For AI agents: a documentation index is available at the root level at /llms.txt and /llms-full.txt. Append /llms.txt to any URL for a page-level index, or .md for the markdown version of any page.
LoginGet Started
DocsAPI ReferenceChangelog
DocsAPI ReferenceChangelog
    • Home
  • Getting Started
  • Infrastructure
    • GPU VMs
    • Cloud VMs
    • Object Storage
      • Core Concepts
      • Upload Your First Object
      • Buckets
      • Objects
      • Mount a Bucket as a Filesystem
      • Metrics
      • API Tokens
      • Static Site Hosting
      • CDN integration
      • Pricing
      • Limits
    • Block Storage
  • Network & Security
    • Load Balancer
    • DNS
    • CDN
    • Firewalls
    • SSL Certificates
  • Tools
    • Backups
    • Snapshots
    • ISOs
    • SSH Keys
    • API Tokens
    • Secret Manager
    • Container Registry
  • Platform Fundamentals
    • Projects and tenancy model
    • IAM
    • Networking overview
    • Billing and usage
    • Limits and quotas
    • SLA and reliability
  • Tutorials
    • Deploy a web app
    • Host a static website with object storage
    • Run an AI model on a GPU VM
    • Set up a load-balanced architecture
    • Backup and disaster recovery
    • Multi-region deployment
  • Migration Guides
    • Migrate from AWS
    • Migrate from GCP
    • Migrate from Vultr and Linode
    • Move S3 workloads to IBEE Object Storage
    • VM image migration
  • Reference
    • Pricing
    • Regions
    • Limits
    • Error codes
    • Service level agreement
  • Support
    • Contact Support
    • Create a request
    • Troubleshooting guides
    • Visit ibee.ai
LogoLogo
LoginGet Started
On this page
  • Before you begin
  • Create an Object Storage token
  • Use with S3-compatible tools
  • AWS CLI
  • rclone
  • Revoke a token
  • Related pages
InfrastructureObject Storage

API Tokens

Was this page helpful?
Edit this page
Previous

Hosting Static Sites and SPAs on Object Storage

Next
Built with

API tokens scoped to Object Storage provide three credentials: a Bearer Token for the IBEE REST API, and an Access Key ID + Secret Access Key for any S3-compatible tool.

Tokens are managed globally at portal.ibee.ai/a/{project_id}/api-tokens. See API Tokens for the full reference including Billing permissions.

Before you begin

  • An active IBEE Cloud project with a verified account
  • At least one bucket (Create a bucket)

Create an Object Storage token

1

Go to API Tokens

Click API Tokens in the left sidebar under Tools.

2

Create a token

Click + Create Token. Enter a Name and optional Description.

3

Set Object Storage permissions

Check Object Storage. The Object Storage Permissions panel appears with the helper “Specify the storage permission type for this token. Includes S3 credentials.” Choose one permission level:

PermissionWhat it allows
Admin Read & WriteCreate, list, delete buckets, edit bucket configuration, read, write, and list objects.
Admin Read onlyList buckets, view configuration, read and list objects.
Object Read & WriteRead, write, and list objects in specific buckets.
Object Read onlyRead and list objects in specific buckets.

Under Specify bucket(s), choose:

  • Apply to all buckets in this project (including newly created buckets)
  • Apply to specific buckets only

Optionally check Billing to add a billing scope to the same token. The Billing Permissions panel appears with one option: Read only — “View invoices, orders, and account balance”.

Set an expiry under Expires In (days) — between 1 and 365 days, default 90. Click Create Token.

4

Save credentials

The Token will include confirmation lists three credentials:

CredentialUse
Bearer TokenFor the IBEE REST API (ibee_v4_...)
Access Key IDFor S3-compatible tools (AKIA...)
Secret Access KeyFor S3-compatible tools — shown once only, copy now

The S3 endpoint for the project is: https://{project_id}.blob.ibeestorage.com

The Secret Access Key is shown once only. If you lose it, revoke the token and create a new one.

Use with S3-compatible tools

AWS CLI

$aws configure set aws_access_key_id AKIAFA2D0EB3E226DA73
$aws configure set aws_secret_access_key <your-secret-access-key>
$aws configure set default.region us-east-1
$
$# List buckets
$aws s3 ls --endpoint-url https://{project_id}.blob.ibeestorage.com

rclone

1[ibee]
2type = s3
3provider = Other
4access_key_id = AKIAFA2D0EB3E226DA73
5secret_access_key = <your-secret-access-key>
6endpoint = https://{project_id}.blob.ibeestorage.com

Revoke a token

In the API Tokens list, click Revoke next to the token. Access is removed immediately.

Related pages

  • API Tokens (global)
  • Permissions and policies
  • Create a bucket
  • Upload and download objects