javascript - Nodejs - 使用 Brightcove 生成的签名 URL 将文件上传到 AWS W3 返回 403 Forbidden
问题描述
前两个步骤工作正常。请求 S3 URLS 后,我得到这样的响应
{
"bucket": "ingestion-upload-production",
"object_key": "57838016001/4752143002001/ed5a5ba0-1d97-4f95-a8ec-cbb786b04a37/greatblueheron.mp4",
"access_key_id": "ACCESS_KEY_APPEARS_HERE",
"secret_access_key": "SECRET_ACCESS_KEY_APPEARS_HERE",
"session_token": "FQoDYXdzEKf//////////wEaDKR0wDgquq/qvkZgbyKOA7URC/9io6cmRBDkhbvxoHIKkPZlK/9YNvdWcESPkm75/2PvU6FV1Mc+/XENPzY8KgvP86MBJNxYLPdkuP1phgHs2Yh2p1KIDcQSCZJ3i6i9m4S14ewjWIugYLYDQi6CG+3fiFwfzbKT5jes1kh24m9BQQIuvVOiM1GLTldyDzlrdDopJkdYd4IEU7FU36CUT7RL/aeMwR2Usk56nwqyqkkQHPmvqmGyiLdrD3OrIbUU+6+ZP4usS9dbV3eAqOWDIk3HCN+Kuc9f/eUWhY21ftNDXWgasqQqXwPRs3T1i/hoiIKODbzr8F",
"signed_url": "https://ingestion-upload-production.s3.amazonaws.com/57838016001/4752143002001/ed5a5ba0-1d97-4f95-a8ec-cbb786b04a37/greatblueheron.mp4?AWSAccessKeyId=ACCESS_KEY_HERE&Expires=1475673952&Signature=%2Fsr5cV%2FVOfGCBkodol9xQIKlbu4%3D",
"api_request_url": "https://ingestion-upload-production.s3.amazonaws.com/57838016001/4752143002001/ed5a5ba0-1d97-4f95-a8ec-cbb786b04a37/greatblueheron.mp4"
}
文章只提到了使用 curl 命令将文件放入 S3 的方法,该命令在终端中执行时有效
curl -X PUT "SIGNED_URL_GOES_HERE" --upload-file FILE_PATH_FOR_LOCAL_ASSET_GOES_HERE
我试图在nodejs中实现这个,但没有成功
- 使用 node-fetch & PUT 方法
fetch(signedUrl, {
method: 'PUT',
data: {
'value': fs.createReadStream(file_path),
'options': {
'filename': file_name,
'contentType': file_type
}
},
**OR**
data : fs.createReadStream(file_path)
**OR**
data : fs.readFileSync(file_path),
headers:{
"Content-Type":file_type
}
})
这将返回 403 Forbidden
- 所以我用 Postman 测试了它
PUT 签名网址
正文二进制(不是表单数据)
我得到了回应:
<?xml version="1.0" encoding="UTF-8"?>
<Error>
<Code>SignatureDoesNotMatch</Code>
<Message>The request signature we calculated does not match the signature you provided. Check your key and signing method.</Message>
<AWSAccessKeyId>AWSAccessKeyId</AWSAccessKeyId>
<StringToSign>PUT
video/quicktime
1594858748
/<BUCKET>/<KEY></StringToSign>
<SignatureProvided><SIGNATURE>=</SignatureProvided>
<StringToSignBytes>50 55 54 0a 0a 76 69 64 65 6f 2f 71 75 69 63 6b 74 69 6d 65 0a 31 35 39 34 38 35 38 37 34 38 0a 2f 69 6e 67 65 73 74 69 6f 6e 2d 75 70 6c 6f 61 64 2d 70 72 6f 64 75 63 74 69 6f 6e 2f 33 38 34 35 62 2d 39 63 39 64 2d 61 65 31 63 32 39 30 65 30 63 36 64 2f 74 65 73 74 2d 6d 65 64 65 6f 2e 6d 6f 76</StringToSignBytes>
<RequestId></RequestId>
<HostId></HostId>
</Error>
我尝试了其他方法,例如:
- 使用'child_process'和execSync直接从节点js执行curl命令
const command = `curl -X PUT ${signedUrl} --upload-file ${filepath}`;
execSync(command).toString();
我得到 --upload-file: command not found
- 使用适用于 js 的 AWS 开发工具包。我找不到将文件放入预签名 url 的方法,并且在使用通过 Brightcove 请求 S3 URL 时生成的 access_key_id 和 secret_access_key 进行测试时,我得到:
