4.0.0 • Published 2 years ago

@mnightingale/strapi-provider-upload-aws-s3 v4.0.0

Weekly downloads
-
License
SEE LICENSE IN LI...
Repository
github
Last release
2 years ago

@mnightingale/strapi-provider-upload-aws-s3

Adds a few enhancements to the default @strapi/provider-upload-aws-s3 provider namely:

  • Add a prefix to object paths
  • Set a custom URL to resolve objects to (e.g. a CDN such as CloudFront)

Resources

Links

Installation

# using yarn
yarn add @mnightingale/strapi-provider-upload-aws-s3

# using npm
npm install @mnightingale/strapi-provider-upload-aws-s3 --save

Configurations

Your configuration is passed down to the provider. (e.g: new AWS.S3(config)). You can see the complete list of options here

See the using a provider documentation for information on installing and using a provider. And see the environment variables for setting and using environment variables in your configs.

Provider Configuration

./config/plugins.js

module.exports = ({ env }) => ({
  // ...
  upload: {
    config: {
      provider: '@mnightingale/strapi-provider-upload-aws-s3',
      providerOptions: {
        accessKeyId: env('AWS_ACCESS_KEY_ID'),
        secretAccessKey: env('AWS_ACCESS_SECRET'),
        region: env('AWS_REGION'),
        params: {
          Bucket: env('AWS_BUCKET'),
        },
        prefix: env('AWS_PREFIX'),
        url: env('AWS_URL'),
      },
    },
  },
  // ...
});

Security Middleware Configuration

Due to the default settings in the Strapi Security Middleware you will need to modify the contentSecurityPolicy settings to properly see thumbnail previews in the Media Library. You should replace strapi::security string with the object bellow instead as explained in the middleware configuration documentation.

./config/middlewares.js

module.exports = [
  // ...
  {
    name: 'strapi::security',
    config: {
      contentSecurityPolicy: {
        useDefaults: true,
        directives: {
          'connect-src': ["'self'", 'https:'],
          'img-src': [
            "'self'",
            'data:',
            'blob:',
            'yourBucketName.s3.yourRegion.amazonaws.com',
          ],
          'media-src': [
            "'self'",
            'data:',
            'blob:',
            'yourBucketName.s3.yourRegion.amazonaws.com',
          ],
          upgradeInsecureRequests: null,
        },
      },
    },
  },
  // ...
];

If you are using a custom URL you may want something more like

module.exports = ({ env }) => {
  const cdn = env('AWS_URL') ? [new URL(env('AWS_URL')).hostname] : [];

  return [
    // ...
    {
      name: 'strapi::security',
      config: {
        contentSecurityPolicy: {
          directives: {
            'connect-src': ["'self'", 'https:'],
            'img-src': ["'self'", 'data:', 'blob:', ...cdn],
            'media-src': ["'self'", 'data:', 'blob:', ...cdn],
            upgradeInsecureRequests: null,
          },
        },
      },
    },
    // ...
  ];
};

Required AWS Policy Actions

These are the minimum amount of permissions needed for this provider to work.

"Action": [
  "s3:PutObject",
  "s3:GetObject",
  "s3:ListBucket",
  "s3:DeleteObject",
  "s3:PutObjectAcl"
],
uploadawss3strapi
aws-sdk
@infinitebrahmanuniverse/nolb-_mn@everything-registry/sub-chunk-611
4.0.0

2 years ago