AWS S3 Go Sdk - 添加 ACL 時預簽名 url 無法上傳文件
[英]AWS S3 Go Sdk - Presigned url unable upload file when add ACL
問題描述
我有一個 go 服務,它生成一個預簽名的 url 來上傳文件:
sess, err := session.NewSession(&aws.Config{
Region: aws.String(os.Getenv(AwsRegionEnv))},
)
if err != nil {
return nil, err
}
svc := s3.New(sess)
req, _ := svc.PutObjectRequest(&s3.PutObjectInput{
Bucket: aws.String(os.Getenv(BucketNameEnv)),
Key: aws.String(getFileName(file, customer)),
})
minutesTimeout, err := strconv.Atoi(os.Getenv(TimeoutURL))
if err != nil {
return nil, err
}
str, err := req.Presign(time.Duration(minutesTimeout) * time.Minute)
if err != nil {
return nil, err
}
所以,我可以使用 curl 使用這個預簽名的 url 上傳一個文件:
curl -vT test.pdf '<<URL PRESIGNED>>'
但是,當我添加一個 ACL 時,這不起作用,修改是:
req, _ := svc.PutObjectRequest(&s3.PutObjectInput{
Bucket: aws.String(os.Getenv(BucketNameEnv)),
Key: aws.String(getFileName(file, customer)),
ACL: aws.String(s3.ObjectCannedACLAuthenticatedRead),
})
當我嘗試使用帶 ACL 的預簽名 url 上傳文件時,出現以下錯誤:
<?xml version="1.0" encoding="UTF-8"?>
<Error>
<Code>SignatureDoesNotMatch</Code>
<Message>The request signature we calculated does not match the signature you provided. Check your key and signing method.</Message>
<AWSAccessKeyId>ASIAS...</AWSAccessKeyId>
<StringToSign>AWS4-HMAC-SHA256
20210316T135400Z
20210316/us-east-2/s3/aws4_request
d7ab7d377b719636610b11793e3e68e104a3f41fb9f9f5608138a8c2b19ceaf3</StringToSign>
<SignatureProvided>bd59fbb080..</SignatureProvided>
<StringToSignBytes>41 57 53...</StringToSignBytes>
<CanonicalRequest>PUT
/35527810/sampleVpacheco3.pdf
X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=...%2Fus-east-2%2Fs3%2Faws4_request&X-Amz-Date=20210316T135400Z&X-Amz-Expires=300&X-Amz-Security-Token=IQoJb3JpZ2luX2VjEN7%2F%2F...&X-Amz-SignedHeaders=host%3Bx-amz-acl
host:adl-digital-dev-document-manager.s3.us-east-2.amazonaws.com
x-amz-acl:
host;x-amz-acl
UNSIGNED-PAYLOAD</CanonicalRequest>
<CanonicalRequestBytes>50 55 54...</CanonicalRequestBytes>
<RequestId>0V6FWNNGK2QCDA1V</RequestId>
<HostId>rE4rkv...</HostId>
</Error>
知道如何添加 ACL 並成功上傳文件嗎?
