stackoom
  简体   繁体   中英

Upload file to S3 on EC2 instance - permission denied

 原文  2017-01-16 00:29:44       java/ amazon-web-services/ amazon-s3/ amazon-ec2

Question

So in my app, users will be able to upload their photos to S3 storage, then I will persist the returned Url to database.

The problem that I am having is that, when I deploy the app to my Elastic Beanstalk environment, I am not able to store photos to S3 storage anymore due to this error which I found in the catalina.out log:

java.io.IOException: Permission denied
    at java.io.UnixFileSystem.createFileExclusively(Native Method)
    at java.io.File.createNewFile(File.java:1012)
    at com.common.util.file.FileUtil.convert(FileUtil.java:17)

How can I set permission so that I can fix this bug?

[EDIT] When I run the app on the localhost, then I will be able to upload the file into the S3 bucket. I used this sample code in this link as implementation template for uploading the file.

Here is the code that I use to convert a multipart file to a file:

public File convert(MultipartFile file) throws IOException {
    File convFile = new File(file.getOriginalFilename());
    convFile.createNewFile();                               // Cause IOException
    FileOutputStream fos = new FileOutputStream(convFile);
    fos.write(file.getBytes());
    fos.close();
    return convFile;
}

2 answers

solution1
 2  2017-01-16 15:57:10

In your application, don't append the aws credentials. Create an IAM role which should have permission for AWS S3. When launching application using Elastic Beanstalk, attach this IAM role to an EC2 Instance.

Your application uses IAM role to authenticate AWS S3 to upload the images. It is a best practices to attach IAM role with specific permission for launching EC2 instance through AutoScaling group or Elastic Beanstalk or directly from EC2 dashboard.

solution2
 0  2017-01-16 06:39:11

The link to the sample code you provided uses ProfileCredentialsProvider , which vends AWSCredentials from the profile configuration file for the default profile ( read more ).

You'll need to either (1) copy the config file from your local machine to the EC2 instance or (2) use another method to supply AWS credentials to the SDK. See Working with AWS Credentials , for example.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to move an image file from amazon s3 to amazon ec2 and run the instance using java org.apache.hadoop.security.AccessControlException: Permission denied when trying to access S3 bucket through s3n URI using Hadoop Java APIs on EC2 How to upload an image directly to S3, without letting java webapp running in Ec2 to store the Multipart image? Amazon S3 does not return a response or throw error when running on EC2 instance Retrieve files from S3 and put them in to EC2 Linux instance using Java Ant Tasks for Amazon EC2/S3? Writing from EC2 to S3 Copy files from ec2 to s3 Amazon S3 file upload not working - Public Read Permission send int array from ec2 servlet to s3 without creating local file
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM