CORS 配置

  • 创建 CORS 配置并对存储桶设置该配置
  • 通过添加规则来检索并修改配置
  • 向存储桶添加修改过的配置
  • 删除配置
import com.amazonaws.AmazonServiceException;

import com.amazonaws.SdkClientException;

import com.amazonaws.auth.profile.ProfileCredentialsProvider;

import com.amazonaws.regions.Regions;

import com.amazonaws.services.s3.AmazonS3;

import com.amazonaws.services.s3.AmazonS3ClientBuilder;

import com.amazonaws.services.s3.model.BucketCrossOriginConfiguration;

import com.amazonaws.services.s3.model.CORSRule;

import java.io.IOException;

import java.util.ArrayList;

import java.util.Arrays;

import java.util.List;

public class CORS {

    public static void main(String[] args) throws IOException {

        Regions clientRegion = Regions.DEFAULT_REGION;

        String bucketName = "*** Bucket name ***";

        // Create two CORS rules.

        List<CORSRule.AllowedMethods> rule1AM = new ArrayList<CORSRule.AllowedMethods>();

        rule1AM.add(CORSRule.AllowedMethods.PUT);

        rule1AM.add(CORSRule.AllowedMethods.POST);

        rule1AM.add(CORSRule.AllowedMethods.DELETE);

        CORSRule rule1 = new CORSRule().withId("CORSRule1").withAllowedMethods(rule1AM)

                .withAllowedOrigins(Arrays.asList("http://*.example.com"));

        List<CORSRule.AllowedMethods> rule2AM = new ArrayList<CORSRule.AllowedMethods>();

        rule2AM.add(CORSRule.AllowedMethods.GET);

        CORSRule rule2 = new CORSRule().withId("CORSRule2").withAllowedMethods(rule2AM)

                .withAllowedOrigins(Arrays.asList("*")).withMaxAgeSeconds(3000)

                .withExposedHeaders(Arrays.asList("x-amz-server-side-encryption"));

        List<CORSRule> rules = new ArrayList<CORSRule>();

        rules.add(rule1);

        rules.add(rule2);

        // Add the rules to a new CORS configuration.

        BucketCrossOriginConfiguration configuration = new BucketCrossOriginConfiguration();

        configuration.setRules(rules);

        try {

            AmazonS3 s3Client = AmazonS3ClientBuilder.standard()

                    .withCredentials(new ProfileCredentialsProvider())

                    .withRegion(clientRegion)

                    .build();

            // Add the configuration to the bucket.

            s3Client.setBucketCrossOriginConfiguration(bucketName, configuration);

            // Retrieve and display the configuration.

            configuration = s3Client.getBucketCrossOriginConfiguration(bucketName);

            printCORSConfiguration(configuration);

            // Add another new rule.

            List<CORSRule.AllowedMethods> rule3AM = new ArrayList<CORSRule.AllowedMethods>();

            rule3AM.add(CORSRule.AllowedMethods.HEAD);

            CORSRule rule3 = new CORSRule().withId("CORSRule3").withAllowedMethods(rule3AM)

                    .withAllowedOrigins(Arrays.asList("http://www.example.com"));

            rules = configuration.getRules();

            rules.add(rule3);

            configuration.setRules(rules);

            s3Client.setBucketCrossOriginConfiguration(bucketName, configuration);

            // Verify that the new rule was added by checking the number of rules in the configuration.

            configuration = s3Client.getBucketCrossOriginConfiguration(bucketName);

            System.out.println("Expected # of rules = 3, found " + configuration.getRules().size());

            // Delete the configuration.

            s3Client.deleteBucketCrossOriginConfiguration(bucketName);

            System.out.println("Removed CORS configuration.");

            // Retrieve and display the configuration to verify that it was

            // successfully deleted.

            configuration = s3Client.getBucketCrossOriginConfiguration(bucketName);

            printCORSConfiguration(configuration);

        } catch (AmazonServiceException e) {

            // The call was transmitted successfully, but Amazon S3 couldn't process

            // it, so it returned an error response.

            e.printStackTrace();

        } catch (SdkClientException e) {

            // Amazon S3 couldn't be contacted for a response, or the client

            // couldn't parse the response from Amazon S3.

            e.printStackTrace();

        }

    }

    private static void printCORSConfiguration(BucketCrossOriginConfiguration configuration) {

        if (configuration == null) {

            System.out.println("Configuration is null.");

        } else {

            System.out.println("Configuration has " + configuration.getRules().size() + " rules\n");

            for (CORSRule rule : configuration.getRules()) {

                System.out.println("Rule ID: " + rule.getId());

                System.out.println("MaxAgeSeconds: " + rule.getMaxAgeSeconds());

                System.out.println("AllowedMethod: " + rule.getAllowedMethods());

                System.out.println("AllowedOrigins: " + rule.getAllowedOrigins());

                System.out.println("AllowedHeaders: " + rule.getAllowedHeaders());

                System.out.println("ExposeHeader: " + rule.getExposedHeaders());

                System.out.println();

            }

        }

    }

}

AmazonS3 使用AWS SDK for Java实现跨源资源共享 (CORS)的更多相关文章

  1. 跨源资源共享(CORS)概念、实现(用Spring)、起源介绍

    本文内容引用自: https://howtodoinjava.com/spring5/webmvc/spring-mvc-cors-configuration/ https://developer.m ...

