CORS 配置

  • 创建 CORS 配置并对存储桶设置该配置
  • 通过添加规则来检索并修改配置
  • 向存储桶添加修改过的配置
  • 删除配置
import com.amazonaws.AmazonServiceException;

import com.amazonaws.SdkClientException;

import com.amazonaws.auth.profile.ProfileCredentialsProvider;

import com.amazonaws.regions.Regions;

import com.amazonaws.services.s3.AmazonS3;

import com.amazonaws.services.s3.AmazonS3ClientBuilder;

import com.amazonaws.services.s3.model.BucketCrossOriginConfiguration;

import com.amazonaws.services.s3.model.CORSRule;

import java.io.IOException;

import java.util.ArrayList;

import java.util.Arrays;

import java.util.List;

public class CORS {

    public static void main(String[] args) throws IOException {

        Regions clientRegion = Regions.DEFAULT_REGION;

        String bucketName = "*** Bucket name ***";

        // Create two CORS rules.

        List<CORSRule.AllowedMethods> rule1AM = new ArrayList<CORSRule.AllowedMethods>();

        rule1AM.add(CORSRule.AllowedMethods.PUT);

        rule1AM.add(CORSRule.AllowedMethods.POST);

        rule1AM.add(CORSRule.AllowedMethods.DELETE);

        CORSRule rule1 = new CORSRule().withId("CORSRule1").withAllowedMethods(rule1AM)

                .withAllowedOrigins(Arrays.asList("http://*.example.com"));

        List<CORSRule.AllowedMethods> rule2AM = new ArrayList<CORSRule.AllowedMethods>();

        rule2AM.add(CORSRule.AllowedMethods.GET);

        CORSRule rule2 = new CORSRule().withId("CORSRule2").withAllowedMethods(rule2AM)

                .withAllowedOrigins(Arrays.asList("*")).withMaxAgeSeconds(3000)

                .withExposedHeaders(Arrays.asList("x-amz-server-side-encryption"));

        List<CORSRule> rules = new ArrayList<CORSRule>();

        rules.add(rule1);

        rules.add(rule2);

        // Add the rules to a new CORS configuration.

        BucketCrossOriginConfiguration configuration = new BucketCrossOriginConfiguration();

        configuration.setRules(rules);

        try {

            AmazonS3 s3Client = AmazonS3ClientBuilder.standard()

                    .withCredentials(new ProfileCredentialsProvider())

                    .withRegion(clientRegion)

                    .build();

            // Add the configuration to the bucket.

            s3Client.setBucketCrossOriginConfiguration(bucketName, configuration);

            // Retrieve and display the configuration.

            configuration = s3Client.getBucketCrossOriginConfiguration(bucketName);

            printCORSConfiguration(configuration);

            // Add another new rule.

            List<CORSRule.AllowedMethods> rule3AM = new ArrayList<CORSRule.AllowedMethods>();

            rule3AM.add(CORSRule.AllowedMethods.HEAD);

            CORSRule rule3 = new CORSRule().withId("CORSRule3").withAllowedMethods(rule3AM)

                    .withAllowedOrigins(Arrays.asList("http://www.example.com"));

            rules = configuration.getRules();

            rules.add(rule3);

            configuration.setRules(rules);

            s3Client.setBucketCrossOriginConfiguration(bucketName, configuration);

            // Verify that the new rule was added by checking the number of rules in the configuration.

            configuration = s3Client.getBucketCrossOriginConfiguration(bucketName);

            System.out.println("Expected # of rules = 3, found " + configuration.getRules().size());

            // Delete the configuration.

            s3Client.deleteBucketCrossOriginConfiguration(bucketName);

            System.out.println("Removed CORS configuration.");

            // Retrieve and display the configuration to verify that it was

            // successfully deleted.

            configuration = s3Client.getBucketCrossOriginConfiguration(bucketName);

            printCORSConfiguration(configuration);

        } catch (AmazonServiceException e) {

            // The call was transmitted successfully, but Amazon S3 couldn't process

            // it, so it returned an error response.

            e.printStackTrace();

        } catch (SdkClientException e) {

            // Amazon S3 couldn't be contacted for a response, or the client

            // couldn't parse the response from Amazon S3.

            e.printStackTrace();

        }

    }

    private static void printCORSConfiguration(BucketCrossOriginConfiguration configuration) {

        if (configuration == null) {

            System.out.println("Configuration is null.");

        } else {

            System.out.println("Configuration has " + configuration.getRules().size() + " rules\n");

            for (CORSRule rule : configuration.getRules()) {

                System.out.println("Rule ID: " + rule.getId());

                System.out.println("MaxAgeSeconds: " + rule.getMaxAgeSeconds());

                System.out.println("AllowedMethod: " + rule.getAllowedMethods());

                System.out.println("AllowedOrigins: " + rule.getAllowedOrigins());

                System.out.println("AllowedHeaders: " + rule.getAllowedHeaders());

                System.out.println("ExposeHeader: " + rule.getExposedHeaders());

                System.out.println();

            }

        }

    }

}

AmazonS3 使用AWS SDK for Java实现跨源资源共享 (CORS)的更多相关文章

  1. 跨源资源共享(CORS)概念、实现(用Spring)、起源介绍

    本文内容引用自: https://howtodoinjava.com/spring5/webmvc/spring-mvc-cors-configuration/ https://developer.m ...

