CORS errors on Chrome when downloading S3 signed content
0
I have a React codebase which tries to download a file using a signed url from S3. The code is working well on Firefox, Safari and Chrome(Incognito mode), but it fails on Chrome (regular mode) and Microsoft Edge. This is the code
const myUrl = "https://s3.us-east-2.amazonaws.com/..."
const response = await fetch(myUrl);
const blob = await response.blob();
This is the issue
This is my S3 bucket policy
[
{
"AllowedHeaders": [
"*"
],
"AllowedMethods": [
"GET",
"HEAD",
"PUT",
"POST",
"DELETE"
],
"AllowedOrigins": [
"*",
"https://my-platform.com"
],
"ExposeHeaders": [
"x-amz-server-side-encryption",
"x-amz-request-id",
"x-amz-id-2",
"ETag"
],
"MaxAgeSeconds": 3000
}
]
How can I solve this issue?
1回答
- 新しい順
- 投票が多い順
- コメントが多い順
0
The issue you are experiencing is because Chrome, as a security measure, performs an HTTP call with the OPTIONS method before making a GET or POST request. With this call, it checks that CORS is correct, and if it is, it then proceeds to make the GET or POST call.
Authorize your bucket to allow calls with the OPTIONS method, and it should start working in Chrome.
回答済み 6ヶ月前
関連するコンテンツ
AWS公式更新しました 1年前
Hello, when I tried to add POST option on "AllowedMethods" list, S3 doesn't allow me to save the CORS policy