Plugin Version | Dependency | Version Requirement |
---|---|---|
0.2.x | NodeBB | <= 0.5.3 and >= 0.3.2 |
0.3.x | NodeBB | >= 0.6.0 |
A plugin for NodeBB to take file uploads and store them on S3, uses the filter:uploadImage
hook in NodeBB.
You can configure this plugin via a combination of the below, for instance, you can use instance meta-data and environment variables in combination. You can also configure via the NodeBB Admin panel, which will result in the Bucket and Credentials being stored in the NodeBB Database.
If you decide to use the Database storage for Credentials, then they will take precedence over both Environment Variables and Instance Meta-data, the full load order is:
- Database
- Environment Variables
- Instance Meta-data
For instance, for talk.kano.me, we store the Bucket name in an Environment Variable, and the Credentials are discovered automatically with the Security Token Service.
export AWS_ACCESS_KEY_ID="xxxxx"
export AWS_SECRET_ACCESS_KEY="yyyyy"
export S3_UPLOADS_BUCKET="zzzz"
export S3_UPLOADS_HOST="host"
export S3_UPLOADS_PATH="path"
NOTE: Asset host is optional - If you do not specify an asset host, then the default asset host is <bucket>.s3.amazonaws.com
.
NOTE: Asset path is optional - If you do not specify an asset path, then the default asset path is /
.
To use Instance Meta-data, you'll need to setup role delegation, see the following links for more information:
- EC2 Documentation: Instance Metadata and User Data
- IAM Documentation: Assuming a Role
- IAM Documentation: EC2 Role Example
- STS Documentation: Delegation
NOTE: You'll need to pass in the Bucket
as either an Environment Variable or as a Database Backed Variable.
If you need help, create an issue on Github, and @miksago will try to help you out.
From the NodeBB Admin panel, you can configure the following settings to be stored in the Database:
bucket
— The S3 bucket to upload intohost
- The asset host (optional)path
- The asset path (optional)accessKeyId
— The AWS Access Key IdsecretAccessKey
— The AWS Secret Access Key
NOTE: Storing your AWS Credentials in the database is bad practice, and you really shouldn't do it.
We highly recommend using either Environment Variables or Instance Meta-data instead.
- Currently all uploads are stored in S3 keyed by a UUID and file extension, as such, if a user uploads multiple avatars, all versions will still exist in S3. This is a known issue and may require some sort of cron job to scan for old uploads that are no longer referenced in order for those objects to be deleted from S3.