Node.js – Ppload file to S3 via cURL using presigned URL

amazon s3amazon-web-servicescurlnode.js

I'm getting a pre-signed URL to upload a file on S3 bucket.

this is the curl command:

curl -v -T ./dansero.jpg 'https://ss-files-dev.s3.ap-southeast-2.amazonaws.com/dansero.jpg\?AWSAccessKeyId\=AKIAIT6VM43PPNS43Y7Q\&Expires\=1531973770\&Signature\=hNvG5rnICkk58mMBLeMgHGDZ93c%3D'

That gives me the error:

<Error>
  <Code>AccessDenied</Code>
  <Message>Access Denied</Message>
</Error>

Here my node.js generation of the presigned URL

var AWS = require('aws-sdk');

const s3 = new AWS.S3({

  accessKeyId: 'aaa',
  secretAccessKey: 'bbb+oeyjn8zGANuDyCIY',
  region: 'ap-southeast-2'
});

const params = {
  Bucket: 'ss-files-dev',
  Key: 'dansero.jpg'  
};

});

s3.getSignedUrl('putObject', params, function(err, urlsign) {
  if (err) console.log(err);
  console.log(urlsign);
});

So where is my problem in the URL generation or the curl?
thanks

Best Answer

I can't see the sign request part. Make sure get signed URL for put object. It is working code from my script:

 s3.getSignedUrl('putObject', params, function(err, urlsign) {
            if (err) console.log(err);
            var output = {
                url: urlsign
            };
            cb(null, output);
        });

Try put the object into your bucket by simple put request like this:

                        var req = http.request({
                            hostname: 's3.amazonaws.com',
                            port: 80,
                            path:{YOURPRESIGNEDURL}.replace('https://s3.amazonaws.com', ''),
                            method: 'PUT',
                        }, function(res) {

Finally, make sure about the following things:

1-User policy and right IAM for your key. You should have the permission to put objects like this:

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Sid": "Stmt14546345345",
            "Effect": "Allow",
            "Action": [
                "s3:Put*"
            ],
            "Resource": [
                "arn:aws:s3:::myBucket/*"
            ]
        }
    ]
}

2- I think you should pass -X PUT in your curl request.

Related Solutions

How to send a header using a HTTP request through a cURL call

man curl:

   -H/--header <header>
          (HTTP)  Extra header to use when getting a web page. You may specify
          any number of extra headers. Note that if you should  add  a  custom
          header that has the same name as one of the internal ones curl would
          use, your externally set header will be used instead of the internal
          one.  This  allows  you  to make even trickier stuff than curl would
          normally do. You should not replace internally set  headers  without
          knowing  perfectly well what you're doing. Remove an internal header
          by giving a replacement without content on the  right  side  of  the
          colon, as in: -H "Host:".

          curl  will  make sure that each header you add/replace get sent with
          the proper end of line marker, you should thus not  add  that  as  a
          part  of the header content: do not add newlines or carriage returns
          they will only mess things up for you.

          See also the -A/--user-agent and -e/--referer options.

          This option can be used multiple times to add/replace/remove  multi-
          ple headers.

Example:

curl --header "X-MyHeader: 123" www.google.com

You can see the request that curl sent by adding the -v option.

Json – How to POST JSON data with cURL

You need to set your content-type to application/json. But -d (or --data) sends the Content-Type application/x-www-form-urlencoded, which is not accepted on Spring's side.

Looking at the curl man page, I think you can use -H (or --header):

-H "Content-Type: application/json"

Full example:

curl --header "Content-Type: application/json" \
  --request POST \
  --data '{"username":"xyz","password":"xyz"}' \
  http://localhost:3000/api/login

(-H is short for --header, -d for --data)

Note that -request POST is optional if you use -d, as the -d flag implies a POST request.

On Windows, things are slightly different. See the comment thread.

Best Answer

Related Solutions

How to send a header using a HTTP request through a cURL call

Example:

Json – How to POST JSON data with cURL

Related Topic