- Newest
- Most votes
- Most comments
Would be possible to front the S3 bucket with an API Gateway? Then you could associated authorization with custom Lambda authorizer satisfying your custom requirements.
Resources:
How about using EC2 or ECS to create a system that will run an S3 PutObject when a file is uploaded?
With this, I think it is possible to upload without worrying so much about payload restrictions.
User authentication can be easily configured using Amazon Cognito or other means.
Frankly, I feel this is the easiest way to do it.
https://docs.aws.amazon.com/sdk-for-javascript/v2/developer-guide/s3-example-photo-album.html
Application load balancers have a 100mb payload limit for HTTP targets. I feel the only way is to use a tcp target and terminate SSL inside the app instead of ALB.
Relevant content
- Accepted Answerasked 2 years ago
- asked 2 years ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 7 months ago
Thanks. Don't Lambda functions have a 6MB request payload limit? API gateways have a 10MB limits. Basically you can't upload anything large - https://docs.aws.amazon.com/apigateway/latest/developerguide/limits.html#http-api-quotas
You would have API GW ->S3 direct integration and would use authorizer to authorize the user, not to process the file. You are correct about APIGW limits of 10mb, but you can overcome that by having an API generating a presigned URL: https://aws.amazon.com/blogs/compute/patterns-for-building-an-api-to-upload-files-to-amazon-s3/