RustFS for Local Development S3-Compatible Storage

S3 and S3-compatible storage is an indispensable component of modern web applications, especially when deploying with containers like Docker and Kubernetes.

When developing an application locally, although Laravel and other frameworks have unified storage helpers allowing switching between file systems (usually local and S3), there are many quirks of object storage that will be overlooked if using a local filesystem.

Rather than use a hosted S3 system during development, we can save costs, latency (and time) and bandwidth using a local S3-compatible server. MinIO was the go-to until recently with controversial license changes. RustFS is a good choice for local development. Here is how to set it up with Docker and Laravel for local development:

RustFS Docker:


1
2
3
4
5
6
7
8
9
10
11
docker run \

  -p 9000:9000 \

  -p 9001:9001 \

  -v rust-data:/data \

  -v rust-logs:/logs \

  -e RUSTFS_ACCESS_KEY=rustfsadmin \

  -e RUSTFS_SECRET_KEY=rustfsadmin \

  -e RUSTFS_CONSOLE_ENABLE=true \

  -e RUSTFS_SERVER_DOMAINS=storage.mydevdomain.test \

  -e RUSTFS_SIG_HEADER_WHITELIST="if-modified-since,range" \

  rustfs/rustfs:latest

Argument

Meaning

1	docker run

Launches a new container from the specified image.

1	-p 9000:9000

Maps port 9000 inside the container to port 9000 on your host. This is usually where RustFS serves file storage, to be served publically.

1	-p 9001:9001

Maps port 9001 inside the container to port 9001 on your host. RustFS web admin console.

1	-v rust-data:/data

Mounts a Docker volume called

rust-data

/data

in the container. This stores your persistent file data.

1	-v rust-logs:/logs

Mounts a Docker volume called

rust-logs

/logs

in the container. All logs generated by RustFS go here.

1	-e RUSTFS_ACCESS_KEY=rustfsadmin

Username for web admin console access. Don’t use this in production!

1	-e RUSTFS_SECRET_KEY=rustfsadmin

Password for web admin console access. Don’t use this in production!

1	-e RUSTFS_CONSOLE_ENABLE=true

Enables the RustFS web console, which allows you to monitor and manage storage via a browser.

1	-e RUSTFS_SERVER_DOMAINS=storage.mydevdomain.test

Defines the domain(s) RustFS should respond to.

1	-e RUSTFS_SIG_HEADER_WHITELIST=“if-modified-since,range”

Specifies which HTTP headers are allowed for signed requests. In practice I’ve found this is required when serving large files.

1	rustfs/rustfs:latest

The Docker image to run (latest version of RustFS).

To configure this as a storage disk in Laravel, we can either create a new disk, or alter the S3 disk. You’ll have to decide which approach to take, which may depend on if you have multiple disks and providers.

The admin interface of RustFS is very easy to use. If you are intending files to be public and using Laravel, it is essential to set your file system as public, and also set your RustFS bucket as public. From experience you will just get silent errors with no error logs to help you.

config/filesystems.php


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
        's3' => &#91;

            'driver' => 's3',

            'key' => env('AWS_ACCESS_KEY_ID'),

            'secret' => env('AWS_SECRET_ACCESS_KEY'),

            'region' => env('AWS_DEFAULT_REGION'),

            'bucket' => env('AWS_BUCKET'),

            'url' => env('AWS_URL'),

            'endpoint' => env('AWS_ENDPOINT'),

            'visibility' => 'public',

            'use_path_style_endpoint' => env('AWS_USE_PATH_STYLE_ENDPOINT', false),

            'throw' => false,

            'report' => false,

            'http' => &#91;

                'verify' => env('AWS_SSL_VERIFY', true),

            ],

        ],

From experience I’ve found that RustFS requires use_path_style_endpoint, as the URL structure has the bucket name as the first path in the URL, contrary to S3. This is the same in many compatible servers.

During development, the option to ignore self-signed certificate errors is important.

The final step is to set up a reverse proxy on your favorite web server to serve the files. Here’s an example config in Nginx (don’t forget to update your hosts file):


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
server {

    listen 80;

    listen 443 ssl;

    server_name storage.mydevdomain.test bucketname.storage.mydevdomain.test;



    location / {

        proxy_pass http://127.0.0.1:9900;



        # Preserve client + host info (important for S3-style services)

        proxy_set_header Host $host;

        proxy_set_header X-Real-IP $remote_addr;

        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;

        proxy_set_header X-Forwarded-Proto $scheme;



        # RustFS / S3 compatibility tweaks

        proxy_http_version 1.1;

        proxy_set_header Connection "";



        # Large uploads support

        client_max_body_size 0;

        proxy_request_buffering off;

    }



    # SSL (Laragon)

    ssl_certificate "/etc/ssl/mycert.crt";

    ssl_certificate_key "/etc/ssl/mykey.key";

    ssl_session_timeout 5m;

    ssl_protocols TLSv1 TLSv1.1 TLSv1.2;

    ssl_ciphers ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv3:+EXP;

    ssl_prefer_server_ciphers on;



    charset utf-8;

}

That’s it! Now you have local S3-compatible storage for local development, that won’t cost you in storage and ingress/egress fees, has low latency and won’t use up your bandwidth.