pre-signed url 사용하기, 일정 기간 동안 객체 다운로드 url 생성

https://docs.aws.amazon.com/AmazonS3/latest/userguide/example_s3_Scenario_PresignedUrl_section.html

Create a presigned URL for Amazon S3 using an AWS SDK - Amazon Simple Storage Service

https://docs.aws.amazon.com/ko_kr/AmazonS3/latest/userguide/S3OutpostsShareObjectPresignedURL.html

미리 서명된 URL을 사용하여 객체 공유 - Amazon Simple Storage Service

 

두 번째 페이지의 JAVA 코드 참고

 

1. 버킷 생성

@Configuration
class AmazonWebServiceConfiguration {
	private val accessKey: String? = ""
    private val secretKey: String? = ""
    private val region: String? = ""
    
    @Bean
    fun amazonS3Client(): AmazonS3Client {
        val awsCredentials = BasicAWSCredentials(accessKey, secretKey)
        return AmazonS3ClientBuilder.standard().withRegion(region).withCredentials(AWSStaticCredentialsProvider(awsCredentials)).build() as AmazonS3Client
    }

    @Bean
    fun amazonS3(): AmazonS3 {
        val awsCredentials = BasicAWSCredentials(accessKey, secretKey)
        return AmazonS3Client.builder().withRegion(region).withCredentials(AWSStaticCredentialsProvider(awsCredentials)).build()
    }

}

 

2. Service 코드 짜기

@Service
class PresignedService {

    @Autowired
    lateinit var amazonS3: AmazonS3Client

    private var bucket: String = ""
    
    fun getFileDownloadUrl(fileName: String): String {
        val expiration = Date()
        var expTimeMillis = Instant.now().toEpochMilli()
        expTimeMillis += 1000 * 60 * 30 //30분
        expiration.time = expTimeMillis
        val generatePresignedUrlRequest = GeneratePresignedUrlRequest(bucket, fileName).withMethod(HttpMethod.GET).withExpiration(
            expiration
        )
        generatePresignedUrlRequest.addRequestParameter(Headers.S3_CANNED_ACL, CannedAccessControlList.PublicRead.toString())
        val url: URL = amazonS3.generatePresignedUrl(generatePresignedUrlRequest)
        return url.toString()
    }
    
}

 

s3 버킷에 올라간 이미지를 일정 시간 동안 접근가능한 URL을 생성할 수 있었다

일정시간이 지난 후에는 접근이 불가능 하다

접근 가능한 시간이 지난 URL을 접속하면 위와 같이 뜬다!