Storages
Storages
Use Storages to define where finished media should go after it leaves local disk. This is the module for external buckets and archive targets used by recordings, copied files, and exported assets.
In production, a storage object gives your team a reusable destination with a stable id. Downstream jobs can reference that object instead of repeating bucket URLs and credentials in every workflow.
What this module solves
- Moves archive and delivery planning out of individual media jobs.
- Provides a single, reusable destination for recordings and file copy workflows.
- Supports separate storage policies for archive, exchange, and customer delivery.
- Keeps secrets out of read APIs after initial configuration.
Key operations
createandupdateregister or change a storage target.getAllandgetCountsupport inventory and audits.getByIdreturns one configured destination.removedetaches a target that is no longer needed.
Operational notes
- Treat
access_keyandsecret_keyas write-only inputs. They are supplied on create or update and are not returned later. - Use one storage object per operational destination. Do not mix archive, handoff, and delivery policies into a single bucket unless that is intentional.
- Validate a new or updated destination with a low-risk workflow before routing production media to it.
Example targets
The examples below cover the two most common object storage setups used in production.
AWS S3 archive
Typical choice for long-term retention and shared media libraries.
{
"name": "AWS media archive",
"type": "STORAGE_TYPE_S3",
"bucket_url": "https://my-media-bucket.s3.us-east-1.amazonaws.com",
"access_key": "AWS_ACCESS_KEY_ID",
"secret_key": "AWS_SECRET_ACCESS_KEY",
"redis_meta_data_url": "redis://localhost:6379/2",
"meta_data": {}
}Backblaze B2 archive
Typical choice for cost-sensitive archive and off-instance retention.
{
"name": "Backblaze media archive",
"type": "STORAGE_TYPE_BACKBLAZE",
"bucket_url": "https://s3.us-east-005.backblazeb2.com/my-media-bucket",
"access_key": "B2_KEY_ID",
"secret_key": "B2_APPLICATION_KEY",
"redis_meta_data_url": "redis://localhost:6379/2",
"meta_data": {}
}Production workflows
Register archive storage before recording depends on it
Create the storage object before enabling recording or export workflows for an event. That way, operators are not entering bucket details during a live production window and every job can point to a known-good destination.
Separate archive, editorial handoff, and customer delivery
Different buckets usually exist for different reasons: long-term archive, short-term editorial exchange, or final customer delivery. Model those as separate storage objects so permissions, lifecycle rules, and operational ownership stay clear.
Rotate credentials without changing downstream references
When keys or endpoint details change, update the storage object and run a small validation transfer before the next show. Read APIs will confirm the destination exists, but they will not return stored secrets for review.
Operator guidance
- Name storage objects by purpose, not just by vendor.
- Keep metadata minimal and meaningful so inventory stays easy to audit.
- Remove unused targets when projects end or retention policies change.
Use this method before any recording, archive, or file-transfer workflow is pointed at external storage.
It registers the target, validates bucket and metadata settings, and makes the destination available for production use. The preset examples are the fastest path for common S3-compatible providers such as AWS S3 or Backblaze.
Use this preset when recordings or copied assets should land in an AWS S3 bucket.
Use this preset when the storage backend is Backblaze and the bucket URL follows the S3-compatible Backblaze endpoint pattern.
Dashboard label: Storage Name.
The unique storage name. The backend validates a constrained name pattern and length before creating the storage object.
Dashboard label: Location.
Real product values include STORAGE_TYPE_S3, STORAGE_TYPE_BACKBLAZE, and an internal-disk type used as a model default.
Dashboard label: Bucket URL.
Full bucket URL for the storage target.
Dashboard label: Access key (Key ID).
Write-only credential field used when the storage is created or updated.
Dashboard label: Secret key (App key).
Write-only credential field used when the storage is created or updated.
Dashboard label: Metadata URL.
Redis metadata backend used by the storage mounting layer.
Optional metadata object stored with the storage target.
Storage object identifiers and the saved storage name.
Storage type, bucket URL, and the normalized folder name derived from the storage name.
Saved metadata backend fields for the storage object.
Creation timestamp managed by the backend.
The create and update flows accept credentials, but list and lookup methods intentionally avoid returning the secret fields back to the client.
Use this with paginated storage tables or quick inventory checks in admin tooling.
It reports how many storage targets are visible to the authenticated user before you fetch the full list.
Total number of storage targets currently visible to the authenticated user.
Use this to populate storage inventories in control panels and preflight checks.
It lists the storage targets visible to the current user with non-secret fields such as name, type, bucket URL, and metadata.
Optional page size for the list query.
Optional offset for paginated listing.
Optional sort descriptor. The dashboard store defaults to { created: 1 }.
Optional filter object forwarded to the backend query.
The backend returns a bare array of non-secret storage objects.
Use this when an operator opens a storage target for review or edit, or when a workflow needs to confirm the saved destination details before use.
It loads one configured target by id and exposes the non-secret fields needed by management tooling.
Identifier of the storage target you want to load.
The backend returns the saved non-secret storage fields for the requested target.
Use this to rotate credentials, change the bucket or metadata endpoint, or correct storage settings without replacing the destination in your control plane.
The update path follows the same contract as create, so existing workflows can keep the same storage target identity while you refresh its connection details.
Identifier of the storage target being updated.
The update contract mirrors create. In practice this is where you change the bucket URL, metadata URL, or credentials.
The backend returns the updated storage object.
Use this to retire a storage destination so new recordings and file transfers can no longer select it.
Run it only after confirming no active workflow still depends on that target; the engine detaches it from the control plane and performs cleanup.
Identifier of the storage target to delete.
The remove endpoint responds with a success-shaped result after the cleanup path finishes.