There is now a KRL Module for uploading text to Amazon S3. The module's RID is a41x174 and can be loaded like all other modules (User Defined Modules).
For example, this would load the module with the alias AWSS3:
use module a41x174 alias AWSS3 with AWSKeys = keys:aws() |
When loading the module, be sure to define your AWS keys in the meta block. There are two required keys, and should be defined like so:
key aws { "AWSAccessKey": "YOURACCESSKEYHERE", "AWSSecretKey": "YOURSECRETKEYHERE" } |
The Amazon S3 Module provides three functions and two actions.
getValue takes one parameter. This parameter type is a string that is encoded as a Data URI.
getValue returns the base64 encoded value of the data URI. In other words, it strips out the "data:<mimetype>;base64," and returns the actual data.
rule getValue is active { select when pageview ".*" setting () pre { image = << data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAA UAAAAFCAYAAACNbyblAAAAHElEQVQI12P4//8/w38GIAXDIB KE0DHxgljNBAAO9TXL0Y4OHwAAAABJRU5ErkJggg== >>; base64EncodedData = AWSS3:getValue(image); // Evaluates to iVBORw0KGgoAAAA... } noop(); } |
getType takes one parameter. This parameter type is a string encoded as a Data URI.
getType performs the exact opposite operation of getValue. Instead of returning the base64 encoded data, getType returns the mimetype of the data URI encoded data.
rule getType is active { select when pageview ".*" setting () pre { image = << data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAA UAAAAFCAYAAACNbyblAAAAHElEQVQI12P4//8/w38GIAXDIB KE0DHxgljNBAAO9TXL0Y4OHwAAAABJRU5ErkJggg== >>; mimetype = AWSS3:getType(image); // Evaluates to image/png } noop(); } |
This is a convenience function that calculates the AWS URL from a given bucket and object name. This is useful for determining where AWS stored the item and allows programmers to not hardcode URL strings in their code that might change.
The upload action is currently the only action available in the Amazon S3 Module. It takes three parameters, the bucket, the object_name and the object_value.
The bucket is a string. This string should contain the name of the Amazon S3 bucket to upload your file to.
The object_name is a string. This string is the name to upload your file as.
The object_value is the value of the file to upload.
As well as having these three parameters, you can also configure the upload action with the following options:
rule upload is active { select when pageview ".*" setting () pre { text = "This is a test upload"; } { AWSS3:upload("kynetx_example", "kynetx_example_upload.txt", text); } } |
Using the base64 functions, we can also upload images. Do it, like so:
rule upload is active { select when pageview ".*" setting () pre { image = << data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAA UAAAAFCAYAAACNbyblAAAAHElEQVQI12P4//8/w38GIAXDIB KE0DHxgljNBAAO9TXL0Y4OHwAAAABJRU5ErkJggg== >>; } { AWSS3:upload("kynetx_example", "testuploaddata.png", this2that:base642string(AWSS3:getValue(image))) with object_type = AWSS3:getType(image); } } |
The delete action takes two parameters, the bucket
and the object_name
.
The bucket is a string. This string should contain the name of the Amazon S3 bucket to delete the file from.
The object_name is a string. This string is the name the file to delete.
As well as having these three parameters, you can also configure the upload action with the following options:
Since these values are used to calculate the ACL authorization string, they must be correct.
rule upload is active { select when pageview ".*" setting () { AWSS3:del("kynetx_example", "kynetx_example_upload.txt"); } } |
There are a few things you should do to make this more secure. You should take every precaution to ensure that keys are not exposed by their use in KRL. This can be difficult since KRL rulesets are read from URLs by the engine. You should also limit what each AWS key can do to just the tasks that it needs to perform to do its work. Here are some suggestions:
ruleset a41x175 { meta { name "TestAmazonS3Module" description << TestAmazonS3Module >> author "Jessie A. Morris" // Uncomment this line to require Marketplace purchase to use this app. // authz require user logging on key aws { "AWSAccessKey": "YOURACCESSKEYHERE", "AWSSecretKey": "YOURSECRETKEYHERE" } use module a41x174 alias AWSS3 with AWSKeys = keys:aws() } dispatch { // Some example dispatch domains // domain "example.com" // domain "other.example.com" } global { image = << data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAA UAAAAFCAYAAACNbyblAAAAHElEQVQI12P4//8/w38GIAXDIB KE0DHxgljNBAAO9TXL0Y4OHwAAAABJRU5ErkJggg== >>; } rule getValue is active { select when pageview ".*" setting () pre { base64EncodedData = AWSS3:getValue(image); } noop(); } rule getType is active { select when pageview ".*" setting () pre { mimetype = AWSS3:getType(image); } noop(); } rule upload is active { select when pageview ".*" setting () pre { text = "This is a test upload"; } { AWSS3:upload("jessiemorristest", "testuploaddata.png", this2that:base642string(AWSS3:getValue(image)) ) with object_type = AWSS3:getType(image); } } } |
The AWSS3 module is tested by the this code.