Reputation: 81
Is it better to upload a file to an s3 bucket on the front end or backend?
I am creating a web app where there is an option for authenticated users to upload pictures. I am confused as to whether its better to do it on the front end or backend. I have already implemented it on the front end but I had to include my "accessKeyId" and "secretKey". I don't know if this compromises my security. I am using cloud functions for my back end. If anyone can help me with best practices in relation to this I will be very grateful.
Upvotes: 8
Views: 7386
Answers (2)
Reputation: 625
Frontend, say you have 1000 users, all upload via server, your server will have to do very heavy work. Just let the client do the upload
Upvotes: 0
Reputation: 365
You can generate pre-signed urls from your backend, then your frontend can upload files safely directly into S3 without exposing your credentials.
Take a look into the documentation here.
Also, this article points out some of the advantages of that strategy:
- You can still allow only authenticated users to get access to presigned urls
- You can set expiration time for the generated presigned urls
- You save bandwidth, memory processing and upload time by avoiding your files to pass through your backend function
Upvotes: 13
Related Questions
- Best choice of uploading files into S3 bucket
- Should I store upload files in frontend or backend?
- AWS S3: should I use POST or PUT requests to upload a file?
- Should my web app upload pictures to a cloud storage by frontend or backend?
- good practice to upload file to s3 using nodejs scalability and perfomance should be considered
- Best practice for uploading vidoes into s3 bucket
- Uploading Images to S3 from front end best practices
- which approach is better? Upload a file from client side or from server side?
- Upload to AWS S3 Best Practice
- Node js file upload to s3 or local