Announcing enhancements to per-bucket access keys and public preview of Spaces access logs

At DigitalOcean, we continuously enhance our cloud storage solutions to empower developers and growing businesses. Today, we’re excited to announce the general availability of DO API support for per-bucket access keys, mixed permissions support for per-bucket access keys, and the public preview of Spaces access logs, delivering greater automation, visibility, and security to DigitalOcean Spaces object storage.

Enhancements to per-bucket access keys provide API support and more granular controls

Building on the success of per-bucket access keys, we’re introducing two major upgrades that are now generally available to all customers to streamline storage access management:

• DO API support for managing access keys – Manage Spaces access keys programmatically using the DigitalOcean API, enabling automation through the DigitalOcean Terraform Provider, doctl CLI, DigitalOcean Go API Client (godo), and DigitalOcean’s Python library (PyDo).

• More granular access control – A single access key can now be configured with permissions that vary by bucket. This lets you grant read-only permissions for some buckets and read-write permissions for other buckets to a single person or application.

These enhancements simplify storage management for customers handling large-scale deployments, automated backups, and security-driven workflows. Explore the documentation to use DO API and manage mixed-permissions access keys. You can start using these new features right now.

Gain better visibility into your storage usage with Spaces access logs

Spaces access logs are now available in public preview to provide detailed records of read and write requests to your Spaces buckets, helping you to better understand usage and enhance security.

Capabilities of Spaces access logs

• Access logging – Generate detailed records of reads, writes, and deletions of objects in your Spaces buckets, whether using Spaces origin endpoints or Spaces CDN endpoints.

• Detailed metadata – Capture object paths, client IPs, and more.

• S3-compatible – Logs are compatible with Amazon S3 server access log format, and logging is enabled using the S3-compatible PutBucketLogging API. (UI support coming soon.)

For customers focused on usage analysis, security, and compliance, Spaces access logs enable actionable insights into storage activity. Explore the Spaces access logs documentation to learn more

To request access to this feature, create a support ticket in your DigitalOcean Cloud Console, assign it to topic “Storage” > “Spaces” > “Other”, and specify the subject line, “Spaces Access Logging”.

Per-bucket access key and Spaces access log enhancements are essential

Enhancements to per-bucket access keys and Spaces access logs deliver compelling benefits for growing businesses and developers, like:

• Automation and scalability – Automate storage access controls using the DO API, Terraform, doctl CLI, and DO SDKs.

• Operational efficiency – Reduce complexity when managing storage permissions across multiple applications.

• Usage analysis – Gain visibility into what data is being accessed and where requests are coming from, to better understand customer behavior.

• Security and compliance – Implement least privilege, automate auditing of Spaces access permissions, and monitor storage activity to help support efforts to detect unauthorized access and to help support compliance requirements related to HIPAA, GDPR, and PCI DSS.

DigitalOceans stands out from other storage solutions with:

• Simplified access management without complex IAM policies.

• Built-in logging, bridging security and performance insights.

• Competitive pricing with robust security—an advantage over providers where customers often cite security concerns.

Try these new enhancements today

We’re committed to making Spaces secure, scalable, and easy to manage. With the public preview of Spaces access logs and general availability of enhancements to per-bucket access keys, you can now take greater control of your storage security, analytics, and automated workflows.

Explore the documentation to learn more, and share your feedback to help us improve the DigitalOcean Spaces experience.