Django s3: 403 访问被拒绝,并生成 URL
[英]Django s3: 403 Access Denied, and generating URLs
问题描述
我希望允许 Django 应用程序的注册用户上传和查看文件到 s3 存储桶。
在这个问题的第一批评论者和stackoverflow 上的这个答案的帮助下,我能够使用生成的预签名 URL 来完成这项工作,而无需允许公共访问或我的 S3 存储桶上的任何策略。
任何人都可以帮助我的政策和设置应该是允许自定义域而不是对 static 文件使用预签名 URLS 吗?
非常感谢。 -- R
设置.py
AWS_ACCESS_KEY_ID = env('AWS_ACCESS_KEY_ID')
AWS_SECRET_ACCESS_KEY = env('AWS_SECRET_ACCESS_KEY')
AWS_STORAGE_BUCKET_NAME = env('AWS_STORAGE_BUCKET_NAME')
AWS_S3_OBJECT_PARAMETERS = {'CacheControl': 'max-age=86400',}
AWS_STATIC_LOCATION = 'static'
'STATICFILES_STORAGE = f'{ROOT_NAME}.storage_backends.StaticStorage'
AWS_PUBLIC_MEDIA_LOCATION = 'media/public'
DEFAULT_FILE_STORAGE = f'{ROOT_NAME}.storage_backends.PublicMediaStorage'
AWS_PRIVATE_MEDIA_LOCATION = 'media/private'
PRIVATE_FILE_STORAGE = f'{ROOT_NAME}.storage_backends.PrivateMediaStorage'
存储后端.py
from django.conf import settings
from storages.backends.s3boto3 import S3Boto3Storage
class StaticStorage(S3Boto3Storage):
location = settings.AWS_STATIC_LOCATION
class PublicMediaStorage(S3Boto3Storage):
location = settings.AWS_PUBLIC_MEDIA_LOCATION
file_overwrite = False
class PrivateMediaStorage(S3Boto3Storage):
location = settings.AWS_PRIVATE_MEDIA_LOCATION
default_acl = 'private'
file_overwrite = False
custom_domain = False
视图.py
class DocumentCreateView(CreateView):
model = Document
fields = ['upload', ]
success_url = reverse_lazy('home')
def get_context_data(self, **kwargs):
context = super().get_context_data(**kwargs)
documents = Document.objects.all()
context['documents'] = documents
return context
模型.py
from django.db import models
from django.conf import settings
from django.contrib.auth.models import User
from mysite.storage_backends import PrivateMediaStorage
class Document(models.Model):
uploaded_at = models.DateTimeField(auto_now_add=True)
upload = models.FileField()
class PrivateDocument(models.Model):
uploaded_at = models.DateTimeField(auto_now_add=True)
upload = models.FileField(storage=PrivateMediaStorage())
user = models.ForeignKey(User, related_name='documents', on_delete=models.CASCADE,)
1 个解决方案
解决方案1
1 已采纳 2022-10-07 15:19:54
通过这些设置和本教程的帮助,我使一切都按需要工作。 我希望这对某人有用。
AWS_STATIC_LOCATION = 'static'
STATICFILES_DIRS = [ os.path.join(BASE_DIR, '/static'), os.path.join(BASE_DIR, 'static'),]
STATICFILES_STORAGE = f'{ROOT_NAME}.storage_backends.StaticStorage'
AWS_PUBLIC_MEDIA_LOCATION = 'media/public'
DEFAULT_FILE_STORAGE = f'{ROOT_NAME}.storage_backends.PublicMediaStorage'
AWS_PRIVATE_MEDIA_LOCATION = 'media/private'
PRIVATE_FILE_STORAGE = f'{ROOT_NAME}.storage_backends.PrivateMediaStorage'
AWS_DEFAULT_ACL = None #'public-read'
#AWS_QUERYSTRING_AUTH = False
MEDIA_URL = "/media/"
AWS Glue:拒绝访问(服务:Amazon S3;状态代码:403;错误代码:AccessDenied;
[英]AWS Glue: Access Denied (Service: Amazon S3; Status Code: 403; Error Code: AccessDenied;
修复 Cloudfront 403 Access Denied 请求错误时使用 Lambda@Edge 漂亮的 URL
[英]Fix Cloudfront 403 Access Denied request errors when using Lambda@Edge for pretty URLs
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.
相关问题
AWS S3 生成签名的 Urls ''AccessDenied''
AWS Glue:拒绝访问(服务:Amazon S3;状态代码:403;错误代码:AccessDenied;
使用云端在 s3 上访问被拒绝错误
EKS Pod S3 访问被拒绝
AWS Lambda S3 访问被拒绝
拒绝访问云端分发 s3
AWS S3 Java SDK - 拒绝访问
修复 Cloudfront 403 Access Denied 请求错误时使用 Lambda@Edge 漂亮的 URL
使用亚马逊 s3 客户端列出 object 时访问被拒绝
拒绝访问 CloudFormation 跨账户 s3 副本
相关标签