简体   繁体   English

直接拒绝Amazon S3 Access

[英]Direct to Amazon S3 Access Denied

I'm using http://pjambet.github.io/blog/direct-upload-to-s3/ as a tutorial. 我正在使用http://pjambet.github.io/blog/direct-upload-to-s3/作为教程。 I've already enabled CORS (see CORS file). 我已经启用了CORS(参见CORS文件)。 I get the JSON response, which is fine (in the add) function of the file-upload query. 我得到了JSON响应,这是文件上传查询的好(在添加中)功能。 The failure happens after getting the signature and policy. 获得签名和策略后发生故障。 When attempting to actually upload the file, I get the Access Denied error from Amazon. 在尝试实际上传文件时,我从Amazon获得了Access Denied错误。 The file does not upload. 该文件无法上传。 Am I missing something? 我错过了什么吗?


<form class="file_upload" action="https://<% $AWSBUCKET %>.s3.amazonaws.com" method="post" enctype="multipart/form-data">
<input type="hidden" name="key" />
<input type="hidden" name="policy" />
<input type="hidden" name="signature" />
<input type="hidden" name="AWSAccessKeyId" value="<% $AWSACCESS %>" />
<input type="hidden" name="acl" value="public-read" />
<input type="hidden" name="success_action_status" value="201" />

<div class="fileupload-content">
  <div class="fileupload-progress">
<div class="file-upload">
  <span class="btn btn-success fileinput-button">
    <i class="glyphicon glyphicon-plus"></i>
    <span>Select files...</span>
    <input type="file" name="file" multiple>
  <div class="progress progress-striped active">
    <div class="bar">

Javascript: 使用Javascript:

$(function() {
  $('.file_upload').each(function() {
    var form = $(this)
      url: form.attr('action'),
      type: 'POST',
      autoUpload: true,
      dataType: 'xml', // This is really important as s3 gives us back the url of the file in a XML document
      add: function (event, data) {
          url: "s3signed.html",
          type: 'GET',
          dataType: 'json',
          data: {filename: data.files[0].name, max_file_size : <% $MAX_FILE_SIZE %>}, // send the file name to the server so it can generate the key param
          async: false,
          success: function(data) {
            // Now that we have our data, we update the form so it contains all
            // the needed data to sign the request
      send: function(e, data) {
      progress: function(e, data){
        // This is what makes everything really cool, thanks to that callback
        // you can now update the progress bar based on the upload progress
        var percent = Math.round((e.loaded / e.total) * 100)
        $('.bar').css('width', percent + '%')
      fail: function(e, data) {
      success: function(data) {
        // Here we get the file url on s3 in an xml doc
        var url = $(data).find('Location').text()

        $('#real_file_url').val(url) // Update the real input in the other form
      done: function (event, data) {
        $('.progress').fadeOut(300, function() {
          $('.bar').css('width', 0)

Perl: Perl的:

use Digest::HMAC_SHA1 qw(hmac_sha1 hmac_sha1_hex);
use MIME::Base64;

use Data::Uniqid qw ( uniqid );
my $uniqid = uniqid;

my $key = "upload/$uniqid/$filename";
my $policy = s3PolicyDocument($AWSBUCKET, $max_file_size, $key);
my $signature = s3Signature($AWSSECRET, $policy);

my %response = (
  policy => $policy,
  signature => $signature,
  key => $key,
  success_action_status => 201

use JSON;
print JSON::encode_json(\%response);

sub s3PolicyDocument {
  my ($AWSBUCKET, $max_file_size, $key) = @_;
  use DateTime;
  my $dt = DateTime->now;
  $dt->add(minutes => 30);

  my $policy = '{"expiration": "'.$dt.'",
    "conditions": [ 
      {"bucket": "'.$AWSBUCKET.'"}, 
      {"acl": "public-read"},
      ["starts-with", "$key", ""],
      ["starts-with", "$Content-Type", ""],
      ["starts-with", "$name", ""],
      ["starts-with", "$Filename", ""],
      ["content-length-range", 0, '.$max_file_size.'],
      {"success_action_status": "201"},

  use Digest::HMAC_SHA1 qw(hmac_sha1 hmac_sha1_hex);
  use MIME::Base64;

  $policy = encode_base64($policy);
  $policy =~ s/\n//g;
  return $policy;

sub s3Signature {
  my($AWSSECRET, $policy) = @_;
  my $signature = encode_base64(hmac_sha1($policy, $AWSSECRET));
  $signature =~ s/\n//g;
  return $signature;


<CORSConfiguration xmlns="http://s3.amazonaws.com/doc/2006-03-01/">

Amazon Response: 亚马逊响应:

<Message>Access Denied</Message>

According to the documentation for cross-site upload you should use the forceIframeTransport option. 根据跨站点上传的文档,您应该使用forceIframeTransport选项。

    forceIframeTransport : true,

Please follow following steps Go to s3 The file which you are trying to access(Make it public accessible) simply right click->make public 请按照以下步骤转到s3您尝试访问的文件(公开访问)只需右键单击 - >公开

This should solve your problem. 这应该可以解决您的问题。

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

粤ICP备18138465号  © 2020-2024 STACKOOM.COM