Accessing a us-west-2 S3 bucket using Amazon Cognito and an IAM policy -

-

amazon cognito available in 2 zones: us-east-1 , eu-west-1
have bucket in us-west-2

here iam policy have unauthenticated guests in cognito identity pool:

{     "version": "2012-10-17",     "statement": [         {             "effect": "allow",             "action": [                 "s3:putobject",                 "s3:putobjectacl"             ],             "resource": [                 "arn:aws:s3:::vocal.test14/*"             ]         }     ] }

during uploading, i'm not able access s3 bucket
stated here, should possible:

what rule need add policy give cognito ability communicate bucket that's not in us-east?

someone asked more information, here is:

i've created new bucket called vocal.west2
i've given bucket following cors properties:

<?xml version="1.0" encoding="utf-8"?> <corsconfiguration xmlns="http://s3.amazonaws.com/doc/2006-03-01/">     <corsrule>         <allowedorigin>https://domain.com</allowedorigin>         <allowedorigin>https://*.domain.com</allowedorigin>         <allowedmethod>get</allowedmethod>         <allowedheader>authorization</allowedheader>         <maxageseconds>3000</maxageseconds>     </corsrule>     <corsrule>         <allowedorigin>https://domain.com</allowedorigin>         <allowedorigin>https://*.domain.com</allowedorigin>         <allowedmethod>post</allowedmethod>         <allowedmethod>put</allowedmethod>         <allowedheader>*</allowedheader>         <exposeheader>etag</exposeheader>         <maxageseconds>3000</maxageseconds>     </corsrule> </corsconfiguration>

i've updated iam role following:

{     "version": "2012-10-17",     "statement": [         {             "effect": "allow",             "action": [                 "s3:putobject",                 "s3:putobjectacl"             ],             "resource": [                 "arn:aws:s3:::vocal.west2/*"             ]         }     ] }

i'm attempting upload file using aws javascript sdk. code pretty long, here cognito credential call:

aws.config.region = 'us-east-1'; aws.config.credentials = new aws.cognitoidentitycredentials({     identitypoolid: 'us-east-1:rest-of-id-here' });

note region set 1us-east-1`, that's because it's referencing cognito zone, not s3 bucket.

note actual js code doing upload works fine when it's us-east-1 bucket.

resolved:

i'm using aws.s3.managedupload lib.
in order specify s3 zone, aws.s3 object needs created (case matters here; doesn't work aws.s3)

here aws.s3 object instantiation:

var s3 = (new aws.s3({     region: 'us-west-2' }))

here aws.s3.managedupload instantiation:

var upload = (new aws.s3.managedupload({     params: {         bucket: 'vocal.test14',         key: 'filename',         body: file,         contenttype: 'image/jpeg',         acl: 'public-read'     },     service: s3 }));

and here logic upload/report progress:

upload.on('httpuploadprogress', function(event) {     console.log(         'progress:',         event.loaded,         '/',         event.total     ); }); upload.send(function(err, data) {     if (data) {         console.log('uploaded');         console.log(data);     } else {         console.log(arguments);     } });

thanks @mark-mercurio help


Comments

Post a Comment

Popular posts from this blog

c# - Better 64-bit byte array hash -

-
i need hash algorithm produces 64-bit hash code ( long ) fewer collisions string.gethashcode() , fast (no expensive calls cryptographic functions). here's implementation of fnv still shows 3% of collisions after testing 2 million random strings. need number way lower. void main() { const string chars = "abcdefghijklmnopqrstuvwxyzabcdefghijklmnopqrstuvwxyz!#@$%^&*()_+}{\":?><,./;'[]0123456789\\"; const int n = 2000000; var random = new random(); var hashes = new hashset<long>(); int collisions = 0; for(int = 0; < n; i++) { var len = random.next(chars.length); var str = new char[len]; (int j = 0; j < len; j++) { str[j] = chars[random.next(chars.length)]; } var s = new string(str); if(!hashes.add(get64bithash( s ))) collisions++; } console.writeline("collision percentage after " + n + " random strings: " + ((doubl
Read more

webrtc - Which ICE candidate am I using and why? -

-
[questions in bold below] i have setup kurento media server 5.1.3 in datacenter behind firewall running os ubuntu 14.04. has 2 network cards: 222.222.222.222 (eth0 - private ip) 111.111.111.111 (eth1 - public ip) attached below sdp (setremotedescription) when browser connected kurento media server type: answer, sdp: v=0 o=- 5487318114793304426 0 in ip4 0.0.0.0 s=kurento media server c=in ip4 0.0.0.0 t=0 0 a=group:bundle audio video m=audio 59068 rtp/savpf 111 0 c=in ip4 111.111.111.111 a=rtpmap:111 opus/48000/2 a=rtpmap:0 pcmu/8000 a=sendrecv a=rtcp:59068 in ip4 111.111.111.111 a=rtcp-mux a=ssrc:669011897 cname:user39019747@host-6e83e4c2 a=extmap:3 http://www.webrtc.org/experiments/rtp-hdrext/abs-send-time a=mid:audio b=as:20 a=ice-ufrag:ymdk a=ice-pwd:lylifk5ueqzpwm91ddj37e a=fingerprint:sha-256 ff:0f:81:8c:41:4e:b4:b6:c6:d8:36:f3:d6:5f:09:fd:5f:af:13:b3:9d:fc:12:66:ac:f3:56:d6:5b:0a:73:5d a=candidate:1 1 udp 2013266431 111.111.111.111 55239 typ host a=candidate:2 1 udp
Read more

php - Zend Framework / Skeleton-Application / Composer install issue -

-
i trying create zend framework application using skeleton in netbeans. when run composer install, following error message: "c:\php\php.exe" "c:\composer\composer.phar" "--ansi" "--no-interaction" "update" "--dev" using deprecated option "dev". dev packages installed default now. loading composer repositories package information updating dependencies (including require-dev) requirements not resolved installable set of packages. problem 1 - package requires php >=5.5 php version (5.4.42) not satisfy requirement. problem 2 - installation request zendframework/zendframework 2.5.1 -> satisfiable zendframework/zendframework[2.5.1]. - zendframework/zendframework 2.5.1 requires php >=5.5 -> php version (5.4.42) not satisfy requirement. done. apparently, zend framework only needs php 5.3+ contradicts above. need use php 5.4. my composer.json following: { "name": "
Read more