Question:
I have been through many iterations of this problem so far, searched out many different examples, and have been all through the documentation.
I am trying to combine Plupload (http://www.plupload.com/) with the AWS S3 direct post method (http://aws.amazon.com/articles/1434). However, I believe there’s something wrong with the way I am constructing my policy and signature for transmission. When I submit the form, I don’t get a response from the server, but rather my connection to the server is reset.
I have attempted using the python code in the example:
|
1 2 3 4 5 6 7 8 |
import base64 import hmac, sha policy = base64.b64encode(policy_document) signature = base64.b64encode( hmac.new(aws_secret_key, policy, sha).digest()) |
I have also tried to use the more up-to-date hashlib library in python. Whatever method I use to construct my policy and signature, I always get different values than those generated here:
http://s3.amazonaws.com/doc/s3-example-code/post/post_sample.html
I have read through this question:
How do I make Plupload upload directly to Amazon S3?
But I found the examples provided to be overly complicated and wasn’t able to accurately implement them.
My most recent attempts have been to use portions of the boto library:
http://boto.cloudhackers.com/ref/s3.html#module-boto.s3.connection
But using the S3Commection.build_post_form_args method has not worked for me either.
If anyone could provide a proper example of how to create the post form using python, I would very much appreciate it. Even some simple insights on why the connection is always reset would be nice.
Some caveats:
I would like to use hashlib if possible.
I want to get an XML response from Amazon (presumably “success_action_status = ‘201’” does this)
I need to be able to upload largish type files, max size ~2GB.
One final note, when I run this in Chrome, it provides upload progress, and the upload usually fails around 37%.
Answer:
Nathan’s answer helped get me started. I’ve included two solutions that are currently working for me.
The first solution uses plain Python. The second uses boto.
I tried to get boto working first, but kept getting errors. So I went back to the Amazon ruby documentation and got S3 to accept files using python without boto. (Browser Uploads to S3 using HTML POST)
After understanding what was going on, I was able to fix my errors and use boto, which is a simpler solution.
I’m including solution 1 because it shows explicitly how to setup the policy document and signature using python.
My goal was to create the html upload page as a dynamic page, along with the “success” page the user sees after a successful upload. Solution 1 shows the dynamic creation of the form upload page, while solution 2 shows the creation of both the upload form page and the success page.
Solution 1:
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 |
import base64 import hmac, hashlib ###### EDIT ONLY THE FOLLOWING ITEMS ###### DEBUG = 1 AWS_SECRET_KEY = "MySecretKey" AWS_ACCESS_KEY = "MyAccessKey" HTML_NAME = "S3PostForm.html" EXPIRE_DATE = "2015-01-01T00:00:00Z" # Jan 1, 2015 gmt FILE_TO_UPLOAD = "${filename}" BUCKET = "media.mysite.com" KEY = "" ACL = "public-read" # or "private" SUCCESS = "http://media.mysite.com/success.html" CONTENT_TYPE = "" CONTENT_LENGTH = 1024**3 # One gigabyte HTTP_OR_HTTPS = "http" # Or "https" for better security PAGE_TITLE = "My Html Upload to S3 Form" ACTION = "%s://%s.s3.amazonaws.com/" % (HTTP_OR_HTTPS, BUCKET) ###### DON'T EDIT FROM HERE ON DOWN ###### policy_document_data = { "expire": EXPIRE_DATE, "bucket_name": BUCKET, "key_name": KEY, "acl_name": ACL, "success_redirect": SUCCESS, "content_name": CONTENT_TYPE, "content_length": CONTENT_LENGTH, } policy_document = """ {"expiration": "%(expire)s", "conditions": [ {"bucket": "%(bucket_name)s"}, ["starts-with", "$key", "%(key_name)s"], {"acl": "%(acl_name)s"}, {"success_action_redirect": "%(success_redirect)s"}, ["starts-with", "$Content-Type", "%(content_name)s"], ["content-length-range", 0, %(content_length)d] ] } """ % policy_document_data policy = base64.b64encode(policy_document) signature = base64.b64encode(hmac.new(AWS_SECRET_KEY, policy, hashlib.sha1).digest()) html_page_data = { "page_title": PAGE_TITLE, "action_name": ACTION, "filename": FILE_TO_UPLOAD, "access_name": AWS_ACCESS_KEY, "acl_name": ACL, "redirect_name": SUCCESS, "policy_name": policy, "sig_name": signature, "content_name": CONTENT_TYPE, } html_page = """ Browse to locate the file to upload: """ % html_page_data with open(HTML_NAME, "wb") as f: f.write(html_page) ###### Dump output if testing ###### if DEBUG: if 1: # Set true if not using the LEO editor class G: def es(self, data):print(data) g = G() items = [ "", "", "policy_document: %s" % policy_document, "ploicy: %s" % policy, "signature: %s" % signature, "", "", ] for item in items: g.es(item) |
Solution 2:
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 |
from boto.s3 import connection ###### EDIT ONLY THE FOLLOWING ITEMS ###### DEBUG = 1 AWS_SECRET_KEY = "MySecretKey" AWS_ACCESS_KEY = "MyAccessKey" HTML_NAME = "S3PostForm.html" SUCCESS_NAME = "success.html" EXPIRES = 60*60*24*356 # seconds = 1 year BUCKET = "media.mysite.com" KEY = "${filename}" # will match file entered by user ACL = "public-read" # or "private" SUCCESS = "http://media.mysite.com/success.html" CONTENT_TYPE = "" # seems to work this way CONTENT_LENGTH = 1024**3 # One gigabyte HTTP_OR_HTTPS = "http" # Or https for better security PAGE_TITLE = "My Html Upload to S3 Form" ###### DON'T EDIT FROM HERE ON DOWN ###### conn = connection.S3Connection(AWS_ACCESS_KEY,AWS_SECRET_KEY) args = conn.build_post_form_args( BUCKET, KEY, expires_in=EXPIRES, acl=ACL, success_action_redirect=SUCCESS, max_content_length=CONTENT_LENGTH, http_method=HTTP_OR_HTTPS, fields=None, conditions=None, storage_class='STANDARD', server_side_encryption=None, ) form_fields = "" line = ' \n' for item in args['fields']: new_line = line % (item["name"], item["value"]) form_fields += new_line html_page_data = { "page_title": PAGE_TITLE, "action": args["action"], "input_fields": form_fields, } html_page = """ %(input_fields)s Browse to locate the file to upload: """ % html_page_data with open(HTML_NAME, "wb") as f: f.write(html_page) success_page = """ Congratulations! You have successfully uploaded the file. """ with open(SUCCESS_NAME, "wb") as f: f.write(success_page) ###### Dump output if testing ###### if DEBUG: if 1: # Set true if not using the LEO editor class G: def es(self, data):print(data) g = G() g.es("conn = %s" % conn) for key in args.keys(): if key is not "fields": g.es("%s: %s" % (key, args[key])) continue for item in args['fields']: g.es(item) |