  2. CORS跨源资源共享概念及配置(Kubernetes Ingress和Spring Cloud Gateway)

    我最新最全的文章都在南瓜慢说 www.pkslow.com,欢迎大家来喝茶! 1 跨源资源共享CORS 跨源资源共享 (CORS) (或通俗地译为跨域资源共享)是一种基于HTTP 头的机制,该机制通过 ...

  3. JS高程3:Ajax与Comet-进度事件、跨源资源共享

    有以下 6 个进度事件  loadstart:在接收到响应数据的第一个字节时触发.  progress:在接收响应期间持续不断地触发.  error:在请求发生错误时触发.  abort:在因 ...

  4. SpringBoot系列——CORS(跨源资源共享)

    前言 出于安全原因,浏览器禁止ajax调用当前源之外的资源(同源策略),我们之前也有写个几种跨域的简单实现(还在问跨域?本文记录js跨域的多种实现实例),本文主要详细介绍CORS,跨源资源共享,以及如 ...

  5. 彻底掌握CORS跨源资源共享

    本文来自于公众号链接: 彻底掌握CORS跨源资源共享 ) 本文接上篇公众号文章:彻底理解浏览器同源策略SOP 一.概述 在云时代,各种SAAS应用层出不穷,各种互联网API接口越来越丰富,H5技术在微 ...

  6. 跨域资源共享(CORS)问题解决方案

    CORS:Cross-Origin Resource Sharing(跨域资源共享) CORS被浏览器支持的版本情况如下:Chrome 3+.IE 8+.Firefox 3.5+.Opera 12+. ...

  7. 跨域资源共享CORS与JSONP

    同源策略限制: 同源策略(Same origin policy)是一种约定,它是浏览器最核心也最基本的安全功能,如果没有同源策略,攻击者可以通过JavaScript获取你的邮件以及其他敏感信息,比如说 ...

  8. JavaScript跨源资源共享

    CORS(跨 源资源共享)基本思想,就是使用自定义的HTTP头部让浏览器与服务器进行沟通,从而决定请求或响应式应该成功还是失败 IE对CORS的实现 IE8引入了XDR类型,与XHR类似,但可以实现安 ...

  9. 跨域解决方案 - 跨域资源共享cors

    目录 1. cors 介绍 2. 原理 3. cors 解决跨域 4. 自定义HTTP 头部字段解决跨域 5. 代码演示 5. 参考链接 1. cors 介绍 cors 说的是一个机制,其实相当于一个 ...

随机推荐

  1. python之字符串strip、rstrip、lstrip的方法

    1.描述 strip():用于移除字符串头尾指定的字符(默认为空格或换行符)或字符序列 rstrip():用于移除字符串右边指定的字符(默认为空格或换行符)或字符序列 lstrip():用于移除字符串 ...

  2. bitbar 网站攻击实验

    实验环境 https://github.com/TouwaErioH/security/tree/master/web1 Windows10 Oracle VM VirtualBox Ubuntu16 ...

  3. 833A The Meaningless Game

    A. The Meaningless Game time limit per test 1 second memory limit per test 256 megabytes input stand ...

  4. 杭电多校HDU 6586 String(预处理 + 贪心)题解

    题意: 给你一个串,现需要你给出一个子序列,满足26个约束条件,\(len(A_i) >= L_i\) 且 \(len(A_i) <= R_i\), \(A_i\)为从a到z的26个字母. ...

  5. sqli-libs(4) 双引号报错

    经测试,发现单引号不报错,而双引号却报错了 通过查看源码,发现下图中红色的箭头,如果不知道是什么意思,我们可以复制出来看看是什么含义: <?php$id=1;$id='"' .$id. ...

  6. cnblogs blogs backup & node.js crawler

    cnblogs blogs backup & node.js crawler refs xgqfrms 2012-2020 www.cnblogs.com 发布文章使用:只允许注册用户才可以访 ...

  7. TypeScript Interface vs Types All In One

    TypeScript Interface vs Types All In One TypeScript https://www.typescriptlang.org/docs/handbook/adv ...

  8. iPad Pro 如何通过 USB-C 接口外接机械键盘

    iPad Pro 如何通过 USB-C 接口外接机械键盘 外接机械键盘 Type-C Dock OK,cnblogs 图片文件不能超过20M https://support.apple.com/zh- ...

  9. Learn-JavaScript-with-MDN 系列文章: 01. var & let & const 对比

    Learn-JavaScript-with-MDN 系列文章: 01. var & let & const 对比 var & let & const 区别 https: ...

  10. Mac Benchmarks

    Mac Benchmarks https://browser.geekbench.com/mac-benchmarks https://www.geekbench.com/ https://www.f ...