Download S3 directly in JavaScript

Question

Download S3 directly in JavaScript

I am trying to execute simple and load directly on Amazon S3 JavaScript. How and where can I hide my access and secret keys? I do not see anything in my documentation or on this site that responds to this.

I use their recommended way to set this in HTML. I also use Backbone and Bower.

<script src="https://sdk.amazonaws.com/js/aws-sdk-2.0.25.min.js"></script>
<script type="text/javascript">
  // See the Configuring section to configure credentials in the SDK
  AWS.config.credentials = ...;

  // Configure your region
  AWS.config.region = 'us-west-2';
</script>
<input type="file" id="file-chooser" /> 
<button id="upload-button">Upload to S3</button>
<div id="results"></div>

<script type="text/javascript">
  var bucket = new AWS.S3({params: {Bucket: 'myBucket'}});

  var fileChooser = document.getElementById('file-chooser');
  var button = document.getElementById('upload-button');
  var results = document.getElementById('results');
  button.addEventListener('click', function() {
    var file = fileChooser.files[0];
    if (file) {
      results.innerHTML = '';

      var params = {Key: file.name, ContentType: file.type, Body: file};
      bucket.putObject(params, function (err, data) {
        results.innerHTML = err ? 'ERROR!' : 'UPLOADED.';
      });
    } else {
      results.innerHTML = 'Nothing to upload.';
    }
  }, false);
</script>

+1

javascript amazon-s3 amazon-web-services secret-key

Lauren f Nov 10 '14 at 20:20

source share

2 answers

chrisboustead · Answer 1 · 2015-02-14T03:37:09+0000

You can use STS to generate short-term temporary credentials for each download and pass them to the JS SDK so you never have to disclose your long-term API keys.

AWS PHP SDK ( : "aws/aws-sdk-php":"~2.4"), , access_key_id secret_access_key ENV.

:

<?php 
include 'vendor/autoload.php';

use Aws\Sts\StsClient;

/** Create Temporary Credentials */
$stsclient = StsClient::factory();
$temp_creds = $stsclient->getSessionToken(900)->get('Credentials'); // 15 minute expiration

?>
<script>
AWS.config.credentials = {
    accessKeyId : '<?php echo $temp_creds['AccessKeyId']; ?>',
    secretAccessKey : '<?php echo $temp_creds['SecretAccessKey']; ?>',
    sessionToken : '<?php echo $temp_creds['SessionToken']; ?>'
};
AWS.config.region = 'your-region';
</script>

, access_key_id secret_access_key. STS . , , IAM .

: http://docs.aws.amazon.com/aws-sdk-php/latest/class-Aws.Sts.StsClient.html#_getSessionToken

peter-b · Answer 2 · 2014-11-10T20:29:32+0000

javascript, . , , , :

, script , cookie - PHP , .
, script , , S3. -, , .

Download S3 directly in JavaScript

More articles: