Set up your backup bucket
BackupDrill writes backups to object storage you own — we never hold your data. Any S3-compatible bucket works; here are exact click-paths for the three providers we recommend, and how each value maps to the project form.
One rule before you pick: don’t store backups in Supabase Storage. Disaster recovery should survive a problem with your primary provider — keep the copy with someone else.
Cloudflare R2
Recommended — 10 GB free, no egress fees
Full walkthrough with pricing, lifecycle rules, and a scheduled workflow: back up Supabase to Cloudflare R2.
- Cloudflare dashboard → R2 Object Storage → Create bucket (any name, e.g.
my-backups). - R2 overview → Manage R2 API Tokens → Create API token. Permissions: Object Read & Write, scoped to your bucket.
- On the success page, scroll past the “Token value” at the top— that is Cloudflare’s own API token, not what you need. Copy the credentials for S3 clients at the bottom: Access Key ID and Secret Access Key. The secret is shown only once.
- The same page shows your endpoint.
Endpoint: https://<account-id>.r2.cloudflarestorage.com
Region: auto
Path-style: check "Force path-style addressing"AWS S3
If you already live on AWS
Full walkthrough with IAM policy, lifecycle ladder, and a scheduled workflow: back up Supabase to AWS S3.
- S3 console → Create bucket (Block Public Access ON — the default).
- IAM → Users → create a dedicated user (no console access) with a least-privilege inline policy on that bucket:
{
"Version": "2012-10-17",
"Statement": [
{ "Effect": "Allow",
"Action": ["s3:PutObject", "s3:GetObject", "s3:AbortMultipartUpload"],
"Resource": "arn:aws:s3:::my-backups/*" },
{ "Effect": "Allow",
"Action": ["s3:ListBucket"],
"Resource": "arn:aws:s3:::my-backups" }
]
}- That user → Security credentials → Create access key → copy Access Key ID + Secret Access Key.
Endpoint: (leave blank — AWS S3 is the default)
Region: your bucket's region, e.g. us-east-1Backblaze B2
Cheapest at scale
Full walkthrough with pricing, key mapping, and lifecycle rules: back up Supabase to Backblaze B2.
- B2 console → Buckets → Create a Bucket (files private).
- Application Keys → Add a New Application Key, scoped to that bucket with read and write.
- Map the values:
keyID→ Access Key ID,applicationKey→ Secret Access Key. The endpoint is shown on the bucket page.
Endpoint: https://s3.<region>.backblazeb2.com
Region: the <region> part, e.g. us-west-004Field-by-field mapping
| Form field | R2 | AWS S3 | B2 |
|---|---|---|---|
| Endpoint | https://<account-id>.r2.cloudflarestorage.com | blank | https://s3.<region>.backblazeb2.com |
| Region | auto | bucket region | from endpoint |
| Access key ID | S3-client credentials | IAM access key | keyID |
| Secret access key | S3-client credentials | IAM secret | applicationKey |
Done? Head back to the quickstart to finish connecting your project, or straight to the console.