@mnightingale/strapi-provider-upload-aws-s3 v4.0.0
@mnightingale/strapi-provider-upload-aws-s3
Adds a few enhancements to the default @strapi/provider-upload-aws-s3 provider namely:
- Add a prefix to object paths
- Set a custom URL to resolve objects to (e.g. a CDN such as CloudFront)
Resources
Links
Installation
# using yarn
yarn add @mnightingale/strapi-provider-upload-aws-s3
# using npm
npm install @mnightingale/strapi-provider-upload-aws-s3 --save
Configurations
Your configuration is passed down to the provider. (e.g: new AWS.S3(config)
). You can see the complete list of options here
See the using a provider documentation for information on installing and using a provider. And see the environment variables for setting and using environment variables in your configs.
Provider Configuration
./config/plugins.js
module.exports = ({ env }) => ({
// ...
upload: {
config: {
provider: '@mnightingale/strapi-provider-upload-aws-s3',
providerOptions: {
accessKeyId: env('AWS_ACCESS_KEY_ID'),
secretAccessKey: env('AWS_ACCESS_SECRET'),
region: env('AWS_REGION'),
params: {
Bucket: env('AWS_BUCKET'),
},
prefix: env('AWS_PREFIX'),
url: env('AWS_URL'),
},
},
},
// ...
});
Security Middleware Configuration
Due to the default settings in the Strapi Security Middleware you will need to modify the contentSecurityPolicy
settings to properly see thumbnail previews in the Media Library. You should replace strapi::security
string with the object bellow instead as explained in the middleware configuration documentation.
./config/middlewares.js
module.exports = [
// ...
{
name: 'strapi::security',
config: {
contentSecurityPolicy: {
useDefaults: true,
directives: {
'connect-src': ["'self'", 'https:'],
'img-src': [
"'self'",
'data:',
'blob:',
'yourBucketName.s3.yourRegion.amazonaws.com',
],
'media-src': [
"'self'",
'data:',
'blob:',
'yourBucketName.s3.yourRegion.amazonaws.com',
],
upgradeInsecureRequests: null,
},
},
},
},
// ...
];
If you are using a custom URL you may want something more like
module.exports = ({ env }) => {
const cdn = env('AWS_URL') ? [new URL(env('AWS_URL')).hostname] : [];
return [
// ...
{
name: 'strapi::security',
config: {
contentSecurityPolicy: {
directives: {
'connect-src': ["'self'", 'https:'],
'img-src': ["'self'", 'data:', 'blob:', ...cdn],
'media-src': ["'self'", 'data:', 'blob:', ...cdn],
upgradeInsecureRequests: null,
},
},
},
},
// ...
];
};
Required AWS Policy Actions
These are the minimum amount of permissions needed for this provider to work.
"Action": [
"s3:PutObject",
"s3:GetObject",
"s3:ListBucket",
"s3:DeleteObject",
"s3:PutObjectAcl"
],
2 years ago