首页 > Golang > Go问答

AWS S3 Go SDK - 无法使用预签名 URL 在添加 ACL 时上传文件

来源：stackoverflow

时间：2024-02-29 11:00:26 159浏览收藏

IT行业相对于一般传统行业，发展更新速度更快，一旦停止了学习，很快就会被行业所淘汰。所以我们需要踏踏实实的不断学习，精进自己的技术，尤其是初学者。今天golang学习网给大家整理了《AWS S3 Go SDK - 无法使用预签名 URL 在添加 ACL 时上传文件》，聊聊，我们一起来看看吧！

问题内容

我有一个 go 服务，可以生成预签名的 url 来上传文件：

sess, err := session.newsession(&aws.config{
    region: aws.string(os.getenv(awsregionenv))},
)
if err != nil {
    return nil, err
}

svc := s3.new(sess)

req, _ := svc.putobjectrequest(&s3.putobjectinput{
    bucket: aws.string(os.getenv(bucketnameenv)),
    key:    aws.string(getfilename(file, customer)),
})

minutestimeout, err := strconv.atoi(os.getenv(timeouturl))
if err != nil {
    return nil, err
}

str, err := req.presign(time.duration(minutestimeout) * time.minute)
if err != nil {
    return nil, err
}

因此，我可以使用curl 使用此预签名网址上传文件：

curl -vt test.pdf '<>'

但是，当我添加acl时，这不起作用，修改为：

req, _ := svc.putobjectrequest(&s3.putobjectinput{
    bucket: aws.string(os.getenv(bucketnameenv)),
    key:    aws.string(getfilename(file, customer)),
    acl:    aws.string(s3.objectcannedaclauthenticatedread),
})

当我尝试使用带有 acl 的预签名 url 上传文件时，出现此错误：



    signaturedoesnotmatch
   the request signature we calculated does not match the signature you provided. check your key and signing method.
   asias...
   aws4-hmac-sha256
20210316t135400z
20210316/us-east-2/s3/aws4_request
d7ab7d377b719636610b11793e3e68e104a3f41fb9f9f5608138a8c2b19ceaf3
    bd59fbb080..
    41 57 53...
    put
/35527810/samplevpacheco3.pdf
x-amz-algorithm=aws4-hmac-sha256&x-amz-credential=...%2fus-east-2%2fs3%2faws4_request&x-amz-date=20210316t135400z&x-amz-expires=300&x-amz-security-token=iqojb3jpz2lux2vjen7%2f%2f...&x-amz-signedheaders=host%3bx-amz-acl
host:adl-digital-dev-document-manager.s3.us-east-2.amazonaws.com
x-amz-acl:

host;x-amz-acl
unsigned-payload
    50 55 54...
    0v6fwnngk2qcda1v
    re4rkv...

知道如何添加 acl 并成功上传文件吗？

完整网址为：

https://document-manager.s3.us-east-2.amazonaws.com/35527810/sampleVpacheco5.pdf?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=ASIASN3IRSVR%2F20210316%2Fus-east-2%2Fs3%2Faws4_request&X-Amz-Date=20210316T143240Z&X-Amz-Expires=300&X-Amz-Security-Token=IQoJb3JpZ2luX2VjEN7%2F%2F%2F%2F%2F%2F%2F%2F%2F%2FwEaCXVzLWVhc3QtMSJGMEQCIGW4j1R7H3wIxUAN8FytKbDTRne4pJGJ9I4ofpXeh%2FcaAiBFTdRNVug9WODzLdCoMcFRVzFZ%2FtGeaweeteSSTY6yMSqtAwgXEAIaDDE2NzE4NjEwOTc5NSIMh1JvraENxW8E5aBqKooDLx39b6Lx1%2Fw6AtGMSzlYRILNIXdB2Ouviq0pUlfPVCSFlZnPzo%2F%2B6%2B8ZcIpHM8E%2FDjEn1NF1lvcz9QKsuXJI94XuVCSRGiBBRvpIdm%2Ff001q3C%2FmZW2I1aMsfV518LTtEQigJ%2Fv80TPVSv7ZozoR9Zae4W3C3efjm2sJ%2BkVkI%2FBm7z6Vd97Q%2BbpVztf8Lp4GImDp1G72wtOP7wq9wSDYzFEzUja91r7g97py1Wzin6%2BXUNX68yAH%2BRePqyW6by4Lht8086B7YQcj6h77kxwE89C1NMYhKPiNl1y%2Ff4NukwWxW%2FTefqSW3Qr26eDfTV%2FVyR7%2FeNCf7OOtpkGZEmOnFbd%2FyY6wVOARcTdixQkPKKu2GAkz%2B8xuNY10uTGoh2vul3gUWBZF4Yl13R7kIq%2FPBb1UVl%2BatCwN%2BDBMj22cM4Pn%2BOJPyqxCjcfyIXwRsiYDTmmtiSIWrTvSEQaWf1Dc95lQVToA2ZsAxB8LO88%2FEz0t3FUpPw0ncgbLbHedcRYqvV62RDRQK%2FI9zjCz78KCBjqnAfzDcfP25%2BIr6ia4elbxSDOWIIv%2FjZOLlRDedHdqLKCDjYbgXoWrTQTt%2BZCRlV7UtJxo%2ByVeJvsjmb3BdI4IjI8wd8XjkV5qMejJbFcmFIQV7df0cdGY7U6nOO8gxGK9fj7Fb1Y0DtZaCxaZU8D0d2iTfUn8kl%2FT0GwSPDZqz1I6oJuG58KLR%2BVKRhuZrhTq8%2Fm98cLg7diuwt%2Bt1RwL%2BK9oonqHqXcE&X-Amz-SignedHeaders=host%3Bx-amz-acl&X-Amz-Signature=27d1fae2f60187dce85b175980c4e91334fe2a0f192d220244aa4a27e798ec9f

我厌倦了这个：

添加标头 x-amc-acl: -h "x-amc-acl: 已验证读取"
添加标头主机：-h“主机：127.0.0.1”
修改网址，将 host%3bx-amz-acl 改为 host;x-amc-acl

谢谢！

解决方案

在查询参数中添加 acl 属性后，它对我有用

req, _ := svc.GetObjectRequest(&s3.GetObjectInput{
  Bucket: aws.String(bucket),
  Key:    aws.String(key),
})
q := req.HTTPRequest.URL.Query()
q.Add("x-amz-acl", "public-read")
q.Add("Content-Type", contentType)
req.HTTPRequest.URL.RawQuery = q.Encode()

presigned, err := req.Presign(5 * time.Minute)
if err != nil {
  fmt.Printf("Error presigning URL: %v\n", err)
}
fmt.Println(presigned)

本篇关于《AWS S3 Go SDK - 无法使用预签名 URL 在添加 ACL 时上传文件》的介绍就到此结束啦，但是学无止境，想要了解学习更多关于Golang的相关知识，请关注golang学习网公众号！

声明：本文转载于：stackoverflow 如有侵犯，请联系study_golang@163.com删除