Reputation: 6422
AWS Pre-signed PUT URL Requires &s to be Replaced with &?
I have a service that generates S3 pre-signed PUT URLS for uploading.
While testing I noticed that Postman would have no issue uploading to the pre-signed URL as long as I clicked on the URL in "Pretty" mode. This would put the URL in its address bar.
But when I copied the raw output, it would 403 every time.
Does AWS S3 require & signs to be replaced with &?
EDIT: Updating to show how pre-signed URL is fetched with Node/Express/AWS API
router.get('/', function (req, res) {
var s3 = new AWS.S3();
var params = {Bucket: 'some-s3-bucket', Key: 'test/'};
s3.getSignedUrl('putObject', params, function (err, url) {
res.json({url: url});
});
});
Upvotes: 1
Views: 1458
Answers (1)
Reputation: 179194
No, you shouldn't html-encode & → & in the query string separators in an S3 signed URL.
It sounds like your service is generating the urls and either it, or something in the chain, is incorrectly html-encoding them, and by luck, postman or the browser is cleaning them back up again when you view them in "pretty" mode.
If you're deliberately doing this, then don't... but if you're unclear where the spurious encoding is coming from, switching to a text based tool for talking to your service -- like curl or wget -- is likely to get you closer to understanding what's going on than a browser-based tool.
Upvotes: 1
Related Questions
- Access denied on S3 PUT request with pre-signed URL
- Error in posting file to S3 via a pre-signed URL
- AWS S3 - 400 Bad Request when PUTting file via pre-signed URL
- aws presigned url request signature mismatch while upload
- Possible to send a PUT request to aws s3 presign url?
- SignatureDoesNotMatch on S3 PUT Request to Presigned URL
- 400 Bad Request from PUT to S3 using pre-signed URL
- S3 PUT doesn't work with pre-signed URL in javascript
- Presigned URL dont work for PUT but it works for GET S3
- S3 rejects browser PUT's with presigned URLs - it thinks they're GET's