UNPKG

nano-s3

Version:

Upload a file to S3.

github.com/ungoldman/nano-s3

ungoldman/nano-s3

169 lines (136 loc) 4.4 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
const crypto = require('crypto') const FormData = require('form-data') const isBuffer = require('is-buffer') module.exports = nanoS3 /** * Upload a file to S3. * @param {object} options - upload options * @param {function} cb - callback */ function nanoS3 (options, cb) { options = options || {} cb = cb || function () {} const err = validate(options) if (err) return cb(err) const { // protocol for URL, default is https protocol = 'https', // AWS host to upload the files to, e.g. `s3.us-west-1.amazonaws.com` host, // your AWS bucket name bucket, // AWS access key ID with write access to the host and bucket accessKeyId, // AWS secret access key for signing secretAccessKey, // max file size, default 2MB maxFileSize = 2 * 1024 * 1024, // Name of uploaded file on S3 filename, // Path in bucket to upload to (optional) path, // MIME Type of file contentType, // File data (Buffer) data } = options const form = new FormData() // Full URL to the bucket. const target = `${protocol}://${host}/${bucket}` // Policy expiration. Currently set to five years from time of upload. const expiration = getExpiration() // Full path to file in bucket. const key = path ? [path.replace(/\/$/, ''), filename].join('/') : filename // Policy for uploading -- this is the restrictions we give to the upload form // and then sign so that we can detect if someone has tampered with it. // This is a mildly restrictive policy -- we cap the upload at 2MB unless overridden. // The date is five years in the future -- you will need to generate a new policy // and upload a new version of this file before this date and time! // Everything consumes the policy in a base64 format, but we need to make it // into a JSON string first. const policy = btoa(JSON.stringify({ expiration, conditions: [ { bucket: bucket }, { acl: 'public-read' }, ['content-length-range', 0, maxFileSize], ['starts-with', '$Content-Type', ''], ['starts-with', '$key', ''] ] })) // Signed policy. const signature = getSignature(secretAccessKey, policy) form.append('key', key) form.append('policy', policy) form.append('Content-Type', contentType) form.append('signature', signature) form.append('AWSAccessKeyId', accessKeyId) form.append('acl', 'public-read') form.append('file', data) form.submit(target, cb) } /** * base64 encode a string. * @param {string} text - string to encode * @return {string} - encoded string */ function btoa (text) { return Buffer.from(text, 'utf8').toString('base64') } /** * Generate an AWS V1 signature for our policy using our secret key. * @param {string} key - Your amazon secret key * @param {string} policy - A base-64 encoded version of your policy * @returns {buffer} An HMAC-SHA1 encoded version of your policy using your key */ function getSignature (key, policy) { return crypto.createHmac('sha1', key).update(policy).digest().toString('base64') } /** * Returns ISO date string for five years from now. * @return {string} ISO date string */ function getExpiration () { const d = new Date() d.setDate(d.getDate() + 365 * 5) return d.toISOString() } /** * Option validation for main export. * @param {object} options - nanoS3 options * @return {null|Error} - null if everything went fine, Error if something went wrong */ function validate (options) { const required = [ 'host', 'bucket', 'accessKeyId', 'secretAccessKey', 'filename', 'contentType', 'data' ] const missing = required.filter(key => options[key] == null) if (missing.length > 0) { return new Error(`Missing required option(s): ${missing.join(', ')}`) } const requiredTypes = { protocol: isString, host: isString, bucket: isString, accessKeyId: isString, secretAccessKey: isString, maxFileSize: isNumber, filename: isString, path: isString, contentType: isString, data: isBuffer } const badTypes = Object.keys(options).filter(key => !requiredTypes[key](options[key])) if (badTypes.length > 0) { return new Error(`Invalid option(s): ${badTypes.join(', ')}`) } return null function isString (v) { return typeof v === 'string' } function isNumber (v) { return typeof v === 'number' } }