Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

S3 Cross-Origin Resource Sharing Not working

Tags:

cors

ruby-on-rails

amazon-s3

I'm trying to use blur.js to blur user uploaded images, and I'm storing the images on Amazon S3. I've set up what I think to be the correct CORS configuration, but the images can't be blurred and I get this error in the browser: 

  Unable to get image data from canvas because the canvas has been tainted by cross-origin data.

Here's my CORS configuration: 

  <?xml version="1.0" encoding="UTF-8"?>
  <CORSConfiguration xmlns="http://s3.amazonaws.com/doc/2006-03-01/">
  <CORSRule>
    <AllowedOrigin>*</AllowedOrigin>
    <AllowedMethod>GET</AllowedMethod>
    <AllowedMethod>POST</AllowedMethod>
    <AllowedHeader>*</AllowedHeader>
  </CORSRule>
  </CORSConfiguration>

Any idea what's wrong?

like image 822
Alex Smith Avatar asked Feb 23 '13 21:02

Alex Smith

2 Answers

I've just done it. Basically, you can follow the steps to edit your S3 bucket permissions and make ir work. If you need any further help, leave a comment bellow.

1) Sign in to the AWS Management Console and open the Amazon S3 console at https://console.aws.amazon.com/s3/

2) In the Buckets list, open the bucket whose properties you want to view and click "add CORS configuration"

amazon-screen-shot

3) Write the rules you are willing to add in between the tags <CORSConfiguration>

<CORSConfiguration>
  <CORSRule>
    <AllowedOrigin>*</AllowedOrigin>
    <AllowedMethod>GET</AllowedMethod>
    <MaxAgeSeconds>3000</MaxAgeSeconds>
    <AllowedHeader>*</AllowedHeader>
  </CORSRule>
</CORSConfiguration>

You can learn more about rules at: http://docs.aws.amazon.com/AmazonS3/latest/dev/cors.html

4) Specify crossorigin='anonymous' on the image you'll use in your canvas

like image 91
Flavio Wuensche Avatar answered Oct 27 '22 23:10

Flavio Wuensche

I have a suspicion that you're not using the correct S3 endpoint address format that's required for CORS support.

i.e. S3 buckets support both of these formats:

  1. http://bucket.s3.amazonaws.com/object
  2. http://s3.amazonaws.com/bucket/object

But only the first URL will work with CORS according to the documentation:

with CORS, you can configure your bucket to explicitly enable cross-origin requests from website.s3-website-us-east-1.amazonaws.com.

like image 33
Ryan Weir Avatar answered Oct 28 '22 00:10

Ryan Weir
Sign in to Comment

Related questions

No route matches although there is one in rake routes
Ruby gem for text comparison
Best practice, adding a version to each gem in the gemfile?
Rails multiple belongs_to for same class
Warning using twitter-bootstrap-rails generators on Windows
Is there Sublime Text intellisense for HTML when editing Ruby files?
Rails routing - redirection with block AND status code
Rails delete not working inside twitter bootstrap dropdown (2.1.0)
Elasticsearch: Highlighting hits from within attachment
Major factors for memory leaks in Rails
Can't make calls to heroku CLI from within a Rake task without the Heroku gem in the Gemfile
Composite entity scaffolding in Ruby on Rails
Rails DB Migration Error: relation already exists
setting headers in active resource request
Can't Git Push Heroku Master Due To libv8
config.js doesn't work for CKEditor
sql error cannot start a transaction within a transaction while testing with cucumber
Validation on a has_many relationship in rails 3.2
Routing nested resources and matching controller
Jobs with Resque gives "Don't know how to build task 'jobs:work'" on Heroku

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!