  2. CORS跨源资源共享概念及配置(Kubernetes Ingress和Spring Cloud Gateway)

    我最新最全的文章都在南瓜慢说 www.pkslow.com,欢迎大家来喝茶! 1 跨源资源共享CORS 跨源资源共享 (CORS) (或通俗地译为跨域资源共享)是一种基于HTTP 头的机制,该机制通过 ...

  3. JS高程3:Ajax与Comet-进度事件、跨源资源共享

    有以下 6 个进度事件  loadstart:在接收到响应数据的第一个字节时触发.  progress:在接收响应期间持续不断地触发.  error:在请求发生错误时触发.  abort:在因 ...

  4. SpringBoot系列——CORS(跨源资源共享)

    前言 出于安全原因,浏览器禁止ajax调用当前源之外的资源(同源策略),我们之前也有写个几种跨域的简单实现(还在问跨域?本文记录js跨域的多种实现实例),本文主要详细介绍CORS,跨源资源共享,以及如 ...

  5. 彻底掌握CORS跨源资源共享

    本文来自于公众号链接: 彻底掌握CORS跨源资源共享 ) 本文接上篇公众号文章:彻底理解浏览器同源策略SOP 一.概述 在云时代,各种SAAS应用层出不穷,各种互联网API接口越来越丰富,H5技术在微 ...

  6. 跨域资源共享(CORS)问题解决方案

    CORS:Cross-Origin Resource Sharing(跨域资源共享) CORS被浏览器支持的版本情况如下:Chrome 3+.IE 8+.Firefox 3.5+.Opera 12+. ...

  7. 跨域资源共享CORS与JSONP

    同源策略限制: 同源策略(Same origin policy)是一种约定,它是浏览器最核心也最基本的安全功能,如果没有同源策略,攻击者可以通过JavaScript获取你的邮件以及其他敏感信息,比如说 ...

  8. JavaScript跨源资源共享

    CORS(跨 源资源共享)基本思想,就是使用自定义的HTTP头部让浏览器与服务器进行沟通,从而决定请求或响应式应该成功还是失败 IE对CORS的实现 IE8引入了XDR类型,与XHR类似,但可以实现安 ...

  9. 跨域解决方案 - 跨域资源共享cors

    目录 1. cors 介绍 2. 原理 3. cors 解决跨域 4. 自定义HTTP 头部字段解决跨域 5. 代码演示 5. 参考链接 1. cors 介绍 cors 说的是一个机制,其实相当于一个 ...

随机推荐

  1. springboot(六)Email demo

    项目中经常使用邮件发送提醒功能,比如说更新安全机制,发送邮件通知用户等 一.简单邮件发送 导入依赖: <dependency> <groupId>org.springframe ...

  2. 『数据结构与算法』二叉查找树(BST)

    微信搜索:码农StayUp 主页地址:https://gozhuyinglong.github.io 源码分享:https://github.com/gozhuyinglong/blog-demos ...

  3. Linux 驱动框架---设备文件devfs

    设备文件系统 Linux引入了虚拟文件系统,从而使设备的访问可以像访问普通文件系统一样.因此在内核中描述打开文件的数据inode中的rdev成员用来记录设备文件对应到的设备号.设备文件也由一个对应的f ...

  4. codesign wants to access key 密码是什么

    codesign wants to access key 密码是什么 真正的是开机密码,不是 apple id 密码 https://developer.apple.com/forums/thread ...

  5. vscode & peacock extension

    vscode & peacock extension https://marketplace.visualstudio.com/items?itemName=johnpapa.vscode-p ...

  6. moment.js 时间格式转换

    moment.js 时间格式转换 moment.js 时间转化 bug 格式错误 bug 02:00 => 14:00 format HH 与 hh HH === 24 小时制 hh === 1 ...

  7. nasm astrcmp函数 x86

    xxx.asm: %define p1 ebp+8 %define p2 ebp+12 %define p3 ebp+16 section .text global dllmain export as ...

  8. 基本的DOS命令

    基本的DOS命令 打开CMD的方法 菜单+系统+命令提示符 WIN+R后输入CMD 桌面或文件夹任意位置按住SHIFT后鼠标右键 常见的DOS命令 #盘符切换 直接输入要切换的盘符名称 如输入&quo ...

  9. Python 股票市场分析实战

    目标: 1.股票数据获取 2.历史趋势分析及可视化 3.风险分析 实验数据:来源于Yahoo Finance / Stooq,该网站提供了很多API接口,本文用的工具是pandas-datareade ...

  10. 自己的Scrapy框架学习之路

    开始自己的Scrapy 框架学习之路. 一.Scrapy安装介绍 参考网上资料,先进行安装 使用pip来安装Scrapy 在开始菜单打开cmd命令行窗口执行如下命令即可 pip install Scr ...