完整的 URL 是:
https://document-manager.s3.us-east-2.amazonaws.com/35527810/sampleVpacheco5.pdf?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=ASIASN3IRSVR%2F20210316%2Fus-east-2%2Fs3%2Faws4_request&X-Amz-Date=20210316T143240Z&X-Amz-Expires=300&X-Amz-Security-Token=IQoJb3JpZ2luX2VjEN7%2F%2F%2F%2F%2F%2F%2F%2F%2F%2FwEaCXVzLWVhc3QtMSJGMEQCIGW4j1R7H3wIxUAN8FytKbDTRne4pJGJ9I4ofpXeh%2FcaAiBFTdRNVug9WODzLdCoMcFRVzFZ%2FtGeaweeteSSTY6yMSqtAwgXEAIaDDE2NzE4NjEwOTc5NSIMh1JvraENxW8E5aBqKooDLx39b6Lx1%2Fw6AtGMSzlYRILNIXdB2Ouviq0pUlfPVCSFlZnPzo%2F%2B6%2B8ZcIpHM8E%2FDjEn1NF1lvcz9QKsuXJI94XuVCSRGiBBRvpIdm%2Ff001q3C%2FmZW2I1aMsfV518LTtEQigJ%2Fv80TPVSv7ZozoR9Zae4W3C3efjm2sJ%2BkVkI%2FBm7z6Vd97Q%2BbpVztf8Lp4GImDp1G72wtOP7wq9wSDYzFEzUja91r7g97py1Wzin6%2BXUNX68yAH%2BRePqyW6by4Lht8086B7YQcj6h77kxwE89C1NMYhKPiNl1y%2Ff4NukwWxW%2FTefqSW3Qr26eDfTV%2FVyR7%2FeNCf7OOtpkGZEmOnFbd%2FyY6wVOARcTdixQkPKKu2GAkz%2B8xuNY10uTGoh2vul3gUWBZF4Yl13R7kIq%2FPBb1UVl%2BatCwN%2BDBMj22cM4Pn%2BOJPyqxCjcfyIXwRsiYDTmmtiSIWrTvSEQaWf1Dc95lQVToA2ZsAxB8LO88%2FEz0t3FUpPw0ncgbLbHedcRYqvV62RDRQK%2FI9zjCz78KCBjqnAfzDcfP25%2BIr6ia4elbxSDOWIIv%2FjZOLlRDedHdqLKCDjYbgXoWrTQTt%2BZCRlV7UtJxo%2ByVeJvsjmb3BdI4IjI8wd8XjkV5qMejJbFcmFIQV7df0cdGY7U6nOO8gxGK9fj7Fb1Y0DtZaCxaZU8D0d2iTfUn8kl%2FT0GwSPDZqz1I6oJuG58KLR%2BVKRhuZrhTq8%2Fm98cLg7diuwt%2Bt1RwL%2BK9oonqHqXcE&X-Amz-SignedHeaders=host%3Bx-amz-acl&X-Amz-Signature=27d1fae2f60187dce85b175980c4e91334fe2a0f192d220244aa4a27e798ec9f
我厭倦了這個:
- 添加 header x-amc-acl: -H "x-amc-acl: authenticated-read"
- 添加 header 主機:-H“主機:127.0.0.1”
- 修改URL,修改
host%3Bx-amz-aclbyhost;x-amc-acl
謝謝!
1 個解決方案
解決方案1
0 2022-11-26 19:34:06
在查詢參數中添加 acl 屬性后它對我有用
req, _ := svc.GetObjectRequest(&s3.GetObjectInput{
Bucket: aws.String(bucket),
Key: aws.String(key),
})
q := req.HTTPRequest.URL.Query()
q.Add("x-amz-acl", "public-read")
q.Add("Content-Type", contentType)
req.HTTPRequest.URL.RawQuery = q.Encode()
presigned, err := req.Presign(5 * time.Minute)
if err != nil {
fmt.Printf("Error presigning URL: %v\n", err)
}
fmt.Println(presigned)
如何使用預簽名的 URL 以及 s3 aws-sdk-ruby v3 中的標簽上傳 object
[英]How to upload an object using presigned URL along with tags in s3 aws-sdk-ruby v3
AWS S3 預簽名 url 上傳返回 200 但文件不在使用 NodeJS 和節點獲取的存儲桶中
[英]AWS S3 presigned url upload returns 200 but the file is not in the bucket using NodeJS & node-fetch
無法使用節點預簽名 url 從 React 將圖像文件上傳到 s3
[英]Unable to upload image file to s3 from React with Node presigned url
在 aws s3 存儲桶中創建分段上傳到預簽名 url 的最佳方法是什么?
[英]What is the best way to create multipart upload to a presigned url in aws s3 bucket?
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.
相關問題
無法在 s3 預簽名 url 上上傳文件
如何使用預簽名的 URL 以及 s3 aws-sdk-ruby v3 中的標簽上傳 object
AWS S3 預簽名 url 上傳返回 200 但文件不在使用 NodeJS 和節點獲取的存儲桶中
無法使用節點預簽名 url 從 React 將圖像文件上傳到 s3
S3 AWS - 在 R 中生成預簽名的 url
帶有星號的 AWS S3 預簽名 url 問題
AWS Java SDK 2.0 S3 預簽名 URL 公共 object 訪問
在 aws s3 存儲桶中創建分段上傳到預簽名 url 的最佳方法是什么?
使用預簽名 URL 將文件放入 S3
使用預簽名 url 的 S3 golang 分段上傳
相關標簽