Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/prx/upload.prx.org
App to upload files
https://github.com/prx/upload.prx.org
Last synced: 16 days ago
JSON representation
App to upload files
- Host: GitHub
- URL: https://github.com/prx/upload.prx.org
- Owner: PRX
- License: agpl-3.0
- Created: 2014-10-27T18:58:52.000Z (about 10 years ago)
- Default Branch: main
- Last Pushed: 2024-12-03T15:14:32.000Z (20 days ago)
- Last Synced: 2024-12-03T16:25:12.521Z (19 days ago)
- Language: JavaScript
- Homepage:
- Size: 508 KB
- Stars: 0
- Watchers: 10
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# S3 Signing Service
This service is built on Amazon's API Gateway and AWS Lambda. It can generate signatures for both v2 and v4 AWS API requests (though v2 is deprecated by AWS and should not be used). It only creates signatures valid with the S3 API. Signatures are created based on the secret access key defined in `ACCESS_KEY`. Signed requests will have permissions allowed by the user or role associated with that secret access key.
For PRX's standard deployment of this service, the `ACCESS_KEY` is managed in the [CloudFormation template](https://github.com/PRX/Infrastructure/blob/main/spire/templates/apps/s3-signing.yml#L108), along with the [policy](https://github.com/PRX/Infrastructure/blob/main/spire/templates/apps/s3-signing.yml#L112) that grants it permissions. For that particular deployment, if requests need to be signed for additional S3 destinations, they should be added to that policy.
The signature is generated for the data passed into the service using the HTTP GET `to_sign` parameter.