InvalidAccessKeyId: The AWS Access Key Id you provided does not exist in our records
const AWS = require('aws-sdk');
const config = {
accessKeyId: ACCESS_KEY_ID,
secretAccessKey: SECRET_ACCESS_KEY
};
AWS.config.update(config);
const S3Bucket = new AWS.S3({
params: { Bucket: response.BUCKET },
});
var params = {
Key: KEY,
Body: fs.createReadStream(file_name)
};
S3Bucket.upload(params, function (err, data) {
if (err) {
console.log('ERROR MSG: ', err);
} else {
console.log('Successfully uploaded data');
}
});
甚至
AWS.config.update({
accessKeyId: access_key_id,
secretAccessKey: secret_access_key
});
let params = {
Bucket: bucket,
Key: key,
Body: fs.createReadStream(filename)
};
try {
let uploadPromise = await new AWS.S3().putObject(params).promise();
console.log("Successfully uploaded data to bucket", uploadPromise);
} catch (e) {
console.log("Error uploading data: ", e);
}
- 使用 @smcloudstore/aws-s3 ;相同的反应
我究竟做错了什么?我测试了此处提供的所有解决方案 stackoverflow 都没有成功,请您分享一个工作代码以使用 nodejs 和预签名的 url 将文件放入 AWS S3
先感谢您
解决方案
(PHP 示例)
你可以这样做
const response = {
"bucket": "ingestion-upload-production",
"object_key": "57838016001/4752143002001/ed5a5ba0-1d97-4f95-a8ec-cbb786b04a37/greatblueheron.mp4",
"access_key_id": "ACCESS_KEY_APPEARS_HERE",
"secret_access_key": "SECRET_ACCESS_KEY_APPEARS_HERE",
"session_token": "FQoDYXdzEKf//////////wEaDKR0wDgquq/qvkZgbyKOA7URC/9io6cmRBDkhbvxoHIKkPZlK/9YNvdWcESPkm75/2PvU6FV1Mc+/XENPzY8KgvP86MBJNxYLPdkuP1phgHs2Yh2p1KIDcQSCZJ3i6i9m4S14ewjWIugYLYDQi6CG+3fiFwfzbKT5jes1kh24m9BQQIuvVOiM1GLTldyDzlrdDopJkdYd4IEU7FU36CUT7RL/aeMwR2Usk56nwqyqkkQHPmvqmGyiLdrD3OrIbUU+6+ZP4usS9dbV3eAqOWDIk3HCN+Kuc9f/eUWhY21ftNDXWgasqQqXwPRs3T1i/hoiIKODbzr8F",
"signed_url": "https://ingestion-upload-production.s3.amazonaws.com/57838016001/4752143002001/ed5a5ba0-1d97-4f95-a8ec-cbb786b04a37/greatblueheron.mp4?AWSAccessKeyId=ACCESS_KEY_HERE&Expires=1475673952&Signature=%2Fsr5cV%2FVOfGCBkodol9xQIKlbu4%3D",
"api_request_url": "https://ingestion-upload-production.s3.amazonaws.com/57838016001/4752143002001/ed5a5ba0-1d97-4f95-a8ec-cbb786b04a37/greatblueheron.mp4"
}
const s3 = new S3({
region: 'us-east-1',
credentials: {
accessKeyId: response.access_key_id,
secretAccessKey: response.secret_access_key,
sessionToken: response.session_token
}
})
s3.upload({
Bucket: response.bucket,
Key: response.object_key,
Body: fs.createReadStream(file_name)
})
推荐阅读
- python - 在 Python 的 for 循环中使用 next 是否安全?
- python - 具有 keras=2.0.5 和 tensorflow-gpu=1.2.1 的 CUDA_ERROR_INVALID DEVICE
- python - Python在文件更改时锁定文件
- html - 两个 div:顶部 - 具有恒定高度和 div 内容的标题
- git - 无法将未更改的文件推送到 GITLAB
- excel - 将多列表转换为具有重复模式的单列
- android - MapBox userTrackingMode 在 Android 上无法正常工作
- javascript - 在 Node 中返回带有 fast-csv 的数组
- excel - VBA Excel - 填写网络表单无法点击提交按钮
- beagleboneblack - Beagleboard Black 上的 SPI