Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Public access for Active Storage in Rails 6.1

Tags:

ruby-on-rails

amazon-s3

rails-activestorage

I use Active Storage on my Rails site with AWS. After upgrading to 6.1, I'd like to configure public access per the guide so my images have permanent URLs.

I've determined that I need to keep the existing service as-is so previously uploaded images continue to work. I've created a new service and configured the app to use it like this.

Previous images continue to work like this, but new image uploads result in Aws::S3::Errors::AccessDenied. Note that the credentials used are exactly the same as in the previous, working, non-public service. The guide mentions that the bucket needs to have the proper permissions, but not what exactly needs to be set.

Looking in AWS, the section "Block public access (bucket settings)" is all set to "Off". In "Access control list (ACL)", "Bucket owner (your AWS account)" has "List, Write" for both "Objects" and "Bucket ACL". No other permissions are listed. I've tried changing "Everyone (public access)" to include "List" for "Objects" and "Read" for "Bucket ACL" - doesn't seem to solve the problem.

How do I get public URLs working with Active Storage?

like image 652
Jason Barnabe Avatar asked Dec 16 '20 00:12

Jason Barnabe

People also ask

How do I add active storage in rails?

After creating a new application (or upgrading your application to Rails 5.2), run bin/rails active_storage:install to generate a migration that creates these tables. Use bin/rails db:migrate to run the migration. active_storage_attachments is a polymorphic join table that stores your model's class name.

What is ActiveStorage?

Active storage is an inbuilt gem in Rails that developers widely use to handle file uploads. Combined with the encrypted credentials feature in the latest releases of Rails, active storage is a safe and easy method to upload, serve, and analyze files onto cloud-based storage services as well as local storage.

1 Answers

The permission you need when switching from private access to public is PutObjectAcl. Adding this in the IAM Management Console makes it work.

In addition, rather than creating a new service, you can mark all images in the existing service as public-readable via the UI or via a script.

like image 199
Jason Barnabe Avatar answered Oct 23 '22 13:10

Jason Barnabe
Sign in to Comment

Related questions

Loading multiple images from S3 on a Rails 4 app: slow loading page
undefined method instance_double for RSpec::Mocks::ExampleMethods
How to cancel file being uploaded to Amazon S3?
Sidekiq: NoMethodError: undefined method `perform'
Concurrency using Sidekiq is causing some problems
Google/Facebook OAuth2 in Rails Front-end app with rails-api as webservice
How to group together multiple models under one name in Single Table Inheritance classes
Rails / Papertrail: Changeset with association changes
Rails app: require bootstrap vs require bootstrap-sprockets
Rails, how to test 400 response with missing parameter
Rspec: How to create mock association
Why is Rails giving me "Can't verify CSRF token authenticity" error?
Rails 4 Polymorphic associations and concerns
No status code in Rails log after Warden auth failure
How do I change my IP address using Ruby/Tor?
Rails, Devise, and Facebook Oauth: request.env["omniauth.auth"] is nil
GKE kubernetes delayed_job pod logs
Display specific category based on link pressed | Ruby on Rails
Rails: How to manage associations between two tables syncing data?
DataTables of Bootstrap4 with WebPack is not integrated in Rails 6?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!