我正在尝试使用DropzoneJS对S3进行无服务器上传。我遇到了 AWS 预签名 URL 的问题,特别是它指示 x-amz-acl
标头未签名。
Javascript:
var dz = new Dropzone("div#upload", {
url: "tbd",
paramName: "file", // The name that will be used to transfer the file
maxFilesize: 2, // MB
accept: this.getUploadUrl,
method: 'put',
sending: function(file, xhr) {
var _send = xhr.send;
xhr.setRequestHeader('x-amz-acl', 'public-read');
xhr.send = function() {
_send.call(xhr, file);
}
},
});
dz.on('processing', function(file) {
// change url before sending
this.options.url = file.uploadUrl;
});
function getUploadUrl(file, cb) {
var params = {
fileName: file.name,
fileType: file.type,
};
$.getJSON('signput.php', params).done(function(data) {
var decodedUri = decodeURIComponent(data['signedRequest']);
if (!data.signedRequest) {
return cb('Failed to receive an upload url');
}
console.log(decodedUri);
file.uploadUrl = decodedUri;
cb();
}).fail(function() {
return cb('Failed to receive an upload url');
});
}
PHP(调用以获取预签名网址(:
$fileName = $_GET['fileName'];
$s3Client = new AwsS3S3Client([
'version' => '2006-03-01',
'region' => 'us-west-2',
'credentials' => [
'key' => '__MY__KEY__',
'secret' => '__MY__SECRET__',
],]);
$cmd = $s3Client->getCommand('PutObject', [
'Bucket' => '__MY__BUCKET__',
'Key' => $fileName
]);
$request = $s3Client->createPresignedRequest($cmd, '+20 minutes');
// Get the actual presigned-url
$url = (string) $request->getUri();
$urlArray['signedRequest'] = $url;
$urlArray = json_encode($urlArray);
echo $urlArray;
我还尝试在 Dropzone 标头和 S3 getCommand 中将x-amz-acl
设置为公共读取,但它不起作用。
我得到的错误:
<?xml version="1.0" encoding="UTF-8"?>
<Error><Code>AccessDenied</Code>
<Message>There were headers present in the request which were not signed</Message>
<HeadersNotSigned>x-amz-acl</HeadersNotSigned>
</Error>
有一个问题 - 我需要将ACL => 'public-read'
从 JS 代码移动到签名请求中。
拖放区发送功能变成这样:
sending: function(file, xhr) {
var _send = xhr.send;
xhr.send = function() {
_send.call(xhr, file);
}
}
PHP 签名请求变成:
$cmd = $s3Client->getCommand('PutObject', [
'Bucket' => '__MY__BUCKET__',
'Key' => $fileName,
'ACL' => 'public-read'
]);
感谢迈克尔为我指明了正确的方向。
供参考的最终代码...
Javascript:
var dz = new Dropzone("div#upload", {
url: "tbd",
paramName: "file", // The name that will be used to transfer the file
maxFilesize: 2, // MB
accept: this.getUploadUrl,
method: 'put',
sending: function(file, xhr) {
var _send = xhr.send;
xhr.send = function() {
_send.call(xhr, file);
}
},
});
dz.on('processing', function(file) {
// change url before sending
this.options.url = file.uploadUrl;
});
function getUploadUrl(file, cb) {
var params = {
fileName: file.name,
fileType: file.type,
};
$.getJSON('signput.php', params).done(function(data) {
var decodedUri = decodeURIComponent(data['signedRequest']);
if (!data.signedRequest) {
return cb('Failed to receive an upload url');
}
file.uploadUrl = decodedUri;
cb();
}).fail(function() {
return cb('Failed to receive an upload url');
});
}
.PHP:
$fileName = $_GET['fileName'];
$s3Client = new AwsS3S3Client([
'version' => '2006-03-01',
'region' => 'us-west-2',
'credentials' => [
'key' => '__MY_KEY__',
'secret' => '__MY_SECRET__,
],]);
$cmd = $s3Client->getCommand('PutObject', [
'Bucket' => '__MY_BUCKET__',
'Key' => $fileName,
'ACL' => 'public-read'
]);
$request = $s3Client->createPresignedRequest($cmd, '+20 minutes');
// Get the actual presigned-url
$url = (string) $request->getUri();
$urlArray['signedRequest'] = $url;
$urlArray = json_encode($urlArray);
echo $urlArray;