Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add support for path-style endpoint in S3 #312

Open
2 tasks done
tobihagemann opened this issue Mar 6, 2023 · 4 comments
Open
2 tasks done

Add support for path-style endpoint in S3 #312

tobihagemann opened this issue Mar 6, 2023 · 4 comments
Labels
storage:s3 type:feature-request New feature or request

Comments

@tobihagemann
Copy link
Member

Please agree to the following

Summary

Add support for path-style endpoint in S3 (instead of subdomain).

Motivation

The current S3 implementation enforces the endpoint, where the bucket name is used as a subdomain, e.g., https://<bucket>.s3.<domain>/. A user reported that he'd like to use the path-style endpoint, e.g., https://s3.<domain>/<bucket>.

I'm not sure why this would become necessary but it's still a limitation. The user faced an issue because the TLS certificate for s3.<domain> can't be used for <bucket>.s3.<domain>, which is automatically enforced by Cryptomator.

Considered Alternatives

This hasn't been confirmed yet but a workaround could be to issue a wildcard TLS certificate for *.s3.<domain>.

Anything else?

There doesn't seem to be a quick fix at the moment: aws-amplify/aws-sdk-ios#683

We're using this SDK for our S3 implementation and the s3ForcePathStyle configuration is not supported. They've mentioned that it has been addressed in a their Swift SDK but we're unable to use it at the moment since it's still marked as "developer preview" and discouraged to be used for production apps.

There seems to be a workaround though but it would require some time for us to try it out and implement.
@eBeyond
Copy link

eBeyond commented Mar 30, 2023

The aws-sdk-ios now contains the force path style. It would be great if it could be implemented. The android app for cryptomator is already using it.

@tobihagemann
Copy link
Member Author

Is that so? Could you please link a reference? As I've mentioned in the "Anything else?" part, I couldn't find it. We're not using the Swift SDK at the moment, which is not recommended for production use.

@eBeyond
Copy link

eBeyond commented Mar 30, 2023
edited
Loading

In aws-amplify/aws-sdk-ios#683 the issue awslabs/aws-sdk-swift#607 is referenced, as it's tracked there. In the last comments it's mentioned as merged and implemented. If I'm not wrong or misunderstood the posts in there. But all relevant issues which are covering this point are closed after that merge.

@tobihagemann
Copy link
Member Author

tobihagemann commented Mar 30, 2023
edited
Loading

As you've linked it yourself, these are separate libraries (aws-sdk-ios vs. aws-sdk-swift) and I've already made my comments about it. Edit: To be clear, they didn't fix it in aws-sdk-ios and closed the issue anyway but that doesn't mean that it has been implemented there.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
storage:s3 type:feature-request New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@eBeyond @tobihagemann