git-remote-object-store 0.2.4

Git remote helper backed by cloud object stores (S3, Azure Blob Storage)
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69

.TH GIT-REMOTE-S3+HTTPS 1 "" "git-remote-object-store Manual"
.SH NAME
git\-remote\-s3+https \- Git remote helper for AWS S3 buckets over HTTPS
.SH SYNOPSIS
\fBgit\-remote\-s3+https\fR \fIREMOTE\fR \fIURL\fR
.SH DESCRIPTION
Git invokes this helper automatically when it encounters a remote whose
URL begins with \fBs3+https://\fR. The helper speaks the git
remote\-helper protocol on stdin/stdout and translates push, fetch,
clone, and ref\-listing operations into S3 GET/PUT/LIST/DELETE calls.
.PP
This binary is not normally run directly. Configure a remote with one of
the URL forms in \fIURL GRAMMAR\fR below and let \fBgit fetch\fR /
\fBgit push\fR / \fBgit clone\fR pick it up.
.SH URL GRAMMAR
.TP
\fBs3+https://\fIbucket\fR.s3.\fIregion\fR.amazonaws.com\fR[/\fIprefix\fR]
Virtual\-hosted bucket against AWS S3. Region is parsed from the host.
.TP
\fBs3+https://s3.\fIregion\fR.amazonaws.com/\fIbucket\fR\fR[/\fIprefix\fR]
Path\-style bucket against AWS S3.
.TP
\fBs3+https://\fIhost\fR[:\fIport\fR]/\fIbucket\fR\fR[/\fIprefix\fR]
S3\-compatible endpoint (MinIO, RustFS, Cloudflare R2, …).
.PP
\fIprefix\fR is an optional repository subpath under the bucket; multiple
repositories can share a bucket by giving each its own prefix.
.SH ENVIRONMENT
The S3 backend hands credential resolution to the AWS SDK's default
provider chain (\fBaws_config::defaults\fR), which honors the standard
\fBAWS_*\fR variables; the most common are listed below. See
\fIdocs/environment-variables.md\fR for the complete reference,
including the project\-specific
\fBGIT_REMOTE_OBJECT_STORE_*\fR variables shared with the Azure helper.
.TP
\fBAWS_ACCESS_KEY_ID\fR, \fBAWS_SECRET_ACCESS_KEY\fR, \fBAWS_SESSION_TOKEN\fR
Static credentials. Without them the SDK walks the rest of the
provider chain (shared credentials file, IAM Identity Center / SSO,
web\-identity / workload identity, instance metadata).
.TP
\fBAWS_REGION\fR (or \fBAWS_DEFAULT_REGION\fR)
Region for SigV4 signing. The URL\(aqs \fB?region=\fR flag overrides this.
.TP
\fBAWS_PROFILE\fR (or \fBAWS_DEFAULT_PROFILE\fR)
Named profile in \fI~/.aws/credentials\fR. The URL\(aqs \fB?profile=\fR
flag overrides this.
.TP
\fBAWS_ENDPOINT_URL\fR
Override the inferred endpoint (MinIO, RustFS, on\-prem S3). The URL
host normally supplies this; the env var is a last\-resort override.
.TP
\fBGIT_REMOTE_OBJECT_STORE_ALLOW_HTTP\fR
Set to \fB1\fR to allow \fBs3+http://\fR against non\-loopback hosts.
Loopback (\fBlocalhost\fR, \fB127.0.0.1\fR, \fB::1\fR) is always allowed.
.TP
\fBGIT_REMOTE_OBJECT_STORE_VERBOSE\fR
Numeric. \fB>= 2\fR raises the startup tracing level from \fBerror\fR
to \fBinfo\fR. The protocol \fBoption verbosity 2+\fR directive can
raise the level at runtime; it cannot lower a level set here.
.TP
\fBGIT_REMOTE_OBJECT_STORE_LOCK_TTL_SECONDS\fR
Per\-ref lock TTL, in seconds. Default 60.
.SH NOTES
Standard output is reserved for the remote\-helper wire protocol. Every
diagnostic, including credential errors and lock contention messages,
goes to standard error.
.SH SEE ALSO
\fBgit-remote-object-store\fR(1), \fBgitremote-helpers\fR(7),
\fBgit-remote-s3+http\fR(1).