget
  • Redis state management with automatic recovery; fix data loss on multipart complete/retry
  • Hardened input validation, XML escaping, backpressure, and error handling
  • Helm chart restructured (manifests/chart/) with PDB, standardized labels, and config reference
  • E2E tests for PostgreSQL, Elasticsearch, ScyllaDB, ClickHouse, and S3 compatibility
  • CI workflows for ruff linting and unit tests
  • Prometheus-compatible metrics endpoint
  • Slimmer Dockerfile and Makefile improvements

License

MIT

About

Transparent client-side encryption proxy for S3 — AES-256-GCM envelope encryption, zero code changes, Kubernetes-native with Helm chart

Topics

python kubernetes aws security privacy encryption proxy helm s3 minio s3-proxy envelope-encryption aes-256-gcm fastapi client-side-encryption data-at-rest-encryption cloudflare-r2 byok

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases 1

2026.2.0 Latest
Feb 11, 2026

Packages

No packages published

Languages