Minimal Storage Abstraction #25
Comments
|
I don't think this will solve any problems. the idea is that we read from the same storage as the function runs. and those functions can be given the correct policies to read the storage (usually, the session key is in the env). also, the access to the storages via fetch probably needs more than just an url. e.g. it might require an authorization header.
not supported :-) |
|
With a pre-signed URL, you really just need the pre-signed URL. The problem I see is not the authentication, but that the action code itself is no longer universal but needs to conditionally load the AWS or Google client libraries, which blows up the bundle size. |
I fear that in the future, we will have a bundle for each cloud. otherwise we cannot support ESM modules. |
ah, I see: |
|
And the pre-signing works without an extra HTTP request, so there is no performance impact. |
|
I'm wondering if we should just implement the signing ourselves (again: https://github.com/adobe/helix-pages/blob/prototype-three-fetchpool/assembly/request-signer.ts) so that we can sidestep the dependency issue entirely. |
# [1.6.0](v1.5.1...v1.6.0) (2021-05-27) ### Bug Fixes * **aws:** use correct operation names ([177f303](177f303)) ### Features * **aws:** add storage api ([a078cac](a078cac)), closes [#25](#25) * **google:** add google storage api ([da3234d](da3234d)) * **google:** expose storage api in context for google ([e5fc7dd](e5fc7dd)), closes [#25](#25)
|
🎉 This issue has been resolved in version 1.6.0 🎉 The release is available on: Your semantic-release bot 📦🚀 |
We have a couple of actions now that need access to S3 or equivalent storage locations. Instead of creating a full-blown storage abstraction, what about starting with a minimal set of:
context.storage.presignURL(bucketname: string, path: string, method?: string = 'GET', expires?: number = 60): generates a pre-signed URL for the specified bucket and path. This URL can then be used in ahelix-fetchrequest to upload or download from storage.For Adobe I/O Runtime we may be able to use https://github.com/adobe/aio-lib-files which has support for pre-signed URLs, but that requires the presence of
@adobe/aio-lib-filesin the container image.For all others, there are libraries that can even take the credentials from the container, so we should be covered.
The text was updated successfully, but these errors were encountered: